| Author | Tokens | Token Proportion | Commits | Commit Proportion |
|---|---|---|---|---|
| Christian Brauner | 2680 | 78.34% | 6 | 50.00% |
| Giuseppe Scrivano | 655 | 19.15% | 1 | 8.33% |
| Al Viro | 66 | 1.93% | 1 | 8.33% |
| Tobias Klauser | 11 | 0.32% | 1 | 8.33% |
| Tommi Rantala | 5 | 0.15% | 1 | 8.33% |
| Muhammad Usama Anjum | 3 | 0.09% | 1 | 8.33% |
| Shuah Khan | 1 | 0.03% | 1 | 8.33% |
| Total | 3421 | 12 |
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666
// SPDX-License-Identifier: GPL-2.0 #define _GNU_SOURCE #include <errno.h> #include <fcntl.h> #include <linux/kernel.h> #include <limits.h> #include <stdbool.h> #include <stdio.h> #include <stdlib.h> #include <string.h> #include <syscall.h> #include <unistd.h> #include <sys/resource.h> #include <linux/close_range.h> #include "../kselftest_harness.h" #include "../clone3/clone3_selftests.h" #ifndef F_LINUX_SPECIFIC_BASE #define F_LINUX_SPECIFIC_BASE 1024 #endif #ifndef F_DUPFD_QUERY #define F_DUPFD_QUERY (F_LINUX_SPECIFIC_BASE + 3) #endif #ifndef F_CREATED_QUERY #define F_CREATED_QUERY (F_LINUX_SPECIFIC_BASE + 4) #endif static inline int sys_close_range(unsigned int fd, unsigned int max_fd, unsigned int flags) { return syscall(__NR_close_range, fd, max_fd, flags); } TEST(core_close_range) { int i, ret; int open_fds[101]; for (i = 0; i < ARRAY_SIZE(open_fds); i++) { int fd; fd = open("/dev/null", O_RDONLY | O_CLOEXEC); ASSERT_GE(fd, 0) { if (errno == ENOENT) SKIP(return, "Skipping test since /dev/null does not exist"); } open_fds[i] = fd; } EXPECT_EQ(-1, sys_close_range(open_fds[0], open_fds[100], -1)) { if (errno == ENOSYS) SKIP(return, "close_range() syscall not supported"); } for (i = 0; i < 100; i++) { ret = fcntl(open_fds[i], F_DUPFD_QUERY, open_fds[i + 1]); if (ret < 0) { EXPECT_EQ(errno, EINVAL); } else { EXPECT_EQ(ret, 0); } } EXPECT_EQ(0, sys_close_range(open_fds[0], open_fds[50], 0)); for (i = 0; i <= 50; i++) EXPECT_EQ(-1, fcntl(open_fds[i], F_GETFL)); for (i = 51; i <= 100; i++) EXPECT_GT(fcntl(open_fds[i], F_GETFL), -1); /* create a couple of gaps */ close(57); close(78); close(81); close(82); close(84); close(90); EXPECT_EQ(0, sys_close_range(open_fds[51], open_fds[92], 0)); for (i = 51; i <= 92; i++) EXPECT_EQ(-1, fcntl(open_fds[i], F_GETFL)); for (i = 93; i <= 100; i++) EXPECT_GT(fcntl(open_fds[i], F_GETFL), -1); /* test that the kernel caps and still closes all fds */ EXPECT_EQ(0, sys_close_range(open_fds[93], open_fds[99], 0)); for (i = 93; i <= 99; i++) EXPECT_EQ(-1, fcntl(open_fds[i], F_GETFL)); EXPECT_GT(fcntl(open_fds[i], F_GETFL), -1); EXPECT_EQ(0, sys_close_range(open_fds[100], open_fds[100], 0)); EXPECT_EQ(-1, fcntl(open_fds[100], F_GETFL)); } TEST(close_range_unshare) { int i, ret, status; pid_t pid; int open_fds[101]; struct __clone_args args = { .flags = CLONE_FILES, .exit_signal = SIGCHLD, }; for (i = 0; i < ARRAY_SIZE(open_fds); i++) { int fd; fd = open("/dev/null", O_RDONLY | O_CLOEXEC); ASSERT_GE(fd, 0) { if (errno == ENOENT) SKIP(return, "Skipping test since /dev/null does not exist"); } open_fds[i] = fd; } pid = sys_clone3(&args, sizeof(args)); ASSERT_GE(pid, 0); if (pid == 0) { ret = sys_close_range(open_fds[0], open_fds[50], CLOSE_RANGE_UNSHARE); if (ret) exit(EXIT_FAILURE); for (i = 0; i <= 50; i++) if (fcntl(open_fds[i], F_GETFL) != -1) exit(EXIT_FAILURE); for (i = 51; i <= 100; i++) if (fcntl(open_fds[i], F_GETFL) == -1) exit(EXIT_FAILURE); /* create a couple of gaps */ close(57); close(78); close(81); close(82); close(84); close(90); ret = sys_close_range(open_fds[51], open_fds[92], CLOSE_RANGE_UNSHARE); if (ret) exit(EXIT_FAILURE); for (i = 51; i <= 92; i++) if (fcntl(open_fds[i], F_GETFL) != -1) exit(EXIT_FAILURE); for (i = 93; i <= 100; i++) if (fcntl(open_fds[i], F_GETFL) == -1) exit(EXIT_FAILURE); /* test that the kernel caps and still closes all fds */ ret = sys_close_range(open_fds[93], open_fds[99], CLOSE_RANGE_UNSHARE); if (ret) exit(EXIT_FAILURE); for (i = 93; i <= 99; i++) if (fcntl(open_fds[i], F_GETFL) != -1) exit(EXIT_FAILURE); if (fcntl(open_fds[100], F_GETFL) == -1) exit(EXIT_FAILURE); ret = sys_close_range(open_fds[100], open_fds[100], CLOSE_RANGE_UNSHARE); if (ret) exit(EXIT_FAILURE); if (fcntl(open_fds[100], F_GETFL) != -1) exit(EXIT_FAILURE); exit(EXIT_SUCCESS); } EXPECT_EQ(waitpid(pid, &status, 0), pid); EXPECT_EQ(true, WIFEXITED(status)); EXPECT_EQ(0, WEXITSTATUS(status)); } TEST(close_range_unshare_capped) { int i, ret, status; pid_t pid; int open_fds[101]; struct __clone_args args = { .flags = CLONE_FILES, .exit_signal = SIGCHLD, }; for (i = 0; i < ARRAY_SIZE(open_fds); i++) { int fd; fd = open("/dev/null", O_RDONLY | O_CLOEXEC); ASSERT_GE(fd, 0) { if (errno == ENOENT) SKIP(return, "Skipping test since /dev/null does not exist"); } open_fds[i] = fd; } pid = sys_clone3(&args, sizeof(args)); ASSERT_GE(pid, 0); if (pid == 0) { ret = sys_close_range(open_fds[0], UINT_MAX, CLOSE_RANGE_UNSHARE); if (ret) exit(EXIT_FAILURE); for (i = 0; i <= 100; i++) if (fcntl(open_fds[i], F_GETFL) != -1) exit(EXIT_FAILURE); exit(EXIT_SUCCESS); } EXPECT_EQ(waitpid(pid, &status, 0), pid); EXPECT_EQ(true, WIFEXITED(status)); EXPECT_EQ(0, WEXITSTATUS(status)); } TEST(close_range_cloexec) { int i, ret; int open_fds[101]; struct rlimit rlimit; for (i = 0; i < ARRAY_SIZE(open_fds); i++) { int fd; fd = open("/dev/null", O_RDONLY); ASSERT_GE(fd, 0) { if (errno == ENOENT) SKIP(return, "Skipping test since /dev/null does not exist"); } open_fds[i] = fd; } ret = sys_close_range(1000, 1000, CLOSE_RANGE_CLOEXEC); if (ret < 0) { if (errno == ENOSYS) SKIP(return, "close_range() syscall not supported"); if (errno == EINVAL) SKIP(return, "close_range() doesn't support CLOSE_RANGE_CLOEXEC"); } /* Ensure the FD_CLOEXEC bit is set also with a resource limit in place. */ ASSERT_EQ(0, getrlimit(RLIMIT_NOFILE, &rlimit)); rlimit.rlim_cur = 25; ASSERT_EQ(0, setrlimit(RLIMIT_NOFILE, &rlimit)); /* Set close-on-exec for two ranges: [0-50] and [75-100]. */ ret = sys_close_range(open_fds[0], open_fds[50], CLOSE_RANGE_CLOEXEC); ASSERT_EQ(0, ret); ret = sys_close_range(open_fds[75], open_fds[100], CLOSE_RANGE_CLOEXEC); ASSERT_EQ(0, ret); for (i = 0; i <= 50; i++) { int flags = fcntl(open_fds[i], F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, FD_CLOEXEC); } for (i = 51; i <= 74; i++) { int flags = fcntl(open_fds[i], F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, 0); } for (i = 75; i <= 100; i++) { int flags = fcntl(open_fds[i], F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, FD_CLOEXEC); } /* Test a common pattern. */ ret = sys_close_range(3, UINT_MAX, CLOSE_RANGE_CLOEXEC); for (i = 0; i <= 100; i++) { int flags = fcntl(open_fds[i], F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, FD_CLOEXEC); } } TEST(close_range_cloexec_unshare) { int i, ret; int open_fds[101]; struct rlimit rlimit; for (i = 0; i < ARRAY_SIZE(open_fds); i++) { int fd; fd = open("/dev/null", O_RDONLY); ASSERT_GE(fd, 0) { if (errno == ENOENT) SKIP(return, "Skipping test since /dev/null does not exist"); } open_fds[i] = fd; } ret = sys_close_range(1000, 1000, CLOSE_RANGE_CLOEXEC); if (ret < 0) { if (errno == ENOSYS) SKIP(return, "close_range() syscall not supported"); if (errno == EINVAL) SKIP(return, "close_range() doesn't support CLOSE_RANGE_CLOEXEC"); } /* Ensure the FD_CLOEXEC bit is set also with a resource limit in place. */ ASSERT_EQ(0, getrlimit(RLIMIT_NOFILE, &rlimit)); rlimit.rlim_cur = 25; ASSERT_EQ(0, setrlimit(RLIMIT_NOFILE, &rlimit)); /* Set close-on-exec for two ranges: [0-50] and [75-100]. */ ret = sys_close_range(open_fds[0], open_fds[50], CLOSE_RANGE_CLOEXEC | CLOSE_RANGE_UNSHARE); ASSERT_EQ(0, ret); ret = sys_close_range(open_fds[75], open_fds[100], CLOSE_RANGE_CLOEXEC | CLOSE_RANGE_UNSHARE); ASSERT_EQ(0, ret); for (i = 0; i <= 50; i++) { int flags = fcntl(open_fds[i], F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, FD_CLOEXEC); } for (i = 51; i <= 74; i++) { int flags = fcntl(open_fds[i], F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, 0); } for (i = 75; i <= 100; i++) { int flags = fcntl(open_fds[i], F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, FD_CLOEXEC); } /* Test a common pattern. */ ret = sys_close_range(3, UINT_MAX, CLOSE_RANGE_CLOEXEC | CLOSE_RANGE_UNSHARE); for (i = 0; i <= 100; i++) { int flags = fcntl(open_fds[i], F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, FD_CLOEXEC); } } /* * Regression test for syzbot+96cfd2b22b3213646a93@syzkaller.appspotmail.com */ TEST(close_range_cloexec_syzbot) { int fd1, fd2, fd3, fd4, flags, ret, status; pid_t pid; struct __clone_args args = { .flags = CLONE_FILES, .exit_signal = SIGCHLD, }; /* Create a huge gap in the fd table. */ fd1 = open("/dev/null", O_RDWR); EXPECT_GT(fd1, 0); fd2 = dup2(fd1, 1000); EXPECT_GT(fd2, 0); flags = fcntl(fd1, F_DUPFD_QUERY, fd2); if (flags < 0) { EXPECT_EQ(errno, EINVAL); } else { EXPECT_EQ(flags, 1); } pid = sys_clone3(&args, sizeof(args)); ASSERT_GE(pid, 0); if (pid == 0) { ret = sys_close_range(3, ~0U, CLOSE_RANGE_CLOEXEC); if (ret) exit(EXIT_FAILURE); /* * We now have a private file descriptor table and all * our open fds should still be open but made * close-on-exec. */ flags = fcntl(fd1, F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, FD_CLOEXEC); flags = fcntl(fd2, F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, FD_CLOEXEC); fd3 = dup2(fd1, 42); EXPECT_GT(fd3, 0); flags = fcntl(fd1, F_DUPFD_QUERY, fd3); if (flags < 0) { EXPECT_EQ(errno, EINVAL); } else { EXPECT_EQ(flags, 1); } /* * Duplicating the file descriptor must remove the * FD_CLOEXEC flag. */ flags = fcntl(fd3, F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, 0); exit(EXIT_SUCCESS); } EXPECT_EQ(waitpid(pid, &status, 0), pid); EXPECT_EQ(true, WIFEXITED(status)); EXPECT_EQ(0, WEXITSTATUS(status)); /* * We had a shared file descriptor table before along with requesting * close-on-exec so the original fds must not be close-on-exec. */ flags = fcntl(fd1, F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, FD_CLOEXEC); flags = fcntl(fd2, F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, FD_CLOEXEC); fd3 = dup2(fd1, 42); EXPECT_GT(fd3, 0); flags = fcntl(fd1, F_DUPFD_QUERY, fd3); if (flags < 0) { EXPECT_EQ(errno, EINVAL); } else { EXPECT_EQ(flags, 1); } fd4 = open("/dev/null", O_RDWR); EXPECT_GT(fd4, 0); /* Same inode, different file pointers. */ flags = fcntl(fd1, F_DUPFD_QUERY, fd4); if (flags < 0) { EXPECT_EQ(errno, EINVAL); } else { EXPECT_EQ(flags, 0); } flags = fcntl(fd3, F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, 0); EXPECT_EQ(close(fd1), 0); EXPECT_EQ(close(fd2), 0); EXPECT_EQ(close(fd3), 0); EXPECT_EQ(close(fd4), 0); } /* * Regression test for syzbot+96cfd2b22b3213646a93@syzkaller.appspotmail.com */ TEST(close_range_cloexec_unshare_syzbot) { int i, fd1, fd2, fd3, flags, ret, status; pid_t pid; struct __clone_args args = { .flags = CLONE_FILES, .exit_signal = SIGCHLD, }; /* * Create a huge gap in the fd table. When we now call * CLOSE_RANGE_UNSHARE with a shared fd table and and with ~0U as upper * bound the kernel will only copy up to fd1 file descriptors into the * new fd table. If the kernel is buggy and doesn't handle * CLOSE_RANGE_CLOEXEC correctly it will not have copied all file * descriptors and we will oops! * * On a buggy kernel this should immediately oops. But let's loop just * to be sure. */ fd1 = open("/dev/null", O_RDWR); EXPECT_GT(fd1, 0); fd2 = dup2(fd1, 1000); EXPECT_GT(fd2, 0); for (i = 0; i < 100; i++) { pid = sys_clone3(&args, sizeof(args)); ASSERT_GE(pid, 0); if (pid == 0) { ret = sys_close_range(3, ~0U, CLOSE_RANGE_UNSHARE | CLOSE_RANGE_CLOEXEC); if (ret) exit(EXIT_FAILURE); /* * We now have a private file descriptor table and all * our open fds should still be open but made * close-on-exec. */ flags = fcntl(fd1, F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, FD_CLOEXEC); flags = fcntl(fd2, F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, FD_CLOEXEC); fd3 = dup2(fd1, 42); EXPECT_GT(fd3, 0); /* * Duplicating the file descriptor must remove the * FD_CLOEXEC flag. */ flags = fcntl(fd3, F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, 0); EXPECT_EQ(close(fd1), 0); EXPECT_EQ(close(fd2), 0); EXPECT_EQ(close(fd3), 0); exit(EXIT_SUCCESS); } EXPECT_EQ(waitpid(pid, &status, 0), pid); EXPECT_EQ(true, WIFEXITED(status)); EXPECT_EQ(0, WEXITSTATUS(status)); } /* * We created a private file descriptor table before along with * requesting close-on-exec so the original fds must not be * close-on-exec. */ flags = fcntl(fd1, F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, 0); flags = fcntl(fd2, F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, 0); fd3 = dup2(fd1, 42); EXPECT_GT(fd3, 0); flags = fcntl(fd3, F_GETFD); EXPECT_GT(flags, -1); EXPECT_EQ(flags & FD_CLOEXEC, 0); EXPECT_EQ(close(fd1), 0); EXPECT_EQ(close(fd2), 0); EXPECT_EQ(close(fd3), 0); } TEST(close_range_bitmap_corruption) { pid_t pid; int status; struct __clone_args args = { .flags = CLONE_FILES, .exit_signal = SIGCHLD, }; /* get the first 128 descriptors open */ for (int i = 2; i < 128; i++) EXPECT_GE(dup2(0, i), 0); /* get descriptor table shared */ pid = sys_clone3(&args, sizeof(args)); ASSERT_GE(pid, 0); if (pid == 0) { /* unshare and truncate descriptor table down to 64 */ if (sys_close_range(64, ~0U, CLOSE_RANGE_UNSHARE)) exit(EXIT_FAILURE); ASSERT_EQ(fcntl(64, F_GETFD), -1); /* ... and verify that the range 64..127 is not stuck "fully used" according to secondary bitmap */ EXPECT_EQ(dup(0), 64) exit(EXIT_FAILURE); exit(EXIT_SUCCESS); } EXPECT_EQ(waitpid(pid, &status, 0), pid); EXPECT_EQ(true, WIFEXITED(status)); EXPECT_EQ(0, WEXITSTATUS(status)); } TEST(fcntl_created) { for (int i = 0; i < 101; i++) { int fd; char path[PATH_MAX]; fd = open("/dev/null", O_RDONLY | O_CLOEXEC); ASSERT_GE(fd, 0) { if (errno == ENOENT) SKIP(return, "Skipping test since /dev/null does not exist"); } /* We didn't create "/dev/null". */ EXPECT_EQ(fcntl(fd, F_CREATED_QUERY, 0), 0); close(fd); sprintf(path, "aaaa_%d", i); fd = open(path, O_CREAT | O_RDONLY | O_CLOEXEC, 0600); ASSERT_GE(fd, 0); /* We created "aaaa_%d". */ EXPECT_EQ(fcntl(fd, F_CREATED_QUERY, 0), 1); close(fd); fd = open(path, O_RDONLY | O_CLOEXEC); ASSERT_GE(fd, 0); /* We're opening it again, so no positive creation check. */ EXPECT_EQ(fcntl(fd, F_CREATED_QUERY, 0), 0); close(fd); unlink(path); } } TEST_HARNESS_MAIN
Information contained on this website is for historical information purposes only and does not indicate or represent copyright ownership.
Created with Cregit http://github.com/cregit/cregit
Version 2.0-RC1