On 16/03/2021 18:18, Renaud Allard wrote:
On 16/03/2021 17:46, Stuart Henderson wrote:Exim has a big monolothic process design and lots of optional features many of which pull in third party libraries which are complex themselves (and *also* will have to deal with the same pledge restrictions which again may vary in what functions they call depending on user config). Maybe it's fine for some limited use cases, but it feels that there's way too much in-scope for this to be a success for the general use case.In fact, I scanned the code looking for calls, so this should be ready for general use. I could have restricted it way more for my own use only. Though, I agree, this only protects from a very limited subset like route, settime, pf, audio, video.So, here is a diff without pledge but with the SIOCGIFCONF call removed as this should really be tested.
I haven't had anyone complaining or telling OK about this patch. I haven't had any crash or bug myself with it. So, maybe nobody tested it, or it worked just fine. I am not sure whether this should be committed before 6.9 or not.
smime.p7s
Description: S/MIME Cryptographic Signature
