p2p: allow NetPermissions::ClearFlag() only with PF_ISIMPLICIT

jonatack · vasild · jonatack · commit 36fb036d25e2 · 2021-04-18T16:32:28.000+02:00
NetPermissions::ClearFlag() is currently only called in the codebase with
an `f` value of NetPermissionFlags::PF_ISIMPLICIT.

If that should change in the future, ClearFlag() should not be called
with `f` being a subflag of a multiflag, e.g. NetPermissionFlags::PF_RELAY
or NetPermissionFlags::PF_DOWNLOAD, as that would leave `flags` in an
invalid state corresponding to none of the existing NetPermissionFlags.

Therefore, allow only calling ClearFlag with the implicit flag for now.

Co-authored-by: Vasil Dimov &lt;vd@FreeBSD.org&gt;
diff --git a/src/net_permissions.h b/src/net_permissions.h
@@ -51,8 +51,14 @@ class NetPermissions
     {
         flags = static_cast<NetPermissionFlags>(flags | f);
     }
+    //! ClearFlag is only called with `f` == NetPermissionFlags::PF_ISIMPLICIT.
+    //! If that should change in the future, be aware that ClearFlag should not
+    //! be called with a subflag of a multiflag, e.g. NetPermissionFlags::PF_RELAY
+    //! or NetPermissionFlags::PF_DOWNLOAD, as that would leave `flags` in an
+    //! invalid state corresponding to none of the existing flags.
     static inline void ClearFlag(NetPermissionFlags& flags, NetPermissionFlags f)
     {
+        assert(f == NetPermissionFlags::PF_ISIMPLICIT);
         flags = static_cast<NetPermissionFlags>(flags & ~f);
     }
 };
diff --git a/src/test/fuzz/net_permissions.cpp b/src/test/fuzz/net_permissions.cpp
@@ -25,7 +25,7 @@ FUZZ_TARGET(net_permissions)
         (void)NetPermissions::ToStrings(net_whitebind_permissions.m_flags);
         (void)NetPermissions::AddFlag(net_whitebind_permissions.m_flags, net_permission_flags);
         assert(NetPermissions::HasFlag(net_whitebind_permissions.m_flags, net_permission_flags));
-        (void)NetPermissions::ClearFlag(net_whitebind_permissions.m_flags, net_permission_flags);
+        (void)NetPermissions::ClearFlag(net_whitebind_permissions.m_flags, NetPermissionFlags::PF_ISIMPLICIT);
         (void)NetPermissions::ToStrings(net_whitebind_permissions.m_flags);
     }
 
@@ -35,7 +35,7 @@ FUZZ_TARGET(net_permissions)
         (void)NetPermissions::ToStrings(net_whitelist_permissions.m_flags);
         (void)NetPermissions::AddFlag(net_whitelist_permissions.m_flags, net_permission_flags);
         assert(NetPermissions::HasFlag(net_whitelist_permissions.m_flags, net_permission_flags));
-        (void)NetPermissions::ClearFlag(net_whitelist_permissions.m_flags, net_permission_flags);
+        (void)NetPermissions::ClearFlag(net_whitelist_permissions.m_flags, NetPermissionFlags::PF_ISIMPLICIT);
         (void)NetPermissions::ToStrings(net_whitelist_permissions.m_flags);
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -51,8 +51,14 @@ class NetPermissions`
`51`	`51`	`{`
`52`	`52`	`flags = static_cast<NetPermissionFlags>(flags \| f);`
`53`	`53`	`}`
	`54`	+ //! ClearFlag is only called with `f` == NetPermissionFlags::PF_ISIMPLICIT.
	`55`	`+ //! If that should change in the future, be aware that ClearFlag should not`
	`56`	`+ //! be called with a subflag of a multiflag, e.g. NetPermissionFlags::PF_RELAY`
	`57`	+ //! or NetPermissionFlags::PF_DOWNLOAD, as that would leave `flags` in an
	`58`	`+ //! invalid state corresponding to none of the existing flags.`
`54`	`59`	`static inline void ClearFlag(NetPermissionFlags& flags, NetPermissionFlags f)`
`55`	`60`	`{`
	`61`	`+ assert(f == NetPermissionFlags::PF_ISIMPLICIT);`
`56`	`62`	`flags = static_cast<NetPermissionFlags>(flags & ~f);`
`57`	`63`	`}`
`58`	`64`	`};`
Original file line number	Diff line number	Diff line change
`@@ -25,7 +25,7 @@ FUZZ_TARGET(net_permissions)`
`25`	`25`	`(void)NetPermissions::ToStrings(net_whitebind_permissions.m_flags);`
`26`	`26`	`(void)NetPermissions::AddFlag(net_whitebind_permissions.m_flags, net_permission_flags);`
`27`	`27`	`assert(NetPermissions::HasFlag(net_whitebind_permissions.m_flags, net_permission_flags));`
`28`		`- (void)NetPermissions::ClearFlag(net_whitebind_permissions.m_flags, net_permission_flags);`
	`28`	`+ (void)NetPermissions::ClearFlag(net_whitebind_permissions.m_flags, NetPermissionFlags::PF_ISIMPLICIT);`
`29`	`29`	`(void)NetPermissions::ToStrings(net_whitebind_permissions.m_flags);`
`30`	`30`	`}`
`31`	`31`
`@@ -35,7 +35,7 @@ FUZZ_TARGET(net_permissions)`
`35`	`35`	`(void)NetPermissions::ToStrings(net_whitelist_permissions.m_flags);`
`36`	`36`	`(void)NetPermissions::AddFlag(net_whitelist_permissions.m_flags, net_permission_flags);`
`37`	`37`	`assert(NetPermissions::HasFlag(net_whitelist_permissions.m_flags, net_permission_flags));`
`38`		`- (void)NetPermissions::ClearFlag(net_whitelist_permissions.m_flags, net_permission_flags);`
	`38`	`+ (void)NetPermissions::ClearFlag(net_whitelist_permissions.m_flags, NetPermissionFlags::PF_ISIMPLICIT);`
`39`	`39`	`(void)NetPermissions::ToStrings(net_whitelist_permissions.m_flags);`
`40`	`40`	`}`
`41`	`41`	`}`