Kernel: Don't keep protected Process data in a separate allocation

The previous architecture had a huge flaw: the pointer to the protected data was itself unprotected, allowing you to overwrite it at any time. This patch reorganizes the protected data so it's part of the Process class itself. (Actually, it's a new ProcessBase helper class.) We use the first 4 KB of Process objects themselves as the new storage location for protected data. Then we make Process objects page-aligned using MAKE_ALIGNED_ALLOCATED. This allows us to easily turn on/off write-protection for everything in the ProcessBase portion of Process. :^) Thanks to @bugaevc for pointing out the flaw! This is still not perfect but it's an improvement.
Author: https://github.com/awesomekling Commit: https://github.com/SerenityOS/serenity/commit/90c0f9664ea
2026-05-05 06:32:30 +02:00 · 2021-03-11 13:13:05 +01:00 · 2024-07-18 21:31:40 +09:00
parent 4fcc637e29
commit 90c0f9664e
10 changed files with 125 additions and 125 deletions
--- a/Kernel/Syscalls/process.cpp
+++ b/Kernel/Syscalls/process.cpp
@@ -38,7 +38,7 @@ KResultOr<pid_t> Process::sys$getpid()
 KResultOr<pid_t> Process::sys$getppid()
 {
    REQUIRE_PROMISE(stdio);
-    return protected_data().ppid.value();
+    return m_ppid.value();
 }

 KResultOr<int> Process::sys$get_process_name(Userspace<char*> buffer, size_t buffer_size)