oshogbo (Mariusz Zaborski)
User

Projects

capsicum
Umbrella
committers
Organization
security
Umbrella

User Details

User Since: Aug 19 2014, 3:56 PM (356 w, 3 d)

Recent Activity
View All

Today

oshogbo added a comment to D26958: sockstat: Use libcasper to capsicumize.

Fixes are on haed.

Fri, Jun 18, 4:13 PM

oshogbo committed R10:7ad30f58dd63: sockstat: use cap_pwd (authored by oshogbo).

sockstat: use cap_pwd

Fri, Jun 18, 4:13 PM

oshogbo committed R10:bfb5947bb1e9: sockstat: fix core dump (authored by oshogbo).

sockstat: fix core dump

Fri, Jun 18, 4:13 PM

oshogbo added a comment to D26958: sockstat: Use libcasper to capsicumize.

Hello Oliver,

Fri, Jun 18, 10:19 AM

oshogbo committed R10:b4fe6fbab236: libcasper: add missing unistd.h (authored by oshogbo).

libcasper: add missing unistd.h

Fri, Jun 18, 9:44 AM

Yesterday

oshogbo added a comment to D26958: sockstat: Use libcasper to capsicumize.

Hello Oliver,

Thu, Jun 17, 8:49 PM

Tue, Jun 15

oshogbo committed R10:6c0a51837f4b: libcasper: fix descriptors numbers (authored by oshogbo).

libcasper: fix descriptors numbers

Tue, Jun 15, 6:31 PM

oshogbo committed R10:4e2ae05c3ae8: libcasper: fix descriptors numbers (authored by oshogbo).

libcasper: fix descriptors numbers

Tue, Jun 15, 6:24 PM

oshogbo committed R10:934e10b4a388: libcasper: fix descriptors numbers (authored by oshogbo).

libcasper: fix descriptors numbers

Tue, Jun 15, 6:18 PM

Sun, Jun 13

oshogbo updated the diff for D29607: byhve: add option to specify IP address for gdb.

Address @jhb comments (I hope).

Sun, Jun 13, 6:18 PM

Fri, Jun 11

oshogbo added inline comments to D30667: fix tail -f on stdin.

Fri, Jun 11, 7:20 PM

oshogbo added a comment to D30667: fix tail -f on stdin.

Hym its works for me.

Fri, Jun 11, 7:14 PM

oshogbo added a comment to D30667: fix tail -f on stdin.

Can you provide some more context?

Fri, Jun 11, 7:02 PM

oshogbo committed R10:89d5cbb82294: libnv: optimize nvlist size calculation (authored by oshogbo).

libnv: optimize nvlist size calculation

Fri, Jun 11, 3:52 PM

Thu, Jun 10

oshogbo committed R10:aa310ebfba3d: libcasper: fix descriptors numbers (authored by oshogbo).

libcasper: fix descriptors numbers

Thu, Jun 10, 10:42 AM

Sat, Jun 5

oshogbo added a comment to D28223: libc: add cleanenv function.

@secteam ping?

Sat, Jun 5, 5:00 PM

Tue, Jun 1

oshogbo accepted D26958: sockstat: Use libcasper to capsicumize.

Yes. This looks go to me.

Tue, Jun 1, 1:49 PM

Sat, May 22

oshogbo updated the diff for D28223: libc: add cleanenv function.

Address @scf and @emaste suggestions.

Sat, May 22, 7:44 PM

Thu, May 20

oshogbo added inline comments to D29824: rtsold: Extend casper to support various interface operations.

Thu, May 20, 9:03 AM

Wed, May 19

oshogbo accepted D29824: rtsold: Extend casper to support various interface operations.

In general it's a great work.
Minor requests.

Wed, May 19, 9:45 PM

oshogbo added inline comments to D28223: libc: add cleanenv function.

Wed, May 19, 9:21 PM

oshogbo abandoned D29343: flopen: simplify the code.

Wed, May 19, 9:19 PM

Apr 27 2021

oshogbo added a comment to D28223: libc: add cleanenv function.

@scf secteam Can I proceed with this?

Apr 27 2021, 9:24 AM

Apr 9 2021

oshogbo added inline comments to D29607: byhve: add option to specify IP address for gdb.

Apr 9 2021, 5:59 PM

oshogbo updated the diff for D29607: byhve: add option to specify IP address for gdb.

Address @jhb suggestions.

Apr 9 2021, 5:57 PM

Apr 7 2021

oshogbo committed R10:2b1d0c0087a9: fileargs: fix double caching of the same file (authored by oshogbo).

fileargs: fix double caching of the same file

Apr 7 2021, 7:18 PM

oshogbo added inline comments to D29607: byhve: add option to specify IP address for gdb.

Apr 7 2021, 7:58 AM

Apr 6 2021

oshogbo added a reviewer for D29607: byhve: add option to specify IP address for gdb: jhb.

Apr 6 2021, 3:39 PM

oshogbo requested review of D29607: byhve: add option to specify IP address for gdb.

Apr 6 2021, 3:37 PM

oshogbo added a comment to D28223: libc: add cleanenv function.

Ping?

Apr 6 2021, 10:09 AM

oshogbo accepted D24832: libcasper: Create a minimal cap_netdb service.

LGTM.
Do you have commit bit or should I commit this?

Apr 6 2021, 8:21 AM · capsicum

oshogbo accepted D29423: capsicum: Limit socket operations in capability mode.

LGTM.
I prefer this approach then forbidding whole socket syscall.

Apr 6 2021, 8:21 AM

oshogbo accepted D29556: libnv: Allow use in non-sleepable contexts.

Apr 6 2021, 8:12 AM

Apr 1 2021

oshogbo added a comment to D29523: traceroute6: Fix rights for rcvsock.

After addressing @zlei.huang_gmail.com points - LGTM.

Apr 1 2021, 10:36 AM

oshogbo added a comment to D29423: capsicum: Limit socket operations in capability mode.

Some minor notes.
Thank you for working on this.

Apr 1 2021, 10:36 AM

Mar 24 2021

oshogbo committed R10:e086aff91c24: rtld: fix the man page (authored by oshogbo).

rtld: fix the man page

Mar 24 2021, 11:51 PM

oshogbo closed D29334: rtld: introduce PRELOAD_FDS.

Mar 24 2021, 10:41 PM

oshogbo committed R10:f90218886fc8: rtld: introduce PRELOAD_FDS (authored by oshogbo).

rtld: introduce PRELOAD_FDS

Mar 24 2021, 10:41 PM

oshogbo committed R10:852a88a1d925: rtld: style nits (authored by oshogbo).

rtld: style nits

Mar 24 2021, 10:41 PM

oshogbo added a comment to D29343: flopen: simplify the code.

Thank you @kib for explanation, I will analyze this further.

Mar 24 2021, 5:34 PM

Mar 19 2021

oshogbo added reviewers for D29343: flopen: simplify the code: kib, des.

Mar 19 2021, 10:04 PM

oshogbo requested review of D29343: flopen: simplify the code.

Mar 19 2021, 10:00 PM

oshogbo added inline comments to D29334: rtld: introduce PRELOAD_FDS.

Mar 19 2021, 11:10 AM

Mar 18 2021

oshogbo committed R10:c145b7954656: zfs: bring back possibility to rewind the checkpoint from (authored by oshogbo).

zfs: bring back possibility to rewind the checkpoint from

Mar 18 2021, 11:04 PM

oshogbo committed R10:6bbca5ca3a66: zfs: bring back possibility to rewind the checkpoint from (authored by oshogbo).

zfs: bring back possibility to rewind the checkpoint from

Mar 18 2021, 9:13 PM

oshogbo added reviewers for D29334: rtld: introduce PRELOAD_FDS: markj, jonathan.

Mar 18 2021, 8:45 PM

oshogbo updated the diff for D29334: rtld: introduce PRELOAD_FDS.

Mar 18 2021, 8:43 PM

oshogbo retitled D29334: rtld: introduce PRELOAD_FDS from rtld: intrdouce PRELOAD_FDS to rtld: introduce PRELOAD_FDS.

Mar 18 2021, 8:43 PM

oshogbo requested review of D29334: rtld: introduce PRELOAD_FDS.

Mar 18 2021, 8:40 PM

oshogbo abandoned D29333: rtld: intrdouce PRELOAD_FDS.

Mar 18 2021, 8:40 PM

oshogbo requested review of D29333: rtld: intrdouce PRELOAD_FDS.

Mar 18 2021, 8:39 PM

Mar 17 2021

oshogbo added inline comments to D28223: libc: add cleanenv function.

Mar 17 2021, 10:03 PM

oshogbo updated the diff for D28223: libc: add cleanenv function.

Address scf@ suggestions.

Mar 17 2021, 10:03 PM

Mar 13 2021

oshogbo added a comment to D28223: libc: add cleanenv function.

Ping?

Mar 13 2021, 12:07 PM

oshogbo committed R10:653ed678c703: zfs: bring back possibility to rewind the checkpoint from (authored by oshogbo).

zfs: bring back possibility to rewind the checkpoint from

Mar 13 2021, 12:01 PM

Mar 1 2021

oshogbo committed R10:05b267e23257: service: respect nojailvnet keyword (authored by oshogbo).

service: respect nojailvnet keyword

Mar 1 2021, 10:36 PM

Feb 16 2021

oshogbo added inline comments to D28699: lookup: in capability mode, silently strengthen BENEATH to RBENEATH.

Feb 16 2021, 6:34 PM

oshogbo added a comment to D28698: lookup: fix inverted condition for test to allow dotdot..

Ups sorry I just wanted to comment it without accepting it.

Feb 16 2021, 6:23 PM

oshogbo accepted D28698: lookup: fix inverted condition for test to allow dotdot..

Shouldn't we return here a ECAPMODE ?
In capability mode there isn't any way where dot dot is valid right?

Feb 16 2021, 6:22 PM

Jan 26 2021

oshogbo accepted D28341: Do not run cap_fileargs tests if build without capsicum capabilities.

Jan 26 2021, 6:29 PM

Jan 21 2021

oshogbo added a comment to D28223: libc: add cleanenv function.

@0mp Thanks I addressed that.

Jan 21 2021, 5:35 PM

oshogbo updated the diff for D28223: libc: add cleanenv function.

Update diff.

Jan 21 2021, 5:33 PM

Jan 20 2021

oshogbo committed R10:0614d7396798: cat: style nits (authored by oshogbo).

cat: style nits

Jan 20 2021, 5:48 PM

Jan 18 2021

oshogbo added a reviewer for D28223: libc: add cleanenv function: secteam.

Jan 18 2021, 6:19 PM

oshogbo updated the diff for D28223: libc: add cleanenv function.

Thank you @kib for hints!

Jan 18 2021, 6:19 PM

oshogbo added reviewers for D28223: libc: add cleanenv function: markj, scf, kib.

Jan 18 2021, 5:32 PM

oshogbo requested review of D28223: libc: add cleanenv function.

Jan 18 2021, 5:28 PM

Jan 17 2021

oshogbo committed R10:b7ab6832cd98: cat: disable building it with Casper (authored by oshogbo).

cat: disable building it with Casper

Jan 17 2021, 12:22 AM

Jan 16 2021

oshogbo committed R10:de57c3d88258: cat: style nits (authored by oshogbo).

cat: style nits

Jan 16 2021, 11:59 AM

oshogbo committed R10:6e8062c855d1: cat: persistent errno (authored by oshogbo).

cat: persistent errno

Jan 16 2021, 11:59 AM

oshogbo closed D28185: cat: restore errno.

Jan 16 2021, 11:58 AM

Jan 15 2021

oshogbo updated the diff for D28185: cat: restore errno.

Ah... Thanks @markj!

Jan 15 2021, 8:51 PM

oshogbo committed R10:c664d8dfc3dd: cat: Fix potential memory leak (authored by oshogbo).

cat: Fix potential memory leak

Jan 15 2021, 8:50 PM

oshogbo added reviewers for D28185: cat: restore errno: markj, emaste.

Jan 15 2021, 8:44 PM

oshogbo requested review of D28185: cat: restore errno.

Jan 15 2021, 8:43 PM

oshogbo committed R10:aefe30c54371: cat: capsicumize it (authored by oshogbo).

cat: capsicumize it

Jan 15 2021, 8:24 PM

oshogbo closed D28083: cat: capsicumize it.

Jan 15 2021, 8:24 PM

oshogbo added a comment to D28083: cat: capsicumize it.

@arichardson
I just needed to add a new service to the tools/build/Makefile and it work like charm - https://github.com/oshogbo/freebsd-src/runs/1710760934 (mac will finish in a moment).
Do you want me to test something else?

Jan 15 2021, 7:53 PM

oshogbo updated the diff for D28083: cat: capsicumize it.

Fix cross build.

Jan 15 2021, 7:46 PM

oshogbo added a comment to D28083: cat: capsicumize it.

Yea, I wasn't sure about Linux/macOs build.
Good to know that! I will verify that!
We don't use the rescue headers to build a BOOTSTRAP version?

Jan 15 2021, 7:18 PM

oshogbo updated the diff for D28083: cat: capsicumize it.

Thanks @markj! Fixed.

Jan 15 2021, 6:41 PM

Jan 12 2021

oshogbo committed R10:d2ceee38ca26: casper: convert macros to inline functions (authored by oshogbo).

casper: convert macros to inline functions

Jan 12 2021, 6:41 PM

Jan 10 2021

oshogbo requested review of D28083: cat: capsicumize it.

Jan 10 2021, 11:53 AM

oshogbo committed R10:dcdad299479e: fileargs: add support for realpath (authored by oshogbo).

fileargs: add support for realpath

Jan 10 2021, 11:44 AM

Jan 9 2021

oshogbo committed R10:faaf43b2a750: fileargs: add tests (authored by oshogbo).

fileargs: add tests

Jan 9 2021, 8:57 PM

Jan 4 2021

oshogbo committed R10:459511895e48: cap_sysctl: expose structures and variables (authored by oshogbo).

cap_sysctl: expose structures and variables

Jan 4 2021, 7:58 PM

oshogbo committed R10:8c121177f063: casper: convert macros to inline functions (authored by oshogbo).

casper: convert macros to inline functions

Jan 4 2021, 7:58 PM

oshogbo committed R10:381073282961: lib9p: fix building on systems without capser (authored by oshogbo).

lib9p: fix building on systems without capser

Jan 4 2021, 7:58 PM

Jan 3 2021

oshogbo committed R10:845b27372895: bhyve: fix build without casper/capsicum support (authored by oshogbo).

bhyve: fix build without casper/capsicum support

Jan 3 2021, 5:20 PM

oshogbo committed R10:966026246e62: bhyve: fix build without casper/capsicum support (authored by oshogbo).

bhyve: fix build without casper/capsicum support

Jan 3 2021, 4:22 PM

oshogbo committed R10:34535dace9f0: cap_net: CAPNET_CONNECT and CAPNET_CONNECTDNS are not mutually exclusive (authored by oshogbo).

cap_net: CAPNET_CONNECT and CAPNET_CONNECTDNS are not mutually exclusive

Jan 3 2021, 4:12 PM

oshogbo committed R10:b7876aec957e: cap_net: allow to use the service without setting the limits (authored by oshogbo).

cap_net: allow to use the service without setting the limits

Jan 3 2021, 4:10 PM

oshogbo committed R10:4084669d1867: capser: add cap_net to the list of services (authored by oshogbo).

capser: add cap_net to the list of services

Jan 3 2021, 4:01 PM

Nov 18 2020

oshogbo added a reviewer for D27161: growfs: use sysexits in place of err/errc/errx(1): oshogbo.

What was motivation for this? Do you have any use case for that?

Nov 18 2020, 10:36 PM

oshogbo committed rD54692: Update my PGP key..

Update my PGP key.

Nov 18 2020, 10:10 PM

oshogbo committed rS367820: Add CTLFLAG_MPSAFE to the suser_enabled sysctl..

Add CTLFLAG_MPSAFE to the suser_enabled sysctl.

Nov 18 2020, 9:26 PM

oshogbo added inline comments to D24832: libcasper: Create a minimal cap_netdb service.

Nov 18 2020, 9:15 PM · capsicum

oshogbo added inline comments to D26958: sockstat: Use libcasper to capsicumize.

Nov 18 2020, 9:10 PM

oshogbo closed D27128: jail: introduce per jail suser_enabled setting.

Nov 18 2020, 9:07 PM

oshogbo committed rS367819: jail: introduce per jail suser_enabled setting.

jail: introduce per jail suser_enabled setting

Nov 18 2020, 9:07 PM