[LTP] [PATCH 5/5] syscalls/setpriority01: Use new user id to avoid messing system environment

public inbox for ltp@lists.linux.it
 help / color / mirror / Atom feed

From: Cyril Hrubis <chrubis@suse.cz>
To: ltp@lists.linux.it
Subject: [LTP] [PATCH 5/5] syscalls/setpriority01: Use new user id to avoid messing system environment
Date: Mon, 5 Dec 2016 15:45:26 +0100	[thread overview]
Message-ID: <20161205144526.GH22344@rei.lan> (raw)
In-Reply-To: <1480507955-12652-5-git-send-email-fenggw-fnst@cn.fujitsu.com>

Hi!
>  #include "tst_test.h"
> +#include "linux_syscall_numbers.h"
> +
> +static char username[32];
> +static uid_t uid;
> +static struct __user_cap_header_struct header;
> +static struct __user_cap_data_struct data;

Are you sure these are the right structure prototypes to use? The double
underscore usually means "library internal, do not touch".

>  	int which;
> @@ -35,9 +49,8 @@ static struct tcase {
>  	{PRIO_USER}
>  };
>  
> -static void verify_setpriority(unsigned int n)
> +static void setpriority_test(struct tcase *tc)
>  {
> -	struct tcase *tc = &tcases[n];
>  	int new_prio, cur_prio;
>  	int failflag = 0;
>  
> @@ -68,9 +81,60 @@ static void verify_setpriority(unsigned int n)
>  	}
>  }
>  
> +static void verify_setpriority(unsigned int n)
> +{
> +	struct tcase *tc = &tcases[n];
> +
> +	if (!SAFE_FORK()) {
> +		SAFE_PRCTL(PR_SET_KEEPCAPS, 1);
> +
> +		SAFE_SETUID(uid);
> +		SAFE_SETPGID(0, 0);
> +
> +		if (tst_syscall(__NR_capset, &header, &data) == -1)
> +			tst_brk(TBROK | TERRNO, "capset() failed");
> +
> +		setpriority_test(tc);
> +
> +		exit(0);
> +	}
> +
> +	tst_reap_children();

Hmm, why do we run the actuall testcase in the child here? That
complicates the whole test far more than it should have.

We can instead just run pause() in the child and run the setpriority()
call in the parent with right pid/group/uid. Or did I miss something?

> +}
> +
> +static void setup(void)
> +{
> +	char cmd[64];
> +	struct passwd *ltpuser;
> +
> +	sprintf(username, "setpriority01.%d", getpid());
> +
> +	sprintf(cmd, "useradd %s", username);
> +	SAFE_SYSTEM(cmd);
> +
> +	ltpuser = SAFE_GETPWNAM(username);
> +	uid = ltpuser->pw_uid;
> +
> +	header.version = _LINUX_CAPABILITY_VERSION;
> +	header.pid = 0;
> +	if (tst_syscall(__NR_capget, &header, &data) == -1)
> +		tst_brk(TBROK | TERRNO, "capget() failed");
> +}
> +
> +static void cleanup(void)
> +{
> +	char cmd[64];
> +
> +	sprintf(cmd, "userdel -r %s", username);
> +	SAFE_SYSTEM(cmd);
> +}
> +
>  static struct tst_test test = {
>  	.tid = "setpriority01",
>  	.tcnt = ARRAY_SIZE(tcases),
>  	.needs_root = 1,
> +	.forks_child = 1,
> +	.setup = setup,
> +	.cleanup = cleanup,
>  	.test = verify_setpriority,
>  };
> -- 
> 1.8.4.2
> 
> 
> 
> 
> -- 
> Mailing list info: https://lists.linux.it/listinfo/ltp

-- 
Cyril Hrubis
chrubis@suse.cz

next prev parent reply	other threads:[~2016-12-05 14:45 UTC|newest]

Thread overview: 18+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2016-11-30 12:12 [LTP] [PATCH 1/5] Cleanup && Drop redundant space in safe macros Guangwen Feng
2016-11-30 12:12 ` [LTP] [PATCH 2/5] SAFE_MACROS: Add SAFE_SETPRIORITY() Guangwen Feng
2016-11-30 12:12 ` [LTP] [PATCH 3/5] SAFE_MACROS: Add SAFE_SYSTEM() Guangwen Feng
2016-12-05 14:33   ` Cyril Hrubis
2016-12-06 10:02     ` Guangwen Feng
2016-11-30 12:12 ` [LTP] [PATCH 4/5] SAFE_MACROS: Add SAFE_PRCTL() Guangwen Feng
2016-12-05 14:40   ` Cyril Hrubis
2016-12-15 10:17     ` Guangwen Feng
2016-12-15 10:43       ` Cyril Hrubis
2016-12-15 10:49         ` [LTP] [PATCH v2 1/4] Cleanup && Drop redundant space in safe macros Guangwen Feng
2016-12-15 10:49           ` [LTP] [PATCH v2 2/4] SAFE_MACROS: Add SAFE_SETPRIORITY() Guangwen Feng
2016-12-15 10:49           ` [LTP] [PATCH v2 3/4] SAFE_MACROS: Add SAFE_PRCTL() Guangwen Feng
2016-12-15 10:49           ` [LTP] [PATCH v2 4/4] syscalls/setpriority01: Use new user id to avoid messing system environment Guangwen Feng
2017-01-04 12:13             ` Cyril Hrubis
2016-11-30 12:12 ` [LTP] [PATCH 5/5] " Guangwen Feng
2016-12-05 14:45   ` Cyril Hrubis [this message]
2016-12-06 10:27     ` Guangwen Feng
2016-12-06 10:34       ` Cyril Hrubis

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20161205144526.GH22344@rei.lan \
    --to=chrubis@suse.cz \
    --cc=ltp@lists.linux.it \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox