Change Details

The unzip(1) program traditionally handles file creation and extraction in the same step. Capsicum requires all files be opened before cap_enter(), so these steps needed to be separated. Introduce an unzip_setup() function that opens files and creates directories before doing extraction in a capability sandbox. This has the negative side effect of leaving many empty files behind when unzip is interrupted or fails.

Open the zip archive and current directory then enter capability mode. All following syscalls have been altered to *at() variants relative to the current directory fd.

The unzip(1) program traditionally handles file creation and extraction in the same step. Capsicum requires all files be opened before cap_enter(), so these steps needed to be separated. Introduce an unzip_setup() function that opens files and creates directories before doing extraction in a capability sandboxOpen the zip archive and current directory then enter capability mode. This has the negative side effect of leaving many empty files behind when unzip is interrupted or failsAll following syscalls have been altered to *at() variants relative to the current directory fd.