Differential D21113

Enable copy_file_range(2) in capability mode.
ClosedPublic
Actions

Authored by markj on Jul 30 2019, 3:08 PM.

Tags

None

Referenced Files

	Unknown Object (File)
	Sun, Apr 19, 1:57 AM

	Unknown Object (File)
	Thu, Apr 16, 1:19 PM

	Unknown Object (File)
	Wed, Apr 15, 8:30 AM

	Unknown Object (File)
	Wed, Apr 15, 1:45 AM

	Unknown Object (File)
	Mon, Apr 13, 12:48 PM

	Unknown Object (File)
	Mon, Apr 13, 10:36 AM

	Unknown Object (File)
	Fri, Apr 10, 12:27 PM

	Unknown Object (File)
	Mon, Apr 6, 12:22 PM

Subscribers

Details

Reviewers

brooks
kevans
oshogbo

Group Reviewers

Commits

rS350447: Enable copy_file_range(2) in capability mode.

Summary

The system call takes two fds, and copies a range from one to the other.
We currently require CAP_READ for the source descriptor and CAP_WRITE
for the destination descriptor.

Test Plan

I wrote a small program which creates two files, writes some data to one,
and uses copy_file_range() to copy the data to the other. Verified that it
works if the program enter capability mode; verified that we get an error
if the source fd is missing CAP_READ or if the dst fd is missing CAP_WRITE.

Diff Detail

Repository

rS FreeBSD src repository - subversion

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

markj created this revision.Jul 30 2019, 3:08 PM

Herald added a reviewer: brooks. · View Herald TranscriptJul 30 2019, 3:08 PM

Harbormaster completed remote builds in B25593: Diff 60285.Jul 30 2019, 3:08 PM

markj edited the test plan for this revision. (Show Details)Jul 30 2019, 3:09 PM

markj added reviewers: capsicum, kevans.

Fix sorting.

Harbormaster completed remote builds in B25594: Diff 60286.Jul 30 2019, 3:10 PM

oshogbo accepted this revision.Jul 30 2019, 3:11 PM

This revision is now accepted and ready to land.Jul 30 2019, 3:11 PM

kevans accepted this revision.Jul 30 2019, 3:12 PM

Closed by commit rS350447: Enable copy_file_range(2) in capability mode. (authored by markj). · Explain WhyJul 30 2019, 3:59 PM

This revision was automatically updated to reflect the committed changes.

markj added a commit: rS350447: Enable copy_file_range(2) in capability mode..

Herald added a subscriber: imp. · View Herald TranscriptJul 30 2019, 3:59 PM

Revision Contents
Changeset List

Path

Size

head/

sys/

kern/

capabilities.conf

5 lines

Diff 60291

head/sys/kern/capabilities.conf

Loading...