[PATCH v10 6/9] selftests/landlock: Test IOCTLs on named pipes

[PATCH v10 0/9] Landlock: IOCTL support · "Günther Noack" <gnoack@google.com> · 2024-03-09
[PATCH v10 1/9] security: Create security_file_vfs_ioctl hook · "Günther Noack" <gnoack@google.com> · 2024-03-09
Re: [PATCH v10 1/9] security: Create security_file_vfs_ioctl hook · Paul Moore <paul@paul-moore.com> · 2024-03-14
[RFC PATCH] fs: Add an use vfs_get_ioctl_handler() · Mickaël Salaün <mic@digikod.net> · 2024-03-15
Re: [PATCH v10 1/9] security: Create security_file_vfs_ioctl hook · Mickaël Salaün <mic@digikod.net> · 2024-03-15
[PATCH v10 2/9] landlock: Add IOCTL access right for character and block devices · "Günther Noack" <gnoack@google.com> · 2024-03-09
Re: [PATCH v10 2/9] landlock: Add IOCTL access right for character and block devices · Mickaël Salaün <mic@digikod.net> · 2024-03-11
Re: [PATCH v10 2/9] landlock: Add IOCTL access right for character and block devices · Alejandro Colomar <alx@kernel.org> · 2024-03-11
[PATCH v10 3/9] selftests/landlock: Test IOCTL support · "Günther Noack" <gnoack@google.com> · 2024-03-09
[PATCH v10 4/9] selftests/landlock: Test IOCTL with memfds · "Günther Noack" <gnoack@google.com> · 2024-03-09
[PATCH v10 5/9] selftests/landlock: Test ioctl(2) and ftruncate(2) with open(O_PATH) · "Günther Noack" <gnoack@google.com> · 2024-03-09
[PATCH v10 6/9] selftests/landlock: Test IOCTLs on named pipes · "Günther Noack" <gnoack@google.com> · 2024-03-09
Re: [PATCH v10 6/9] selftests/landlock: Test IOCTLs on named pipes · Mickaël Salaün <mic@digikod.net> · 2024-03-22
Re: [PATCH v10 6/9] selftests/landlock: Test IOCTLs on named pipes · Mickaël Salaün <mic@digikod.net> · 2024-03-22
Re: [PATCH v10 6/9] selftests/landlock: Test IOCTLs on named pipes · "Günther Noack" <gnoack@google.com> · 2024-03-22
Re: [PATCH v10 6/9] selftests/landlock: Test IOCTLs on named pipes · Mickaël Salaün <mic@digikod.net> · 2024-03-22
[PATCH v10 7/9] selftests/landlock: Check IOCTL restrictions for named UNIX domain sockets · "Günther Noack" <gnoack@google.com> · 2024-03-09
Re: [PATCH v10 7/9] selftests/landlock: Check IOCTL restrictions for named UNIX domain sockets · Mickaël Salaün <mic@digikod.net> · 2024-03-22
Re: [PATCH v10 7/9] selftests/landlock: Check IOCTL restrictions for named UNIX domain sockets · "Günther Noack" <gnoack@google.com> · 2024-03-22
[PATCH v10 8/9] samples/landlock: Add support for LANDLOCK_ACCESS_FS_IOCTL_DEV · "Günther Noack" <gnoack@google.com> · 2024-03-09
[PATCH v10 9/9] landlock: Document IOCTL support · "Günther Noack" <gnoack@google.com> · 2024-03-09

STALE810d

Revisions (10)

2023-06-23 v2 [diff vs current]
2023-11-03 v4 [diff vs current]
2023-11-17 v5 [diff vs current]
2023-11-24 v6 [diff vs current]
2023-12-01 v7 [diff vs current]
2023-12-08 v8 [diff vs current]
2024-03-09 v10 current
2024-03-22 v11 [diff vs current]
2024-03-25 v12 [diff vs current]
2024-04-05 v14 [diff vs current]

From: "Günther Noack" <gnoack@google.com>
Date: 2024-03-09 07:53:39
Also in: linux-fsdevel
Subsystem: kernel selftest framework, landlock security module, the rest · Maintainers: Shuah Khan, Mickaël Salaün, Linus Torvalds

Named pipes should behave like pipes created with pipe(2),
so we don't want to restrict IOCTLs on them.

Suggested-by: Mickaël Salaün <mic@digikod.net>
Signed-off-by: Günther Noack <gnoack@google.com>
---
 tools/testing/selftests/landlock/fs_test.c | 61 ++++++++++++++++++----
 1 file changed, 52 insertions(+), 9 deletions(-)

diff --git a/tools/testing/selftests/landlock/fs_test.c b/tools/testing/selftests/landlock/fs_test.c
index 5c47231a722e..d991f44875bc 100644
--- a/tools/testing/selftests/landlock/fs_test.c
+++ b/tools/testing/selftests/landlock/fs_test.c

@@ -3924,6 +3924,58 @@ TEST_F_FORK(layout1, o_path_ftruncate_and_ioctl)
 	ASSERT_EQ(0, close(fd));
 }
 
+static int test_fionread_ioctl(int fd)
+{
+	size_t sz = 0;
+
+	if (ioctl(fd, FIONREAD, &sz) < 0 && errno == EACCES)
+		return errno;
+	return 0;
+}
+
+/*
+ * Named pipes are not governed by the LANDLOCK_ACCESS_FS_IOCTL_DEV right,
+ * because they are not character or block devices.
+ */
+TEST_F_FORK(layout1, named_pipe_ioctl)
+{
+	pid_t child_pid;
+	int fd, ruleset_fd;
+	const char *const path = file1_s1d1;
+	const struct landlock_ruleset_attr attr = {
+		.handled_access_fs = LANDLOCK_ACCESS_FS_IOCTL_DEV,
+	};
+
+	ASSERT_EQ(0, unlink(path));
+	ASSERT_EQ(0, mkfifo(path, 0600));
+
+	/* Enables Landlock. */
+	ruleset_fd = landlock_create_ruleset(&attr, sizeof(attr), 0);
+	ASSERT_LE(0, ruleset_fd);
+	enforce_ruleset(_metadata, ruleset_fd);
+	ASSERT_EQ(0, close(ruleset_fd));
+
+	/* The child process opens the pipe for writing. */
+	child_pid = fork();
+	ASSERT_NE(-1, child_pid);
+	if (child_pid == 0) {
+		fd = open(path, O_WRONLY);
+		close(fd);
+		exit(0);
+	}
+
+	fd = open(path, O_RDONLY);
+	ASSERT_LE(0, fd);
+
+	/* FIONREAD is implemented by pipefifo_fops. */
+	EXPECT_EQ(0, test_fionread_ioctl(fd));
+
+	ASSERT_EQ(0, close(fd));
+	ASSERT_EQ(0, unlink(path));
+
+	ASSERT_EQ(child_pid, waitpid(child_pid, NULL, 0));
+}
+
 /* clang-format off */
 FIXTURE(ioctl) {};

@@ -3997,15 +4049,6 @@ static int test_tcgets_ioctl(int fd)
 	return 0;
 }
 
-static int test_fionread_ioctl(int fd)
-{
-	size_t sz = 0;
-
-	if (ioctl(fd, FIONREAD, &sz) < 0 && errno == EACCES)
-		return errno;
-	return 0;
-}
-
 TEST_F_FORK(ioctl, handle_dir_access_file)
 {
 	const int flag = 0;

-- 
2.44.0.278.ge034bb2e1d-goog

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help