[2/6] network_thread: set listener/ctrl children as CLOEXEC

Message ID	20220527044700.3666830-3-dominique.martinet@atmark-techno.com
State	Accepted
Headers	show Return-Path: <swupdate+bncBCWIVBV7SUGRBVNPYGKAMGQERA2PGHA@googlegroups.com> Sender: swupdate@googlegroups.com Received-SPF: pass (google.com: domain of dominique.martinet@atmark-techno.com designates 35.74.137.57 as permitted sender) client-ip=35.74.137.57; From: Dominique Martinet <dominique.martinet@atmark-techno.com> To: swupdate@googlegroups.com, sbabic@denx.de Cc: Dominique Martinet <dominique.martinet@atmark-techno.com> Subject: [swupdate] [PATCH 2/6] network_thread: set listener/ctrl children as CLOEXEC Date: Fri, 27 May 2022 13:46:56 +0900 Message-Id: <20220527044700.3666830-3-dominique.martinet@atmark-techno.com> In-Reply-To: <20220527044700.3666830-1-dominique.martinet@atmark-techno.com> References: <20220527044700.3666830-1-dominique.martinet@atmark-techno.com> MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8" Precedence: list Mailing-list: list swupdate@googlegroups.com; contact swupdate+owners@googlegroups.com
Series	Avoid leaking fd to child processes: use CLOEXEC \| expand [0/6] Avoid leaking fd to child processes: use CLOEXEC [1/6] install_from_file: open with CLOEXEC [2/6] network_thread: set listener/ctrl children as CLOEXEC [3/6] notifier: set notifier fds as cloexec [4/6] progress_thread: set progress bar connection fd as CLOEXEC [5/6] prepare_ipc: set client fd as CLOEXEC [6/6] spawn_process: use CLOEXEC for child communication fd

Message ID

20220527044700.3666830-3-dominique.martinet@atmark-techno.com

State

Accepted

Headers

Sender: swupdate@googlegroups.com
Received-SPF: pass (google.com: domain of dominique.martinet@atmark-techno.com
 designates 35.74.137.57 as permitted sender) client-ip=35.74.137.57;
From: Dominique Martinet <dominique.martinet@atmark-techno.com>
To: swupdate@googlegroups.com,
	sbabic@denx.de
Cc: Dominique Martinet <dominique.martinet@atmark-techno.com>
Subject: [swupdate] [PATCH 2/6] network_thread: set listener/ctrl children as
 CLOEXEC
Date: Fri, 27 May 2022 13:46:56 +0900
Message-Id: <20220527044700.3666830-3-dominique.martinet@atmark-techno.com>
In-Reply-To: <20220527044700.3666830-1-dominique.martinet@atmark-techno.com>
References: <20220527044700.3666830-1-dominique.martinet@atmark-techno.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
Precedence: list
Mailing-list: list swupdate@googlegroups.com;
 contact swupdate+owners@googlegroups.com

Series

Avoid leaking fd to child processes: use CLOEXEC | expand

Comments

Stefano Babic June 5, 2022, 2:13 p.m. UTC | #1

On 27.05.22 06:46, Dominique Martinet wrote:
> Signed-off-by: Dominique Martinet <dominique.martinet@atmark-techno.com>
> ---
>   core/network_thread.c | 6 ++++++
>   1 file changed, 6 insertions(+)
> 
> diff --git a/core/network_thread.c b/core/network_thread.c
> index 88042f1238cb..0e031885d208 100644
> --- a/core/network_thread.c
> +++ b/core/network_thread.c
> @@ -261,6 +261,9 @@ int listener_create(const char *path, int type)
>   			WARN("chmod cannot be set on socket, error %s", strerror(errno));
>   	}
>   
> +	if (fcntl(listenfd, F_SETFD, FD_CLOEXEC) < 0)
> +		WARN("Could not set %d as cloexec: %s", listenfd, strerror(errno));
> +
>   	if (type == SOCK_STREAM)
>   		if (listen(listenfd, LISTENQ) < 0) {
>   			close(listenfd);
> @@ -483,6 +486,9 @@ void *network_thread (void *data)
>   				continue;
>   			}
>   		}
> +		if (fcntl(ctrlconnfd, F_SETFD, FD_CLOEXEC) < 0)
> +			WARN("Could not set %d as cloexec: %s", ctrlconnfd, strerror(errno));
> +
>   		nread = read(ctrlconnfd, (void *)&msg, sizeof(msg));
>   
>   		if (nread != sizeof(msg)) {

Reviewed-by: Stefano Babic <sbabic@denx.de>

Best regards,
Stefano Babic

diff --git a/core/network_thread.c b/core/network_thread.c
index 88042f1238cb..0e031885d208 100644
--- a/core/network_thread.c
+++ b/core/network_thread.c
@@ -261,6 +261,9 @@  int listener_create(const char *path, int type)
 			WARN("chmod cannot be set on socket, error %s", strerror(errno));
 	}
 
+	if (fcntl(listenfd, F_SETFD, FD_CLOEXEC) < 0)
+		WARN("Could not set %d as cloexec: %s", listenfd, strerror(errno));
+
 	if (type == SOCK_STREAM)
 		if (listen(listenfd, LISTENQ) < 0) {
 			close(listenfd);
@@ -483,6 +486,9 @@  void *network_thread (void *data)
 				continue;
 			}
 		}
+		if (fcntl(ctrlconnfd, F_SETFD, FD_CLOEXEC) < 0)
+			WARN("Could not set %d as cloexec: %s", ctrlconnfd, strerror(errno));
+
 		nread = read(ctrlconnfd, (void *)&msg, sizeof(msg));
 
 		if (nread != sizeof(msg)) {

[2/6] network_thread: set listener/ctrl children as CLOEXEC

Commit Message

Comments

Patch