Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 31 Oct 2024 07:28:14 -0300
From:      =?UTF-8?Q?Vin=C3=ADcius_dos_Santos_Oliveira?= <vini.ipsmaker@gmail.com>
To:        Konstantin Belousov <kib@freebsd.org>
Cc:        freebsd-hackers@freebsd.org
Subject:   Re: [rtld] fdlopen(), fdlputpath() and capsicum
Message-ID:  <CAK9RveLbK7qNMjBg50OHrsWLzETtrGij9PBYz5EfUq2u9TSH8A@mail.gmail.com>
In-Reply-To: <ZyMe0M40S1M83Ln2@kib.kiev.ua>
References:  <CAK9Rve%2Bn5ey7xq3OUdEY3v8GPXae7=BxeLOqJtumeuLPm%2BH-qQ@mail.gmail.com> <ZyMe0M40S1M83Ln2@kib.kiev.ua>

next in thread | previous in thread | raw e-mail | index | archive | help
Em qui., 31 de out. de 2024 =C3=A0s 03:09, Konstantin Belousov
<kib@freebsd.org> escreveu:
> Try this https://reviews.freebsd.org/D47351

An API like this should work. It's also more flexible as it'd allow me
to remove inherited already set fd numbers from the search set.

> if (!lvd->can_update || (lvd->unsecure && !trust))

Maybe it's also okay to allow it if the process has already called cap_ente=
r()?


--=20
Vin=C3=ADcius dos Santos Oliveira
https://vinipsmaker.github.io/



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAK9RveLbK7qNMjBg50OHrsWLzETtrGij9PBYz5EfUq2u9TSH8A>