search for: drop_capabilities

...pconfig/ kinit-y += nfsmount/ diff --git a/usr/kinit/capabilities.h b/usr/kinit/capabilities.h new file mode 100644 index 0000000..a32a66a --- /dev/null +++ b/usr/kinit/capabilities.h @@ -0,0 +1,10 @@ +/* + * capabilities.h + */ + +#ifndef KINIT_CAPABILITIES_H +#define KINIT_CAPABILITIES_H + +int drop_capabilities(const char *caps); + +#endif /* KINIT_CAPABILITIES_H */ diff --git a/usr/kinit/kinit.c b/usr/kinit/kinit.c index 8ea0da5..523c92b 100644 --- a/usr/kinit/kinit.c +++ b/usr/kinit/kinit.c @@ -284,8 +284,6 @@ int main(int argc, char *argv[]) check_path("/root"); do_mounts(cmdc, cmdv)...

..."; + return NULL; /* Success */ + } } --- a/usr/kinit/kinit.c +++ b/usr/kinit/kinit.c @@ -304,7 +304,7 @@ int main(int argc, char *argv[]) init_argv[0] = strrchr(init_path, '/') + 1; errmsg = run_init("/root", "/dev/console", - get_arg(cmdc, cmdv, "drop_capabilities="), + get_arg(cmdc, cmdv, "drop_capabilities="), false, init_path, init_argv); /* If run_init returned, something went bad */ -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 811 byte...

...1,131 @@ +diff --git a/usr/kinit/kinit.c b/usr/kinit/kinit.c +index de03c2d3..28d29534 100644 +--- a/usr/kinit/kinit.c ++++ b/usr/kinit/kinit.c +@@ -305,7 +305,7 @@ int main(int argc, char *argv[]) + + errmsg = run_init("/root", "/dev/console", + get_arg(cmdc, cmdv, "drop_capabilities="), false, +- init_path, init_argv); ++ false, init_path, init_argv); + + /* If run_init returned, something went bad */ + fprintf(stderr, "%s: %s: %s\n", progname, errmsg, strerror(errno)); +diff --git a/usr/kinit/run-init/run-init.c b/usr/kinit/run-init/run-init.c +index...

This patch adds the ability to kinit to allow the dropping of POSIX capabilities. kinit is modified by this change, such that it understands the new kernel command line "drop_capabilities=" that specifies a comma separated list of capability names that should be dropped before switching over to the next init in the boot strap (typically on the root disk). When processing capabilities to drop, CAP_SETPCAP is special cased to be dropped last, so that the order that capabilities...

...12 deletions(-) diff --git a/usr/kinit/kinit.c b/usr/kinit/kinit.c index de03c2d3..28d29534 100644 --- a/usr/kinit/kinit.c +++ b/usr/kinit/kinit.c @@ -305,7 +305,7 @@ int main(int argc, char *argv[]) errmsg = run_init("/root", "/dev/console", get_arg(cmdc, cmdv, "drop_capabilities="), false, - init_path, init_argv); + false, init_path, init_argv); /* If run_init returned, something went bad */ fprintf(stderr, "%s: %s: %s\n", progname, errmsg, strerror(errno)); diff --git a/usr/kinit/run-init/run-init.c b/usr/kinit/run-init/run-init.c index a14ce7...

...12 deletions(-) diff --git a/usr/kinit/kinit.c b/usr/kinit/kinit.c index de03c2d3..28d29534 100644 --- a/usr/kinit/kinit.c +++ b/usr/kinit/kinit.c @@ -305,7 +305,7 @@ int main(int argc, char *argv[]) errmsg = run_init("/root", "/dev/console", get_arg(cmdc, cmdv, "drop_capabilities="), false, - init_path, init_argv); + false, init_path, init_argv); /* If run_init returned, something went bad */ fprintf(stderr, "%s: %s: %s\n", progname, errmsg, strerror(errno)); diff --git a/usr/kinit/run-init/run-init.c b/usr/kinit/run-init/run-init.c index a14ce7...

...he capabilities up front from early userspace, before we actually transition onto the root volume. This patchset implements this by adding a "drop capabilities" ability to both kinit and run-init in the klibc package. For kinit, it now understands a new kernel command line option, "drop_capabilities" that specifies a comma separated list of capability names that should be dropped right before execing the next init binary on the next root device. run-init also has the ability to use this drop_capabilities function by specifying capabilities that should be dropped with a new command line f...

...r/kinit/kinit.c index 523c92b..de03c2d 100644 --- a/usr/kinit/kinit.c +++ b/usr/kinit/kinit.c @@ -304,7 +304,7 @@ int main(int argc, char *argv[]) init_argv[0] = strrchr(init_path, '/') + 1; errmsg = run_init("/root", "/dev/console", - get_arg(cmdc, cmdv, "drop_capabilities="), + get_arg(cmdc, cmdv, "drop_capabilities="), false, init_path, init_argv); /* If run_init returned, something went bad */ diff --git a/usr/kinit/run-init/run-init.c b/usr/kinit/run-init/run-init.c index 2147d06..a14ce7c 100644 --- a/usr/kinit/run-init/run-init.c +++...

The following patches come from Debian and/or Ubuntu packages of klibc. Ben. Ben Hutchings (1): [klibc] run-init: Add dry-run mode Jay Vosburgh (1): [klibc] ipconfig: Use separate sockets for DHCP from multiple interfaces Mathieu Trudel-Lapierre (1): [klibc] ipconfig: Set broadcast when sending DHCPREQUEST and DHCPDISCOVER YunQiang Su (1): [klibc] mips: setjmp.S: don't

Hello, While some people might scuba dive, let's summarize recent progress and state (People cc'ed have either patches in queue or are involved): * Patches pending review, allmost ready for klibc ------------------------------------------------- - mikew/drop_cap - kinit: Add drop_capabilities support adds the ability to kinit to allow the dropping of POSIX capabilities. (patch even referenced on lwn :) - mikew/run-parts - kinit: Add run_parts() adds possibility to run boot scripts from kinit - maks/fdopendir - dirent.h add fdopendir() initial implementation aboves patches are...

...master/capabilities.h --- a/src/master/capabilities.h Wed Nov 19 16:11:01 2008 +0200 +++ b/src/master/capabilities.h Wed Nov 19 14:18:38 2008 +0000 @@ -1,7 +1,7 @@ #ifndef CAPABILITIES_H #define CAPABILITIES_H -#if defined(HAVE_LIBCAP) +#if defined(HAVE_LIBCAP) || defined(HAVE_SETPPRIV) void drop_capabilities(void); diff -r 8f41c9f3f392 src/master/capabilities-solaris.c --- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/src/master/capabilities-solaris.c Wed Nov 19 14:18:39 2008 +0000 @@ -0,0 +1,54 @@ +/* Copyright (c) 2008 Dovecot authors, see the included COPYING file */ + +#include "common.h&qu...

...ipconfig: Write $PROTO as configuration protocol [klibc] ipconfig: A bit more robust bootp/dhcp option parsing [klibc] ipconfig: Write $DOMAINSEARCH as domain-search [klibc] ipconfig: Append padding if DHCP packet length < 300 octets Kees Cook (1): [klibc] run-init: add drop_capabilities support Luck, Tony (1): [klibc] ia64: Replace pipe.c with pipe.S Maciej ?enczykowski (1): [klibc] include: [sys/types.h] -> linux/types.h and __aligned_u64 Sam Ravnborg (1): [klibc] kbuild: sync with kernel 3.4-rc7 Thorsten Glaser (8): [klibc] Align <sys/types.h&gt...