From nobody Mon Feb 19 18:53:07 2024
X-Original-To: bugs@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4Tds9v6cMFz543Rr
	for <bugs@mlmmj.nyi.freebsd.org>; Mon, 19 Feb 2024 18:53:07 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
	 client-signature RSA-PSS (4096 bits) client-digest SHA256)
	(Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK))
	by mx1.freebsd.org (Postfix) with ESMTPS id 4Tds9v4K3dz47tp
	for <bugs@FreeBSD.org>; Mon, 19 Feb 2024 18:53:07 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org;
	s=dkim; t=1708368787;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:mime-version:mime-version:content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding;
	bh=pGCVExuQVCAS99GmJ/pEugFUMIVs6ojy5FvlEQUMVcw=;
	b=Dr1BKclNI6P18AanEEjXKv47e6NRp36ePttKbDujSXWi4p91/qMrXVtklYs7BI32GhLwEQ
	c0Vo0S5+bBHcAVHZpmuHjRrfr0p7m/JhTf3DhPK343f4QMfcZs7Il4DryZwu10dXQ7BCWA
	C8MAiFiyUrJWUBlsKlZqH7UJe2s0zyh7AP2dQRyfJklZ5+o1GCz0DxjoTm/HsPG18job7T
	hwd30qzJpbDYm1n7oEvt2qIGMZZpks0Xsf3D4ZVy86h+scTDp0J8dM3n3B7YyMVswpLZC/
	UnLbHhKnSsWMY8B8t9Vf7sxUzmK73A/Q7eWmTe+GRPkqZmDoRmyHG2ExSJtT+A==
ARC-Authentication-Results: i=1;
	mx1.freebsd.org;
	none
ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1708368787; a=rsa-sha256; cv=none;
	b=A8NHVpZ4U2fOUwYkvy0oncrKihmnZZ48sSef7SG0CHU3YRqDQfrwZw2vAlEVHD0FgNyUnS
	qAbZ2bKUk1WXl9C6TDpFmH0YA6h6i80RgBIdDisjKWgernCR8mq1O/4pjRu4/tw6yf0K1l
	CT1xxh00ANX4lSYkqOJnUJieqcYmoHneCClvomSeQoS+mAgxdebuLI3fZAghuUrbvibDUy
	Gl6pvhbTiFbSolyYNLxN+bH67/Uh6V5X/U8kHViOMlJHY9Tkl5SAUyAQyJ8JhB5qzluhcT
	7WIKSBy5jnomvCEPS36hL5v2uK0wBOybCetB7l+hAzsCcUFyFFyQa1+oLD6P7g==
Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(Client did not present a certificate)
	by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4Tds9v3Nryzn05
	for <bugs@FreeBSD.org>; Mon, 19 Feb 2024 18:53:07 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
Received: from kenobi.freebsd.org ([127.0.1.5])
	by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 41JIr7BE062531
	for <bugs@FreeBSD.org>; Mon, 19 Feb 2024 18:53:07 GMT
	(envelope-from bugzilla-noreply@freebsd.org)
Received: (from www@localhost)
	by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 41JIr7DI062529
	for bugs@FreeBSD.org; Mon, 19 Feb 2024 18:53:07 GMT
	(envelope-from bugzilla-noreply@freebsd.org)
X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f
From: bugzilla-noreply@freebsd.org
To: bugs@FreeBSD.org
Subject: [Bug 277169] [rtld] dlopen() is unusable for capsicum
Date: Mon, 19 Feb 2024 18:53:07 +0000
X-Bugzilla-Reason: AssignedTo
X-Bugzilla-Type: new
X-Bugzilla-Watch-Reason: None
X-Bugzilla-Product: Base System
X-Bugzilla-Component: bin
X-Bugzilla-Version: 14.0-RELEASE
X-Bugzilla-Keywords: 
X-Bugzilla-Severity: Affects Only Me
X-Bugzilla-Who: vini.ipsmaker@gmail.com
X-Bugzilla-Status: New
X-Bugzilla-Resolution: 
X-Bugzilla-Priority: ---
X-Bugzilla-Assigned-To: bugs@FreeBSD.org
X-Bugzilla-Flags: 
X-Bugzilla-Changed-Fields: bug_id short_desc product version rep_platform
 op_sys bug_status bug_severity priority component assigned_to reporter
Message-ID: <bug-277169-227@https.bugs.freebsd.org/bugzilla/>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/
Auto-Submitted: auto-generated
List-Id: Bug reports <freebsd-bugs.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-bugs
List-Help: <mailto:freebsd-bugs+help@freebsd.org>
List-Post: <mailto:freebsd-bugs@freebsd.org>
List-Subscribe: <mailto:freebsd-bugs+subscribe@freebsd.org>
List-Unsubscribe: <mailto:freebsd-bugs+unsubscribe@freebsd.org>
Sender: owner-freebsd-bugs@freebsd.org
MIME-Version: 1.0

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D277169

            Bug ID: 277169
           Summary: [rtld] dlopen() is unusable for capsicum
           Product: Base System
           Version: 14.0-RELEASE
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: bin
          Assignee: bugs@FreeBSD.org
          Reporter: vini.ipsmaker@gmail.com

To support capsicum, rtld right now offers the env var LD_LIBRARY_PATH_FDS =
to
specify a list of file descriptors. That works for shared libraries, but it
doesn't work for plugins. Plugins shouldn't be mixed with shared libraries.

An extra env var could be used to map specific plugin library paths fds to
plugins path names (e.g. fd 4 mapping to /usr/local/lib/gawk). In this case=
, if
a dlopen() call is done against /usr/local/lib/gawk, the fd 4 would be used.

In my scenario, I need this because dlopen() already executes untrusted code
and for a certain piece of software I want to do this in capsicum mode.

--=20
You are receiving this mail because:
You are the assignee for the bug.=