Diffusion FreeBSD src repository c067be72e835

bhyveload: limit rights on the dirfds we create
c067be72e835
Actions

Tags

None

Referenced Files

None

Subscribers

None

Description

bhyveload: limit rights on the dirfds we create

In neither case do we need write access to the directories we're working
with; userboot doesn't support fo_write on the host device, and the
bootfd is only ever needed for loader loading.

This improves on 8bf0882e18 ("bhyveload: enter capability mode [...]")
so that arbitrary code in the loader can't open writable fds to either
of the directories we need to maintain access to.

Reviewed by: imp
Differential Revision: https://reviews.freebsd.org/D43315

Details

Provenance

Authored on Jan 5 2024, 6:21 AM

Reviewer

Differential Revision

D43315: bhyveload: limit rights on the dirfds we create

Parents

rG70dc6b2ce314: nfsclient: limit situations when we do unlocked read-ahead by nfsiod

Branches

Unknown

Tags

Unknown

Event Timeline

kevans committed rGc067be72e835: bhyveload: limit rights on the dirfds we create (authored by kevans).Jan 5 2024, 6:21 AM

kevans added an edge: D43315: bhyveload: limit rights on the dirfds we create.

kevans mentioned this in rGf9b17005bf8f: bhyveload: fix comment style.Jan 5 2024, 3:55 PM

kevans mentioned this in rG4bd568bd759b: bhyveload: limit rights on the dirfds we create.Jan 22 2024, 5:31 PM

kevans mentioned this in rG20e06202f126: bhyveload: limit rights on the dirfds we create.

Changes (1)

Path

Size

usr.sbin/

bhyveload/

rGc067be72e835

usr.sbin/bhyveload/bhyveload.c

Loading...