CVSROOT: /cvs
Module name: src
Changes by: dera...@cvs.openbsd.org 2015/08/22 14:18:50
Modified files:
sys/kern : init_sysent.c kern_exit.c kern_fork.c
kern_ktrace.c kern_sysctl.c kern_tame.c
kern_time.c sys_generic.c syscalls.c
syscalls.master uipc_syscalls.c uipc_usrreq.c
vfs_lookup.c vfs_syscalls.c
sys/netinet : in_pcb.c
sys/netinet6 : in6_pcb.c
sys/sys : proc.h syscall.h syscall_mi.h syscallargs.h
tame.h
lib/libc/sys : tame.2
Log message:
Move to tame(int flags, char *paths[]) API/ABI.
The pathlist is a whitelist of dirs and files; anything else returns ENOENT.
Recommendation is to use a narrowly defined list. Also add TAME_FATTR, which
permits explicit change operations against "struct stat" fields. Some
other TAME_ flags are refined slightly.
Not cranking libc now, since nothing commited in base uses this and the
timing is uncomfortable for others. Discussed with many; thanks for a
few bug fixes from semarie, doug, guenther.
ok guenther
