Re: [rtld] fdlopen(), fdlputpath() and capsicum

From: Vinícius_dos_Santos_Oliveira <vini.ipsmaker_at_gmail.com>
Date: Thu, 31 Oct 2024 10:28:14 UTC
Em qui., 31 de out. de 2024 às 03:09, Konstantin Belousov
<kib@freebsd.org> escreveu:
> Try this https://reviews.freebsd.org/D47351

An API like this should work. It's also more flexible as it'd allow me
to remove inherited already set fd numbers from the search set.

> if (!lvd->can_update || (lvd->unsecure && !trust))

Maybe it's also okay to allow it if the process has already called cap_enter()?


-- 
Vinícius dos Santos Oliveira
https://vinipsmaker.github.io/