Unchecked flags in statx(2) [Should be fixed before 4.11-final?]

From: Michael Kerrisk (man-pages)
Date: Fri Apr 21 2017 - 08:15:02 EST

Next message: Joerg Roedel: "Re: [PATCH] x86/mpx: Correctly report do_mpx_bt_fault() failures to user-space"
Previous message: Heikki Krogerus: "Re: [PATCH v17 2/3] usb: USB Type-C connector class"
Next in thread: Michael Kerrisk (man-pages): "Re: Unchecked flags in statx(2) [Should be fixed before 4.11-final?]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello David,

I was reading your statx(2) man page, and noticed this text:

Do not simply set mask to UINT_MAX as one or more bits may, in the
future, be used to specify an extension to the buffer.

(Here' 'mask' is the fourth argument to statx())

What is going on here? Why is there not a check in the code to
give EINVAL if any flag other than those in STATX_ALL (0x00000fffU)
is specified? (There is a check that gives EINVAL flags in
STATX__RESERVED (0x80000000U), but STATX_ALL != ~STATX__RESERVED.

Similarly, there appears to be no check for invalid flags in the
'flags' argument of statx(). Why is there also not such a check
there?

The failure to do these sorts of checks has been the source of grief
in the past with other system calls.

Cheers,

Michael

--
Michael Kerrisk
Linux man-pages maintainer; http://www.kernel.org/doc/man-pages/
Linux/UNIX System Programming Training: http://man7.org/training/

Next message: Joerg Roedel: "Re: [PATCH] x86/mpx: Correctly report do_mpx_bt_fault() failures to user-space"
Previous message: Heikki Krogerus: "Re: [PATCH v17 2/3] usb: USB Type-C connector class"
Next in thread: Michael Kerrisk (man-pages): "Re: Unchecked flags in statx(2) [Should be fixed before 4.11-final?]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]