Kernel: Delay Process data unprotection in sys$pledge()

Don't unprotect the protected data area until we've validated the pledge syscall inputs.
2025-07-25 19:27:44 +00:00 · 2022-01-02 12:51:20 +01:00 · 2022-01-02 12:51:20 +01:00 · a62bdb0761
commit a62bdb0761
parent c427f8bbeb
1 changed files with 2 additions and 2 deletions
--- a/Kernel/Syscalls/pledge.cpp
+++ b/Kernel/Syscalls/pledge.cpp
@ -42,8 +42,6 @@ ErrorOr<FlatPtr> Process::sys$pledge(Userspace<const Syscall::SC_pledge_params*>
        return true;
    };

-    ProtectedDataMutationScope scope { *this };
-
    u32 new_promises = 0;
    if (promises) {
        if (!parse_pledge(promises->view(), new_promises))
@ -65,6 +63,8 @@ ErrorOr<FlatPtr> Process::sys$pledge(Userspace<const Syscall::SC_pledge_params*>
    // erroring out when parsing the exec promises later. Such bugs silently
    // leave the caller in an unexpected state.

+    ProtectedDataMutationScope scope { *this };
+
    if (promises) {
        m_protected_values.has_promises = true;
        m_protected_values.promises = new_promises;