Add OPENSSL_NO_UNIX_SOCK define to exclude unix sockets support #18256
Conversation
openssl-machine
added
the
hold: cla required
|
I am not sure this is a right fix, at least it is no straightforwardly clear |
github-actions
bot
added
the
severity: fips change
openssl-machine
removed
the
hold: cla required
|
My assumption was that since we do not include openssl/include/internal/sockets.h Lines 19 to 25 in a381897 where <sys/un.h> only defines sockaddr_un. So currently we set NO_SYS_UN_H to prevent the inclusion of <sys/un.h> and then later undef AF_UNIX to prevent us from using sockaddr_un. I think it makes sense to use the same define to decide whether we include this file and use it's symbols afterwards.
|
|
Hmm, but there might be other systems that do not define AF_UNIX but are not covered by the cases where we define NO_SYS_UN_H in the sockets.h. Is this PR fixing a concrete issue or what is the purpose? |
github-actions
bot
removed
the
severity: fips change
Is there any reason to import
I am working on an OS, which defines Another way would be to add something like |
You've misunderstood. There is no reason for that, but what I am saying is that the NO_SYS_UN_H is defined in sockets.h only in two particular cases but there might be other targets that weren't defining AF_UNIX and your PR would break these.
OK, then do it. Put it at the end of sockets.h and also define it when AF_UNIX is not defined. (Also do not forget to check whether OPENSSL_NO_UNIX_SOCKETS is already defined.) |
t8m
added
branch: master
include/internal/sockets.h
Outdated
| @@ -75,7 +75,7 @@ struct servent *PASCAL getservbyname(const char *, const char *); | |||
| # include <inet.h> | |||
| # else | |||
| # include <sys/socket.h> | |||
| # ifndef NO_SYS_UN_H | |||
| # if (!defined NO_SYS_UN_H) && (defined AF_UNIX) && (!defined OPENSSL_NO_UNIX_SOCK) | |||
There was a problem hiding this comment.
I updated this test as well, so it is enough to set OPENSSL_NO_UNIX_SOCK to disable the unix socket support
There was a problem hiding this comment.
Please use the same style of using parentheses here as in other cases in this source file. !defined(NO_SYS_UN_H) &&...
There was a problem hiding this comment.
I updated them accordingly
include/internal/sockets.h
Outdated
| @@ -75,7 +75,7 @@ struct servent *PASCAL getservbyname(const char *, const char *); | |||
| # include <inet.h> | |||
| # else | |||
| # include <sys/socket.h> | |||
| # ifndef NO_SYS_UN_H | |||
| # if (!defined NO_SYS_UN_H) && (defined AF_UNIX) && (!defined OPENSSL_NO_UNIX_SOCK) | |||
There was a problem hiding this comment.
Please use the same style of using parentheses here as in other cases in this source file. !defined(NO_SYS_UN_H) &&...
t8m
added
the
approval: review pending
t8m
changed the title
|
This appears to build correctly on NonStop. However, other independent issues are preventing the build from completing. |
|
This PR is in a state where it requires action by @openssl/committers but the last update was 30 days ago |
|
This PR is in a state where it requires action by @openssl/committers but the last update was 61 days ago |
paulidale
added
approval: done
openssl-machine
added
approval: ready to merge
|
This pull request is ready to merge |
|
Merged, thanks for the contribution. |
Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from #18256)
Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from openssl#18256)
Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from openssl#18256) (cherry picked from commit 081f348)
This replaces the usage of
#ifdef AF_UNIXin bio/* with#ifndef NO_SYS_UN_H. This is already set for the systems we currently undefineAF_UNIXon.Checklist