mirrors/cosmopolitan
1
0
Fork 0
mirror of https://github.com/jart/cosmopolitan.git synced 2025-02-21 21:49:03 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
2502 commits 9 branches 118 tags 319 MiB
Commit graph

53 commits

Author SHA1 Message Date
Justine Tunney
5546559034 Improve pledge() usability and consistency 
- We now kill the program on violations like OpenBSD
- We now print a message explaining which promise is needed
- This change also fixes a linkage bug with thread local storage
- Your sigaction() handlers should now be more thread safe

A new `__pledge_mode` global has been introduced to make pledge() more
customizable on Linux. For example:

    __attribute__((__constructor__)) static void init(void) {
      __pledge_mode = SECCOMP_RET_ERRNO | EPERM;
    }

Can be used to restore our old permissive pledge() behavior.
 2022-08-07 16:18:33 -07:00
Justine Tunney
e98514cdb7 Plug a hole in pledge() 
Günther Noack points out that O_RDONLY|O_TRUNC will modify a file.
 2022-07-24 23:41:59 -07:00
Justine Tunney
3d2cf95af1 Remove malloc() dependency on pledge() / unveil() 
This change also fixes a bug with gettid() being incorrect after fork().
We now implement the ENOENT behavior for getauxval(). The getuid() etc.
system calls are now faster too. Plus issetugid() will work on BSDs.
 2022-07-24 21:51:37 -07:00
Renamed from test/libc/mem/pledge_test.c (Browse further)