X-Git-Url: https://git.saurik.com/apple/xnu.git/blobdiff_plain/3e170ce000f1506b7b5d2c5c7faec85ceabb573d..4d15aeb193b2c68f1d38666c317f8d3734f5f083:/libsyscall/wrappers/spawn/posix_spawn.c

diff --git a/libsyscall/wrappers/spawn/posix_spawn.c b/libsyscall/wrappers/spawn/posix_spawn.c
index 88b6cabf3..be3e94cea 100644
--- a/libsyscall/wrappers/spawn/posix_spawn.c
+++ b/libsyscall/wrappers/spawn/posix_spawn.c
@@ -39,7 +39,7 @@
 #include <mach/port.h>
 #include <mach/exception_types.h>
 #include <mach/coalition.h> /* for COALITION_TYPE_MAX */
-
+#include <sys/kern_memorystatus.h>
 
 /*
  * posix_spawnattr_init
@@ -133,7 +133,7 @@ posix_spawnattr_init(posix_spawnattr_t *attr)
 		/* Default is to inherit parent's coalition(s) */
 		(*psattrp)->psa_coalition_info = NULL;
 
-		(*psattrp)->reserved = NULL;
+		(*psattrp)->psa_persona_info = NULL;
 
 		/*
 		 * old coalition field
@@ -178,7 +178,7 @@ posix_spawnattr_init(posix_spawnattr_t *attr)
  */
 static int posix_spawn_destroyportactions_np(posix_spawnattr_t *);
 static int posix_spawn_destroycoalition_info_np(posix_spawnattr_t *);
-
+static int posix_spawn_destroypersona_info_np(posix_spawnattr_t *);
 
 int
 posix_spawnattr_destroy(posix_spawnattr_t *attr)
@@ -191,6 +191,7 @@ posix_spawnattr_destroy(posix_spawnattr_t *attr)
 	psattr = *(_posix_spawnattr_t *)attr;
 	posix_spawn_destroyportactions_np(attr);
 	posix_spawn_destroycoalition_info_np(attr);
+	posix_spawn_destroypersona_info_np(attr);
 
 	free(psattr);
 	*attr = NULL;
@@ -778,6 +779,29 @@ posix_spawn_destroycoalition_info_np(posix_spawnattr_t *attr)
 	return 0;
 }
 
+/*
+ * posix_spawn_destroypersona_info_np
+ * Description: clean up persona_info struct in posix_spawnattr_t attr
+ */
+static int
+posix_spawn_destroypersona_info_np(posix_spawnattr_t *attr)
+{
+	_posix_spawnattr_t psattr;
+	struct _posix_spawn_persona_info *persona;
+
+	if (attr == NULL || *attr == NULL)
+		return EINVAL;
+
+	psattr = *(_posix_spawnattr_t *)attr;
+	persona = psattr->psa_persona_info;
+	if (persona == NULL)
+		return EINVAL;
+
+	psattr->psa_persona_info = NULL;
+	free(persona);
+	return 0;
+}
+
 /*
  * posix_spawn_appendportaction_np
  * Description: append a port action, grow the array if necessary
@@ -1308,6 +1332,43 @@ posix_spawnattr_getcpumonitor(posix_spawnattr_t * __restrict attr,
 }
 
 
+/*
+ * posix_spawnattr_setjetsam_ext
+ *
+ * Description:	Set jetsam attributes for the spawn attribute object
+ *		referred to by 'attr'.
+ *
+ * Parameters:	flags			The flags value to set
+ *		priority		Relative jetsam priority
+ *		memlimit_active		Value in megabytes; memory footprint
+ *					above this level while process is
+ *					active may result in termination.
+ *		memlimit_inactive	Value in megabytes; memory footprint
+ *					above this level while process is
+ *					inactive may result in termination.
+ *
+ * Returns:	0			Success
+ */
+int
+posix_spawnattr_setjetsam_ext(posix_spawnattr_t * __restrict attr,
+	short flags, int priority, int memlimit_active, int memlimit_inactive)
+{
+	_posix_spawnattr_t psattr;
+
+	if (attr == NULL || *attr == NULL)
+		return EINVAL;
+
+	psattr = *(_posix_spawnattr_t *)attr;
+
+	psattr->psa_jetsam_flags = flags;
+	psattr->psa_jetsam_flags |= POSIX_SPAWN_JETSAM_SET;
+	psattr->psa_priority = priority;
+	psattr->psa_memlimit_active = memlimit_active;
+	psattr->psa_memlimit_inactive = memlimit_inactive;
+
+	return (0);
+}
+
 
 /*
  * posix_spawnattr_set_importancewatch_port_np
@@ -1523,6 +1584,124 @@ posix_spawnattr_get_darwin_role_np(const posix_spawnattr_t * __restrict attr, ui
 	return (0);
 }
 
+
+int
+posix_spawnattr_set_persona_np(const posix_spawnattr_t * __restrict attr, uid_t persona_id, uint32_t flags)
+{
+	_posix_spawnattr_t psattr;
+	struct _posix_spawn_persona_info *persona;
+
+	if (attr == NULL || *attr == NULL)
+		return EINVAL;
+
+	if (flags & ~POSIX_SPAWN_PERSONA_ALL_FLAGS)
+		return EINVAL;
+
+	psattr = *(_posix_spawnattr_t *)attr;
+
+	persona = psattr->psa_persona_info;
+	if (!persona) {
+		persona = (struct _posix_spawn_persona_info *)malloc(sizeof(*persona));
+		if (!persona)
+			return ENOMEM;
+		persona->pspi_uid = 0;
+		persona->pspi_gid = 0;
+		persona->pspi_ngroups = 0;
+		persona->pspi_groups[0] = 0;
+
+		psattr->psa_persona_info = persona;
+	}
+
+	persona->pspi_id = persona_id;
+	persona->pspi_flags = flags;
+
+	return 0;
+}
+
+int
+posix_spawnattr_set_persona_uid_np(const posix_spawnattr_t * __restrict attr, uid_t uid)
+{
+	_posix_spawnattr_t psattr;
+	struct _posix_spawn_persona_info *persona;
+
+	if (attr == NULL || *attr == NULL)
+		return EINVAL;
+
+	psattr = *(_posix_spawnattr_t *)attr;
+	persona = psattr->psa_persona_info;
+	if (!persona)
+		return EINVAL;
+
+	if (!(persona->pspi_flags & (POSIX_SPAWN_PERSONA_FLAGS_OVERRIDE | POSIX_SPAWN_PERSONA_FLAGS_VERIFY)))
+		return EINVAL;
+
+	persona->pspi_uid = uid;
+
+	persona->pspi_flags |= POSIX_SPAWN_PERSONA_UID;
+
+	return 0;
+}
+
+int
+posix_spawnattr_set_persona_gid_np(const posix_spawnattr_t * __restrict attr, gid_t gid)
+{
+	_posix_spawnattr_t psattr;
+	struct _posix_spawn_persona_info *persona;
+
+	if (attr == NULL || *attr == NULL)
+		return EINVAL;
+
+	psattr = *(_posix_spawnattr_t *)attr;
+	persona = psattr->psa_persona_info;
+	if (!persona)
+		return EINVAL;
+
+	if (!(persona->pspi_flags & (POSIX_SPAWN_PERSONA_FLAGS_OVERRIDE | POSIX_SPAWN_PERSONA_FLAGS_VERIFY)))
+		return EINVAL;
+
+	persona->pspi_gid = gid;
+
+	persona->pspi_flags |= POSIX_SPAWN_PERSONA_GID;
+
+	return 0;
+}
+
+int
+posix_spawnattr_set_persona_groups_np(const posix_spawnattr_t * __restrict attr, int ngroups, gid_t *gidarray, uid_t gmuid)
+{
+	_posix_spawnattr_t psattr;
+	struct _posix_spawn_persona_info *persona;
+
+	if (attr == NULL || *attr == NULL)
+		return EINVAL;
+
+	if (gidarray == NULL)
+		return EINVAL;
+
+	if (ngroups > NGROUPS)
+		return EINVAL;
+
+	psattr = *(_posix_spawnattr_t *)attr;
+	persona = psattr->psa_persona_info;
+	if (!persona)
+		return EINVAL;
+
+	if (!(persona->pspi_flags & (POSIX_SPAWN_PERSONA_FLAGS_OVERRIDE | POSIX_SPAWN_PERSONA_FLAGS_VERIFY)))
+		return EINVAL;
+
+	persona->pspi_ngroups = ngroups;
+	for (int i = 0; i < ngroups; i++)
+		persona->pspi_groups[i] = gidarray[i];
+
+	persona->pspi_gmuid = gmuid;
+
+	persona->pspi_flags |= POSIX_SPAWN_PERSONA_GROUPS;
+
+	return 0;
+}
+
+
+
 /*
  * posix_spawn
  *
@@ -1600,6 +1779,10 @@ posix_spawn(pid_t * __restrict pid, const char * __restrict path,
 				ad.coal_info_size = sizeof(struct _posix_spawn_coalition_info);
 				ad.coal_info = psattr->psa_coalition_info;
 			}
+			if (psattr->psa_persona_info != NULL) {
+				ad.persona_info_size = sizeof(struct _posix_spawn_persona_info);
+				ad.persona_info = psattr->psa_persona_info;
+			}
 		}
 		if (file_actions != NULL && *file_actions != NULL) {
 			_posix_spawn_file_actions_t psactsp =