Specify behaviour for reserved permission encoding #53
Conversation
There was a problem hiding this comment.
@Timmmm @arichardson @tariqkurd-repo : What do you think would happen if executing CBuildCap to tag a cap that has permissions set to a reserved value? Options include:
- Set the permissions of the output cap to 0 (i.e. no permissions)
- Set tag 0 for the output tag
I would prefer (2)!
|
Any kind of reserved input should always be untagged in the output. Anything else sounds like trouble. |
src/cap-description.adoc
Outdated
| xref:cap_perms_encoding32[xrefstyle=short]). It is not possible for a tagged | ||
| capability to have this value since <<CANDPERM>> will never create it. It is | ||
| possible for untagged capabilities to have it. <<CGETPERM>> will interpret it | ||
| as if it were 0b0000 (no permissions). |
There was a problem hiding this comment.
The way this is worded forbids an extension later assigning meaning to it (yes, this is non-normative text, but you still don't want it to be contradictory)
There was a problem hiding this comment.
Good point. Would it be ok if I change it to It is currently not possible... <<CGETPERM>> will currently interpret it... This may change in future..
There was a problem hiding this comment.
Maybe something like this still allows for future extensibility:
If the permission encoding has reserved bit patterns (e.g. the format for XLENMAX=32 with {cheri_base_ext_name}
xref:cap_perms_encoding32[xrefstyle=short]) then it is not possible for a tagged
capability to have this value since <<CANDPERM>> will never create it. However, it is
possible for untagged capabilities to have it in which case <<CGETPERM>> will interpret it
as if it were 0b0000 (no permissions). Future extensions may assign meaning to these bit patterns for which <<CANDPERM>> is allowed to report a non-zero value.
There was a problem hiding this comment.
Updated based on @arichardson's suggestion.
Timmmm
force-pushed
the
user/timh/specify_cgetperm_reserved
branch
from
d5b117c to
fb474bf
Compare
Fixes #47