From owner-freebsd-stable@freebsd.org Sun May 16 01:48:49 2021 Return-Path: Delivered-To: freebsd-stable@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 1F1D462F919 for ; Sun, 16 May 2021 01:48:49 +0000 (UTC) (envelope-from peter@rulingia.com) Received: from vtr.rulingia.com (vtr.rulingia.com [IPv6:2001:19f0:5801:ebe:5400:1ff:fe53:30fd]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA512 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "vtr.rulingia.com", Issuer "R3" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4FjQCg5mRNz3C6w for ; Sun, 16 May 2021 01:48:47 +0000 (UTC) (envelope-from peter@rulingia.com) Received: from server.rulingia.com (ppp239-208.static.internode.on.net [59.167.239.208]) by vtr.rulingia.com (8.16.1/8.15.2) with ESMTPS id 14G1mVMr078390 (version=TLSv1.3 cipher=AEAD-AES256-GCM-SHA384 bits=256 verify=OK) for ; Sun, 16 May 2021 11:48:37 +1000 (AEST) (envelope-from peter@rulingia.com) DKIM-Filter: OpenDKIM Filter v2.10.3 vtr.rulingia.com 14G1mVMr078390 X-Bogosity: Ham, spamicity=0.000000 Received: from server.rulingia.com (localhost.rulingia.com [127.0.0.1]) by server.rulingia.com (8.16.1/8.16.1) with ESMTPS id 14G1mOOx055690 (version=TLSv1.3 cipher=AEAD-AES256-GCM-SHA384 bits=256 verify=NO) for ; Sun, 16 May 2021 11:48:25 +1000 (AEST) (envelope-from peter@server.rulingia.com) Received: (from peter@localhost) by server.rulingia.com (8.16.1/8.16.1/Submit) id 14G1mO7G055689 for freebsd-stable@freebsd.org; Sun, 16 May 2021 11:48:24 +1000 (AEST) (envelope-from peter) Date: Sun, 16 May 2021 11:48:24 +1000 From: Peter Jeremy To: freebsd-stable@freebsd.org Subject: ENOTCAPABLE returned without Capsicum Message-ID: MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="ndXiAcY8a/TbK+LY" Content-Disposition: inline X-PGP-Key: http://www.rulingia.com/keys/peter.pgp X-Rspamd-Queue-Id: 4FjQCg5mRNz3C6w X-Spamd-Bar: ---- X-Spamd-Result: default: False [-4.90 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; R_DKIM_ALLOW(-0.20)[rulingia.com:s=default]; FREEFALL_USER(0.00)[peter]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+mx]; MIME_GOOD(-0.20)[multipart/signed,text/plain]; TO_DN_NONE(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[freebsd-stable@freebsd.org]; NEURAL_HAM_LONG(-1.00)[-1.000]; RCPT_COUNT_ONE(0.00)[1]; SPAMHAUS_ZRD(0.00)[2001:19f0:5801:ebe:5400:1ff:fe53:30fd:from:127.0.2.255]; RCVD_COUNT_THREE(0.00)[3]; NEURAL_SPAM_SHORT(0.20)[0.201]; DKIM_TRACE(0.00)[rulingia.com:+]; DMARC_POLICY_ALLOW(-0.50)[rulingia.com,quarantine]; SIGNED_PGP(-2.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; RBL_DBL_DONT_QUERY_IPS(0.00)[2001:19f0:5801:ebe:5400:1ff:fe53:30fd:from]; ASN(0.00)[asn:20473, ipnet:2001:19f0:5800::/38, country:US]; RCVD_TLS_ALL(0.00)[]; MAILMAN_DEST(0.00)[freebsd-stable] X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 16 May 2021 01:48:49 -0000 --ndXiAcY8a/TbK+LY Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable I am running 13-stable from a couple of weeks ago, without Capsicum (neither CAPABILITY_MODE nor CAPABILITIES are specified in my kernel). Despite this, I am getting Capsicum-related errors. As an example: openat(AT_FDCWD, "/") will return ENOTCAPABLE. Rummaging around the sources, it seems that there's a non-trivial amount of code in kern/vfs_lookup.c that's capable of returning capability-related errors but isn't protected by CAPABILITY_MODE. This seems undesirable since it means that FreeBSD is defaulting to being locked down but unless I build it with Capsicum, there's no way to change the processes capabilities. --=20 Peter Jeremy --ndXiAcY8a/TbK+LY Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQKTBAEBCgB9FiEE7rKYbDBnHnTmXCJ+FqWXoOSiCzQFAmCgeeNfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEVF QjI5ODZDMzA2NzFFNzRFNjVDMjI3RTE2QTU5N0EwRTRBMjBCMzQACgkQFqWXoOSi CzSWXw//dFHuUIDe9t6DeGJivcFoX3e7yvUp4x8pCn9EPwcC2co6kzD2BK461UkL gfHrji84jJ5oEvB2B3P0yfeKUvTOfMS3L+WOkjh30XlADC7E1lT2m1qjDpu3EjBS AlfhfUtgkpnMyZaiVVvQW9xgO9CLeAsFGf3JXNmzGRv2WjYEqFoG9QeS4WTVZCI5 SACG6ebLCW62D/2siOqZn9TIoyXCUUWZmoQujLtVq8HpQ6vUili7vqsLOx7bjfYE HazS3D7JcAIciBhmCsTDQmft3FOJohGBE6l3xt4uFNBhE6rcjrmJy8B9YzBTVzpi o5zC99kVX/CdUF9FKm6dF94MHb1osrksvCKviLIlFiX2bZsXBYq8yRcsYQaCrptQ wLahnBSpcd8uygbnFZI0I3WQwULomfGkiaaQdD3mVwePZSyXvyALkCc6KK+xyxaz ij4a2bBfP6Ld5RskKZChVGv0/bf/O8LKIq1yDiDwO58rYe8zwGTdrZcMk8TvLdR5 PAYV0ViTmNw2w8NriEeq6vz5yeBpc6usNROH5nivyGqIjNjHLodVnFthlYukYj86 28sAd7HFsSHgv0YaN6ZlywaEGQQl/rAjb+BOQfSyaXii7f0VcewnsIFklzxxNnvN guI8yNE2CfUSEeQ1lfIHnexMmyp3nq/EENlV3UK71LVE0gGrsmE= =mqyz -----END PGP SIGNATURE----- --ndXiAcY8a/TbK+LY--