[Bug 2140] New: Capsicum support for FreeBSD 10 (-current)

Thu Aug 8 05:54:20 EST 2013

https://bugzilla.mindrot.org/show_bug.cgi?id=2140

            Bug ID: 2140
           Summary: Capsicum support for FreeBSD 10 (-current)
           Product: Portable OpenSSH
           Version: -current
          Hardware: All
                OS: FreeBSD
            Status: NEW
          Severity: enhancement
          Priority: P5
         Component: sshd
          Assignee: unassigned-bugs at mindrot.org
          Reporter: loganaden at gmail.com

Created attachment 2326
  --> https://bugzilla.mindrot.org/attachment.cgi?id=2326&action=edit
openssh-capsicum

Recently, I started playing around with FreeBSD 10.

Following a discussion on capsicum-mailing:

https://lists.cam.ac.uk/pipermail/cl-capsicum-discuss/2013-August/msg00000.html

I took pjd@ and des@ patches for the older openssh in freebsd-base, and
started working on implementing it on openssh-current.

The only change I made is use extern for pmonitor.

The patch works fine when I try to use connect() in the child process
as it fails, as connect() isn't listed in capabilities.conf.

It's still a WiP as capsicum is still a moving target.

Feedback appreciated.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.