Page MenuHomeFreeBSD
Differential D21392

[2/3] Add an initial seal argument to kern_shm_open()
ClosedPublic
Actions

Authored by kevans on Aug 24 2019, 4:28 AM.
Tags
None
Referenced Files
Unknown Object (File)
Mon, Jan 6, 4:25 PM
Unknown Object (File)
Sun, Dec 29, 1:09 PM
Unknown Object (File)
Wed, Dec 25, 10:30 AM
Unknown Object (File)
Dec 7 2024, 2:00 AM
Unknown Object (File)
Dec 2 2024, 8:39 PM
Unknown Object (File)
Oct 31 2024, 5:28 PM
Unknown Object (File)
Oct 24 2024, 6:52 PM
Unknown Object (File)
Oct 9 2024, 4:56 AM
View All Files
Subscribers
imp

Details

Reviewers
markj
kib
Commits
rS352697: [2/3] Add an initial seal argument to kern_shm_open()
Summary

Now that flags may be set on posixshm, add an argument to kern_shm_open() for the initial seals. To maintain past behavior where callers of shm_open(2) are guaranteed to not have any seals applied to the fd they're given, apply F_SEAL_SEAL for existing callers of kern_shm_open. A special flag could be opened later for shm_open(2) to indicate that sealing should be allowed.

We currently restrict initial seals to F_SEAL_SEAL. We cannot error out if F_SEAL_SEAL is re-applied, as this would easily break shm_open() twice to a shmfd that already existed. A note's been added about the assumptions we've made here as a hint towards anyone wanting to allow other seals to be applied at creation.

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

kevans created this revision.Aug 24 2019, 4:28 AM
Herald added a subscriber: imp. · View Herald TranscriptAug 24 2019, 4:28 AM
Harbormaster completed remote builds in B26060: Diff 61199.Aug 24 2019, 4:28 AM
kevans added a parent revision: D21391: [1/3] Add mostly Linux-compatible file sealing support.Aug 24 2019, 4:29 AM
kevans added a child revision: D21393: [3/3] Add linux-compatible memfd_create.
markj accepted this revision.Sep 8 2019, 8:46 PM
markj added inline comments.
sys/kern/uipc_shm.c
843 ↗(On Diff #61199)

Doesn't this assignment belong in the callers?

This revision is now accepted and ready to land.Sep 8 2019, 8:46 PM
kevans added inline comments.Sep 8 2019, 8:49 PM
sys/kern/uipc_shm.c
843 ↗(On Diff #61199)

Yeah, sorry- this is actually getting reworked to be less sketchy. Callers will instead pass in an initial set of seals to apply, and the existing callers will apply F_SEAL_SEAL by default

markj added inline comments.Sep 8 2019, 8:52 PM
sys/kern/uipc_shm.c
843 ↗(On Diff #61199)

Oh, it was just a comment about the existing code. In general I would expect the td_retval assignment to appear in the sys_* layer. I think the proposed diff is fine.

kevans updated this revision to Diff 62118.Sep 15 2019, 3:29 AM
kevans retitled this revision from [2/3] Allow kern_shm_open() caller to take file * to [2/3] Add an initial seal argument to kern_shm_open() .
kevans edited the summary of this revision. (Show Details)
This revision now requires review to proceed.Sep 15 2019, 3:29 AM
Harbormaster completed remote builds in B26502: Diff 62118.Sep 15 2019, 3:29 AM
kevans updated this revision to Diff 62119.Sep 15 2019, 3:32 AM

Remove stray include that snuck in

Harbormaster completed remote builds in B26503: Diff 62119.Sep 15 2019, 3:32 AM
kib accepted this revision.Sep 15 2019, 5:08 PM
kib added inline comments.
sys/kern/uipc_shm.c
818 ↗(On Diff #62119)

According to style, there should be a blank line before multiline comment.

This revision is now accepted and ready to land.Sep 15 2019, 5:08 PM
markj accepted this revision.Sep 23 2019, 8:55 PM
markj added inline comments.
sys/compat/cloudabi/cloudabi_fd.c
32 ↗(On Diff #62119)

This sorts before filedesc.h.

sys/kern/uipc_shm.c
881 ↗(On Diff #62119)

"need to be reworked"?

kevans updated this revision to Diff 62536.Sep 25 2019, 3:12 AM
kevans marked 3 inline comments as done.

Wording, style fixes

This revision now requires review to proceed.Sep 25 2019, 3:12 AM
Harbormaster completed remote builds in B26684: Diff 62536.Sep 25 2019, 3:12 AM
markj accepted this revision.Sep 25 2019, 4:01 PM
markj added inline comments.
sys/kern/uipc_shm.c
880 ↗(On Diff #62536)

The undocumented convention is that multiline comments only need an extra newline if they follow a statement. So, the newline is not needed here.

This revision is now accepted and ready to land.Sep 25 2019, 4:01 PM
Closed by commit rS352697: [2/3] Add an initial seal argument to kern_shm_open() (authored by kevans). · Explain WhySep 25 2019, 5:35 PM
This revision was automatically updated to reflect the committed changes.
kevans added a commit: rS352697: [2/3] Add an initial seal argument to kern_shm_open().

Revision Contents
Changeset List

PathSize
head/
sys/
compat/
cloudabi/
3 lines
kern/
63 lines
sys/
2 lines

Diff 62555

View Options

head/sys/compat/cloudabi/cloudabi_fd.c

Loading...
View Options

head/sys/kern/uipc_shm.c

Loading...
View Options

head/sys/sys/syscallsubr.h

Loading...