Date: Thu, 31 Oct 2024 07:28:14 -0300 From: =?UTF-8?Q?Vin=C3=ADcius_dos_Santos_Oliveira?= <vini.ipsmaker@gmail.com> To: Konstantin Belousov <kib@freebsd.org> Cc: freebsd-hackers@freebsd.org Subject: Re: [rtld] fdlopen(), fdlputpath() and capsicum Message-ID: <CAK9RveLbK7qNMjBg50OHrsWLzETtrGij9PBYz5EfUq2u9TSH8A@mail.gmail.com> In-Reply-To: <ZyMe0M40S1M83Ln2@kib.kiev.ua> References: <CAK9Rve%2Bn5ey7xq3OUdEY3v8GPXae7=BxeLOqJtumeuLPm%2BH-qQ@mail.gmail.com> <ZyMe0M40S1M83Ln2@kib.kiev.ua>
next in thread | previous in thread | raw e-mail | index | archive | help
Em qui., 31 de out. de 2024 =C3=A0s 03:09, Konstantin Belousov <kib@freebsd.org> escreveu: > Try this https://reviews.freebsd.org/D47351 An API like this should work. It's also more flexible as it'd allow me to remove inherited already set fd numbers from the search set. > if (!lvd->can_update || (lvd->unsecure && !trust)) Maybe it's also okay to allow it if the process has already called cap_ente= r()? --=20 Vin=C3=ADcius dos Santos Oliveira https://vinipsmaker.github.io/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAK9RveLbK7qNMjBg50OHrsWLzETtrGij9PBYz5EfUq2u9TSH8A>