Page MenuHomeFreeBSD
Differential D23479

namei: preserve errors from fget_cap_locked
ClosedPublic
Actions

Authored by kevans on Feb 3 2020, 3:15 PM.
Tags
None
Referenced Files
Unknown Object (File)
Sun, Sep 28, 11:45 AM
Unknown Object (File)
Thu, Sep 25, 4:01 AM
Unknown Object (File)
Mon, Sep 22, 5:58 PM
Unknown Object (File)
Sep 15 2025, 1:55 AM
Unknown Object (File)
Sep 13 2025, 4:59 AM
Unknown Object (File)
Jul 3 2025, 11:27 AM
Unknown Object (File)
Jul 2 2025, 12:00 PM
Unknown Object (File)
Jul 1 2025, 11:40 AM
View All 68 Files
Subscribers
imp
lwhsu

Details

Reviewers
kib
emaste
Commits
rS357461: namei: preserve errors from fget_cap_locked
Summary

Most notably, we want to make sure we don't clobber any capabilities-related errors. This is a regression from r357412 (O_SEARCH) that was picked up from the capsicum tests.

PR: 243839

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

kevans created this revision.Feb 3 2020, 3:15 PM
Herald added a subscriber: imp. · View Herald TranscriptFeb 3 2020, 3:15 PM
Harbormaster completed remote builds in B29128: Diff 67703.Feb 3 2020, 3:15 PM
lwhsu added a subscriber: lwhsu.Feb 3 2020, 3:36 PM
emaste added inline comments.Feb 3 2020, 6:11 PM
sys/kern/vfs_lookup.c
463–466 ↗(On Diff #67703)

To me a nested

if (error == 0) {
        if (dfp->f_vnode == NULL)
                error = ENOTDIR;
        else
                error = EBADF;
}

is easier to follow

kib accepted this revision.Feb 3 2020, 6:20 PM
kib added inline comments.
sys/kern/vfs_lookup.c
463–466 ↗(On Diff #67703)

I would do it diferently:

   if (error != 0) {
      /* Preserve error */
   } else if (...f_ops == &badfileops} {
     error = EBADF;
   } else if (...f_vnode == NULL) {
     error = EINVAL;
  } else {
      dp = dfp->f_vnode;
...

Note tht I restored errors from fgetvp_rights.

This revision is now accepted and ready to land.Feb 3 2020, 6:20 PM
Closed by commit rS357461: namei: preserve errors from fget_cap_locked (authored by kevans). · Explain WhyFeb 3 2020, 6:59 PM
This revision was automatically updated to reflect the committed changes.
kevans added a commit: rS357461: namei: preserve errors from fget_cap_locked.
emaste added a comment.Feb 3 2020, 7:05 PM

I would do it differently

Ah yes, this is better.

(The recent OpenSMTPD vulnerability provides a good example of the need to consider this carefully and get it right from both correctness & readability.)

Revision Contents
Changeset List

PathSize
head/
sys/
kern/
11 lines

Diff 67731

View Options

head/sys/kern/vfs_lookup.c

Loading...