Page MenuHomeFreeBSD
Differential D40682

tests: Add ktrace capability violation test cases
ClosedPublic
Actions

Authored by jfree on Jun 20 2023, 10:10 PM.
Tags
Referenced Files
F82412871: D40682.diff
Sun, Apr 28, 9:10 AM
Unknown Object (File)
Sun, Apr 21, 12:37 AM
Unknown Object (File)
Mon, Apr 8, 1:56 AM
Unknown Object (File)
Mar 13 2024, 7:28 PM
Unknown Object (File)
Jan 31 2024, 10:00 PM
Unknown Object (File)
Jan 10 2024, 10:32 PM
Unknown Object (File)
Jan 2 2024, 12:53 PM
Unknown Object (File)
Dec 20 2023, 3:31 AM
View All 27 Files
Subscribers
guest-patmaddox
imp
jonathan

Details

Reviewers
markj
Commits
rG2f39a986641e: tests: Add ktrace capability violation test cases
Summary
tests: Add ktrace capability violation test cases

Introduce regression tests for ktrace(2) that target capability
violations.

These test cases ensure that ktrace(2) records these violations:
- CAPFAIL_NOTCAPABLE
- CAPFAIL_INCREASE
- CAPFAIL_SYSCALL
- CAPFAIL_SIGNAL
- CAPFAIL_PROTO
- CAPFAIL_SOCKADDR
- CAPFAIL_NAMEI
- CAPFAIL_CPUSET

A portion of these test cases create processes that do NOT enter
capability mode, but raise violations. This is intended behavior.
Users may run `ktrace -t p` on non-Capsicumized programs to detect
violations that would occur if the process were in capability mode.

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

jfree created this revision.Jun 20 2023, 10:10 PM
Herald added subscribers: jonathan, imp. · View Herald TranscriptJun 20 2023, 10:10 PM
jfree requested review of this revision.Jun 20 2023, 10:10 PM
jfree added a parent revision: D40676: ktrace: Record detailed ECAPMODE violations.Jun 20 2023, 10:21 PM
jfree updated this revision to Diff 123578.Jun 20 2023, 10:40 PM

Use cap_svflags instead of cap_flags when determining kernel ABI with syscallabi().

jfree updated this revision to Diff 125299.Jul 28 2023, 4:07 PM

Fix formatting issue in license text

guest-patmaddox added a subscriber: guest-patmaddox.Jul 29 2023, 5:23 AM
markj accepted this revision.Jan 18 2024, 3:46 PM
This revision is now accepted and ready to land.Jan 18 2024, 3:46 PM
jfree updated this revision to Diff 135579.Mar 10 2024, 4:20 AM
  • Rename all instances of CAPFAIL_VFS to CAPFAIL_NAMEI
  • Rebase on main after several months
This revision now requires review to proceed.Mar 10 2024, 4:20 AM
Harbormaster completed remote builds in B56528: Diff 135579.Mar 10 2024, 4:21 AM
jfree edited the summary of this revision. (Show Details)Mar 10 2024, 4:21 AM
This revision was not accepted when it landed; it landed in state Needs Review.Sun, Apr 7, 11:58 PM
Closed by commit rG2f39a986641e: tests: Add ktrace capability violation test cases (authored by jfree). · Explain Why
This revision was automatically updated to reflect the committed changes.
jfree added a commit: rG2f39a986641e: tests: Add ktrace capability violation test cases.

Revision Contents
Changeset List

PathSize
tests/
sys/
kern/
2 lines
488 lines

Diff 136665

View Options

tests/sys/kern/Makefile

Loading...
View Options

tests/sys/kern/ktrace_test.c

Loading...