Page MenuHomeFreeBSD
Differential D7920

indent(1): Capsicumify
ClosedPublic
Actions

Authored by cem on Sep 18 2016, 5:01 AM.
Tags
None
Referenced Files
Unknown Object (File)
Dec 20 2023, 1:00 AM
Unknown Object (File)
Nov 13 2023, 10:03 AM
Unknown Object (File)
Nov 11 2023, 8:29 AM
Unknown Object (File)
Nov 9 2023, 3:34 AM
Unknown Object (File)
Nov 7 2023, 10:29 AM
Unknown Object (File)
Nov 7 2023, 2:37 AM
Unknown Object (File)
Oct 24 2023, 7:01 PM
Unknown Object (File)
Oct 10 2023, 9:52 AM
View All 28 Files
Subscribers
imp
jhb

Details

Reviewers
emaste
pfg
allanjude
oshogbo
Commits
rS305983: indent(1): Capsicumify
Summary

This is a nice and trivial program for sandboxing. One input file, one
output file.

Test Plan

truss indent indent.c indent-formatted.c

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

cem updated this revision to Diff 20417.Sep 18 2016, 5:01 AM
cem retitled this revision from to indent(1): Capsicumify.
cem updated this object.
cem edited the test plan for this revision. (Show Details)
cem added reviewers: emaste, allanjude, oshogbo, pfg.
Herald added a subscriber: imp. · View Herald TranscriptSep 18 2016, 5:01 AM
pfg accepted this revision.Sep 18 2016, 3:48 PM
pfg edited edge metadata.

Looks good to me ... Thanks!

This revision is now accepted and ready to land.Sep 18 2016, 3:48 PM
Closed by commit rS305983: indent(1): Capsicumify (authored by cem). · Explain WhySep 19 2016, 4:16 PM
This revision was automatically updated to reflect the committed changes.
emaste added a subscriber: jhb.Sep 19 2016, 8:15 PM
emaste added inline comments.
head/usr.bin/indent/indent.c
53

as @jhb pointed out in IRC, style(9) calls for sys/param.h or sys/types.h to be first

cem added inline comments.Sep 19 2016, 8:37 PM
head/usr.bin/indent/indent.c
53

This is actually completely unspecified in style(9), but matches convention.

Convention also calls for capsicum.h not to include other headers, but it does anyway. (Which is why this even compiles without param.h first.)

imp added inline comments.Sep 20 2016, 3:39 AM
head/usr.bin/indent/indent.c
53

If it is in the examples in style(9), it's part of the convention, since that's best read as an annotated example with parenthetical comments and asides.

In this case it's by weak association:

#include <sys/cdefs.h>

Kernel include files (i.e. sys/*.h) come first; normally, include
<sys/types.h> OR <sys/param.h>, but not both. <sys/types.h> includes
<sys/cdefs.h>, and it is okay to depend on that.

#include <sys/types.h>
etc

So the example has it first (after cdefs for FreeBSD ID) and only one of types.h and param.h is included.

This is a tricky part of style(9), but has come up many times in the past and is the settled conventions as evidence by a substantial number of files that do this.

It also doesn't actually state not to include dependencies. That's just part of the tribal knowledge of best practices of the project. capsicum.h aims to be an more than FreeBSD standard, which has an externally defined interface which allows for more namespace pollution than is usually strived for (which is the real reason so many files avoid including other files: strict POSIX compliance basically demands it in many cases).

emaste edited edge metadata.Sep 20 2016, 3:46 AM

So the example has it first (after cdefs for FreeBSD ID) and only one of types.h and param.h is included.

Unfortunately it is not really clear in style(9) that these separate sections actually form a single example, and there's only one sys/ header file so no example that shows types.h/param.h should come first. Nobody's suggesting this aspect of our style is wrong, just that it's not documented.

imp added a comment.Sep 20 2016, 4:22 AM
In D7920#164700, @emaste wrote:

So the example has it first (after cdefs for FreeBSD ID) and only one of types.h and param.h is included.

Unfortunately it is not really clear in style(9) that these separate sections actually form a single example, and there's only one sys/ header file so no example that shows types.h/param.h should come first. Nobody's suggesting this aspect of our style is wrong, just that it's not documented.

Understood. Last time I modified style(9) it was 1000x the effort that the reward gave me. This is not the only example of things documented only by example in style(9) and fixing them all would be even worse. It's the common interpretation of style(9) and has been for two decades. Cleaning up all of style(9) to codify this tribal knowledge would take much effort and not be worth it. Last time I tried it was horrible.

emaste added a comment.Sep 20 2016, 4:29 AM

I don't mean to discount any of that, just that this is not documented even by example. It appears the rule is: only one of sys/param.h or sys/types.h should be included, and should be included after the sys/cdefs.h used for __FBSDID and before any other sys/*.h includes. But no other sys/*.h headers appear in the example, so there's nothing that demonstrates sys/types.h or sys/param.h should come before other sys/*.h.

sys/ktrace.h and sys/queue.h do appear in style(9), but they are clearly not part of the same example.

Revision Contents
Changeset List

PathSize
head/
usr.bin/
indent/
14 lines

Diff 20493

View Options

head/usr.bin/indent/indent.c

Loading...