Page MenuHomeFreeBSD
Differential D8015

Make kern.hostname and friends readable in capability mode
ClosedPublic
Actions

Authored by allanjude on Sep 23 2016, 2:36 PM.
Tags
None
Referenced Files
Unknown Object (File)
Mar 3 2024, 7:31 AM
Unknown Object (File)
Mar 3 2024, 7:08 AM
Unknown Object (File)
Jan 14 2024, 9:08 AM
Unknown Object (File)
Jan 2 2024, 10:03 PM
Unknown Object (File)
Dec 29 2023, 2:01 AM
Unknown Object (File)
Dec 19 2023, 11:56 PM
Unknown Object (File)
Nov 26 2023, 9:48 AM
Unknown Object (File)
Nov 13 2023, 10:19 AM
View All 52 Files
Subscribers
imp
jonathan

Details

Reviewers
emaste
cem
bapt
ed
jonathan
rwatson
oshogbo
Group Reviewers
capsicum
Commits
rS306452: Allow reading the following sysctl MIBs in capability mode:
Summary

This would make D7999 easier

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

allanjude updated this revision to Diff 20644.Sep 23 2016, 2:36 PM
allanjude retitled this revision from to Make kern.hostname and friends readable in capability mode.
allanjude updated this object.
allanjude edited the test plan for this revision. (Show Details)
allanjude added reviewers: capsicum, cem, emaste, oshogbo, ed, bapt.
Herald added a subscriber: imp. · View Herald TranscriptSep 23 2016, 2:36 PM
cem edited edge metadata.EditedSep 23 2016, 3:57 PM

Related: D8000 :-)

rwatson's okay with kern.hostname. I don't know what the others are for so I wasn't sure enabling them was okay.

cem mentioned this in D8000: kern_mib: Allow kern.hostname in Capsicum capability sandbox.Sep 26 2016, 5:18 PM
jonathan accepted this revision.Sep 26 2016, 5:21 PM
jonathan added a reviewer: jonathan.
jonathan added a subscriber: jonathan.

I think that these are all fine to make readable, for the same reason that the hostname is ok: allowing information to "leak" in a way that enables more software to use Capsicum sandboxing is a net win. If we wanted to obscure the host UUID then we should also be hiding anything that could be used to identify the machine, which seems distinctly unhelpful in our overall goal of World Domination (tm).

This revision is now accepted and ready to land.Sep 26 2016, 5:21 PM
jonathan added a reviewer: rwatson.Sep 26 2016, 5:21 PM
cem accepted this revision.Sep 26 2016, 5:31 PM
cem edited edge metadata.

In that case, go ahead and commit this instead of my D8000, @allanjude .

Closed by commit rS306452: Allow reading the following sysctl MIBs in capability mode: (authored by allanjude). · Explain WhySep 29 2016, 4:30 PM
This revision was automatically updated to reflect the committed changes.

Revision Contents
Changeset List

PathSize
head/
sys/
kern/
6 lines

Diff 20817

View Options

head/sys/kern/kern_mib.c

Loading...