Internal change.

PiperOrigin-RevId: 327892274
author: gVisor bot <gvisor-bot@google.com> 2020-08-21 16:18:31 -0700
committer: gVisor bot <gvisor-bot@google.com> 2020-08-21 16:20:20 -0700
commit: 23070b2e5fab3c777dfd6389b80472ba9d58572e (patch)
tree: a10d4332bd2958268e0bb9026629d6cfe3b65469 /pkg/sentry
parent: 0ea03f501b6a367d5797bdb430abe8fac121e03c (diff)
2 files changed, 10 insertions, 1 deletions
diff --git a/pkg/sentry/limits/context.go b/pkg/sentry/limits/context.go
index 77e1fe217..0bade6e57 100644
--- a/pkg/sentry/limits/context.go
+++ b/pkg/sentry/limits/context.go
@@ -33,3 +33,12 @@ func FromContext(ctx context.Context) *LimitSet {
 	}
 	return nil
 }
+
+// FromContextOrDie returns FromContext(ctx) if the latter is not nil.
+// Otherwise, panic is triggered.
+func FromContextOrDie(ctx context.Context) *LimitSet {
+	if v := ctx.Value(CtxLimits); v != nil {
+		return v.(*LimitSet)
+	}
+	panic("failed to create limit set from context")
+}
diff --git a/pkg/sentry/vfs/permissions.go b/pkg/sentry/vfs/permissions.go
index 33389c1df..014b928ed 100644
--- a/pkg/sentry/vfs/permissions.go
+++ b/pkg/sentry/vfs/permissions.go
@@ -271,7 +271,7 @@ func HasCapabilityOnFile(creds *auth.Credentials, cp linux.Capability, kuid auth
 // operation must not proceed. Otherwise it returns the max length allowed to
 // without violating the limit.
 func CheckLimit(ctx context.Context, offset, size int64) (int64, error) {
-	fileSizeLimit := limits.FromContext(ctx).Get(limits.FileSize).Cur
+	fileSizeLimit := limits.FromContextOrDie(ctx).Get(limits.FileSize).Cur
 	if fileSizeLimit > math.MaxInt64 {
 		return size, nil
 	}
author	gVisor bot <gvisor-bot@google.com>	2020-08-21 16:18:31 -0700
committer	gVisor bot <gvisor-bot@google.com>	2020-08-21 16:20:20 -0700
commit	23070b2e5fab3c777dfd6389b80472ba9d58572e (patch)
tree	a10d4332bd2958268e0bb9026629d6cfe3b65469 /pkg/sentry
parent	0ea03f501b6a367d5797bdb430abe8fac121e03c (diff)