tmppath promise removed from pledge(2) in -current

by
from OpenBSD Journal on (#73VR0)
A long standing and somewhat odd conflict between two OpenBSD security mechanisms, pledge(2) and unveil(2) has been resolved by eliminating the tmppath promise from what pledge(2) offers.

The commit by Theo de Raadt (deraadt@) comes with an explanation in the commit message, which reads

List: openbsd-cvsSubject: CVS: cvs.openbsd.org: srcFrom: Theo de Raadt <deraadt () cvs ! openbsd ! org>Date: 2026-02-26 7:42:26CVSROOT:/cvsModule name:srcChanges by:deraadt@cvs.openbsd.org2026/02/26 00:42:26Modified files:sys/sys : pledge.h sys/kern : kern_pledge.c lib/libc/sys : pledge.2 Log message:pledge "tmppath" goes away because it sucks. The history is kind ofsad: unveil(2) was invented by Bob Beck and myself because a coupleof us struggled and couldn't expand the "tmppath" mechanism to general use.

Read more...

External Content
Source RSS or Atom Feed
Feed Location http://undeadly.org/cgi?action=rss
Feed Title OpenBSD Journal
Feed Link http://undeadly.org/
Reply 0 comments