LibIPC: Support sending file descriptors :^)

It is now possible to use the special IPC::File type in message arguments. In C++, the type is nothing more than a wrapper over a file descriptor. But when serializing/deserializing IPC::File arguments, LibIPC will use the sendfd/recvfd kernel APIs instead of sending the integer inline. This makes it quite convenient to pass files over IPC, and will allow us to significantly tighten sandboxes in the future :^) Closes https://github.com/SerenityOS/serenity/issues/3643
2025-07-26 22:47:45 +00:00 · 2020-11-21 21:59:12 +03:00 · 2020-11-21 21:59:12 +03:00 · 23dc3ff0c2
commit 23dc3ff0c2
parent fa2e3e2be4
9 changed files with 148 additions and 50 deletions
--- a/Libraries/LibIPC/Connection.h
+++ b/Libraries/LibIPC/Connection.h
@ -77,12 +77,25 @@ public:

        auto buffer = message.encode();
        // Prepend the message size.
-        uint32_t message_size = buffer.size();
-        buffer.prepend(reinterpret_cast<const u8*>(&message_size), sizeof(message_size));
+        uint32_t message_size = buffer.data.size();
+        buffer.data.prepend(reinterpret_cast<const u8*>(&message_size), sizeof(message_size));
+
+#ifdef __serenity__
+        for (int fd : buffer.fds) {
+            auto rc = sendfd(m_socket->fd(), fd);
+            if (rc < 0) {
+                perror("sendfd");
+                shutdown();
+            }
+        }
+#else
+        if (!buffer.fds.is_empty())
+            warnln("fd passing is not supported on this platform, sorry :(");
+#endif

        size_t total_nwritten = 0;
-        while (total_nwritten < buffer.size()) {
-            auto nwritten = write(m_socket->fd(), buffer.data() + total_nwritten, buffer.size() - total_nwritten);
+        while (total_nwritten < buffer.data.size()) {
+            auto nwritten = write(m_socket->fd(), buffer.data.data() + total_nwritten, buffer.data.size() - total_nwritten);
            if (nwritten < 0) {
                switch (errno) {
                case EPIPE:
@ -202,9 +215,9 @@ protected:
                break;
            index += sizeof(message_size);
            auto remaining_bytes = ByteBuffer::wrap(bytes.data() + index, bytes.size() - index);
-            if (auto message = LocalEndpoint::decode_message(remaining_bytes)) {
+            if (auto message = LocalEndpoint::decode_message(remaining_bytes, m_socket->fd())) {
                m_unprocessed_messages.append(message.release_nonnull());
-            } else if (auto message = PeerEndpoint::decode_message(remaining_bytes)) {
+            } else if (auto message = PeerEndpoint::decode_message(remaining_bytes, m_socket->fd())) {
                m_unprocessed_messages.append(message.release_nonnull());
            } else {
                dbgln("Failed to parse a message");