CVSROOT: /cvs
Module name: src
Changes by: [email protected] 2015/10/04 01:25:59
Modified files:
usr.bin/file : Makefile file.c
Removed files:
usr.bin/file : sandbox.c
Log message:
Add tame(2) to file(1) and drop the old systrace(4) sandbox. tame(2) is
only applied to the child process, which requires the parent to not pass
directory file descriptors (tame("cmsg") does not allow it). Because
file(1) is already privsep, the permissions in the child can be quickly
restricted: first to "stdio cmsg getpw proc" then after the privdrop to
"stdio cmsg".
