Page MenuHomeFreeBSD
Differential D49846

jail: allow jails to call settimeofday() if allow.settime is enabled
ClosedPublic
Actions

Authored by ivy on Tue, Apr 15, 6:01 PM.
Tags
None
Referenced Files
F115287820: D49846.diff
Tue, Apr 22, 6:48 AM
F115261012: D49846.diff
Mon, Apr 21, 11:42 PM
Unknown Object (File)
Sun, Apr 20, 7:21 PM
Unknown Object (File)
Thu, Apr 17, 2:49 AM
Unknown Object (File)
Thu, Apr 17, 2:44 AM
Unknown Object (File)
Thu, Apr 17, 2:09 AM
Unknown Object (File)
Wed, Apr 16, 5:47 AM
Subscribers
guest-patmaddox
imp
olce

Details

Reviewers
jamie
oshogbo
kevans
des
Group Reviewers
Jails
Summary

this extends the existing behaviour to allow calling settimeofday() in
addition to clock_settime(). this is required for chrony, which uses
settimeofday() to step the clock.

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Skipped
Unit
Tests Skipped
Build Status
Buildable 63527
Build 60411: arc lint + arc unit

Event Timeline

ivy created this revision.Tue, Apr 15, 6:01 PM
Herald added subscribers: olce, imp. · View Herald TranscriptTue, Apr 15, 6:01 PM
ivy requested review of this revision.Tue, Apr 15, 6:01 PM
Harbormaster completed remote builds in B63527: Diff 153699.Tue, Apr 15, 6:01 PM
ivy added a parent revision: D49845: rc.subr: add 'settime' to svcj options.Tue, Apr 15, 6:01 PM
ivy removed a reviewer: network.Tue, Apr 15, 6:02 PM
ivy mentioned this in D49845: rc.subr: add 'settime' to svcj options.Tue, Apr 15, 7:06 PM
guest-patmaddox added a subscriber: guest-patmaddox.Tue, Apr 15, 9:12 PM
jamie accepted this revision.Wed, Apr 16, 7:46 PM
jamie added a reviewer: oshogbo.

It looks very basic, and is good by me. But I'm inviting Mariusz to make sure he didn't have a particular reason not to include PRIV_SETTIMEOFDAY when he added PRIV_CLOCK_SETTIME.

This revision is now accepted and ready to land.Wed, Apr 16, 7:46 PM
imp added a comment.Fri, Apr 18, 2:48 AM

Seems reasonable to me. Setting the time is setting the time. They both call settime() in kern_time.c under the covers. Not even sure why they are separate privs, unless the slight difference in only being able to set one of the clocks matters. But since there are two privs, this seems fine given the jail permission granularity.

ivy added reviewers: kevans, des.Sat, Apr 19, 5:22 AM

adding kevans, des (mentors) to review. i am ready to land this but i will wait for Mariusz input first.

des accepted this revision.Sat, Apr 19, 10:14 AM
oshogbo accepted this revision.Sat, Apr 19, 12:53 PM

I have missed this one. I simply looked into syscalls from ntpd.

kevans accepted this revision.Sun, Apr 20, 3:33 PM
ivy closed this revision.Sun, Apr 20, 7:50 PM

closing this manually as it was committed as 1589eb2e8764623d1c32982b52088842519dfd11. i think phab missed this because i put <> around the Differential Revision tag in the commit message, which i'll stop doing.

des added a comment.Mon, Apr 21, 5:23 PM
In D49846#1138487, @ivy wrote:

i think phab missed this because i put <> around the Differential Revision tag in the commit message, which i'll stop doing.

You really should install freebsd-git-devtools and use git arc stage to prepare commits from phab reviews.

Revision Contents
Changeset List

PathSize
sys/
kern/
1 line

Diff 153699

View Options

sys/kern/kern_jail.c

Loading...