Page MenuHomeFreeBSD
Differential D38675

open.2: describe O_RESOLVE_BENEATH errors correctly
ClosedPublic
Actions

Authored by val_packett.cool on Feb 19 2023, 8:18 PM.
Tags
None
Referenced Files
Unknown Object (File)
Thu, Apr 25, 9:47 PM
Unknown Object (File)
Sat, Apr 13, 10:17 AM
Unknown Object (File)
Sun, Apr 7, 6:17 PM
Unknown Object (File)
Sat, Apr 6, 11:57 PM
Unknown Object (File)
Mar 31 2024, 10:20 AM
Unknown Object (File)
Mar 31 2024, 10:20 AM
Unknown Object (File)
Mar 27 2024, 9:20 AM
Unknown Object (File)
Dec 20 2023, 6:59 AM
View All 26 Files
Subscribers
imp
pauamma_gundo.com

Details

Reviewers
kib
pauamma_gundo.com
Group Reviewers
manpages
Contributor Reviews (src)
Commits
rGc7a8502bdf18: open.2: describe O_RESOLVE_BENEATH errors correctly
Summary

The behavior is the same as in capability mode, it does not actually
return EINVAL for absolute lookups:

openat(AT_FDCWD,"/tmp/test",O_RDONLY|O_DIRECTORY,00) = 3 (0x3)
openat(3,"../../",O_RDONLY|0x800000,00)          ERR#93 'Capabilities insufficient'
openat(3,"/etc/passwd",O_RDONLY|0x800000,00)     ERR#93 'Capabilities insufficient'

Fixes: 1f305be43 ("Document {O,AT}_RESOLVE_BENEATH...")
Sponsored by: https://www.patreon.com/valpackett

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

val_packett.cool created this revision.Feb 19 2023, 8:18 PM
Herald added a subscriber: imp. · View Herald TranscriptFeb 19 2023, 8:18 PM
val_packett.cool requested review of this revision.Feb 19 2023, 8:18 PM
Harbormaster completed remote builds in B49892: Diff 117597.Feb 19 2023, 8:18 PM
val_packett.cool added reviewers: manpages, Contributor Reviews (src), kib.Feb 19 2023, 8:20 PM
pauamma_gundo.com added a subscriber: pauamma_gundo.com.Feb 19 2023, 8:47 PM
pauamma_gundo.com added inline comments.
lib/libc/sys/open.2
602–628

I'm not sure this is as clear as the previous version. "A, or B, and C or D" leaves me unsure whether the "C or D" restriction applies to B only, or to both A and B. I don't think the previous version had that ambiguity.

val_packett.cool updated this revision to Diff 117600.Feb 19 2023, 9:05 PM

Hopefully more clear this way?

Harbormaster completed remote builds in B49895: Diff 117600.Feb 19 2023, 9:05 PM
pauamma_gundo.com added a comment.Feb 19 2023, 9:48 PM
In D38675#880230, @val_packett.cool wrote:

Hopefully more clear this way?

It helps. So (I think) does removing some of the commas. What do others think?

lib/libc/sys/open.2
602–628
kib added a comment.Feb 20 2023, 4:25 AM

The common practice in the error section of the man pages is to list each cause separately, repeating the error number (symbol). So your change would be better done in opposite direction, IMO: splitting the 'absolute path', 'dotdot', and 'dotdot' leading outside the root.

Note that allowance for dotdot presence is controlled by a sysctl knob.

val_packett.cool updated this revision to Diff 117652.Feb 20 2023, 8:57 PM

Yeah, makes sense, let's try like this

Harbormaster completed remote builds in B49916: Diff 117652.Feb 20 2023, 8:57 PM
val_packett.cool added a comment.Feb 20 2023, 9:21 PM

Though, hm, various AT_RESOLVE_BENEATH documentation does collapse it all into one item:

https://cgit.freebsd.org/src/tree/lib/libc/sys/chmod.2?id=ef6fcc5e2b0714c859d2e4ba23a55b1fd12f8a4e#n312

pauamma_gundo.com accepted this revision.Feb 20 2023, 9:31 PM

Minor nits, fixable on commit.

lib/libc/sys/open.2
31

Remember to bump.

611

For tense consistency with "is"

625–628
633
This revision is now accepted and ready to land.Feb 20 2023, 9:31 PM
kib accepted this revision.Feb 21 2023, 5:33 AM
val_packett.cool marked 4 inline comments as done.Mar 2 2023, 8:51 PM
Closed by commit rGc7a8502bdf18: open.2: describe O_RESOLVE_BENEATH errors correctly (authored by val_packett.cool, committed by emaste). · Explain WhyMar 2 2023, 8:59 PM
This revision was automatically updated to reflect the committed changes.
emaste added a commit: rGc7a8502bdf18: open.2: describe O_RESOLVE_BENEATH errors correctly.

Revision Contents
Changeset List

PathSize
lib/
libc/
sys/
39 lines

Diff 118217

View Options

lib/libc/sys/open.2

Loading...