CVSROOT: /cvs
Module name: src
Changes by: guent...@cvs.openbsd.org 2025/08/03 22:59:31
Modified files:
sys/sys : fcntl.h filedesc.h socket.h
sys/kern : kern_descrip.c kern_exec.c sys_pipe.c
uipc_syscalls.c uipc_usrreq.c vfs_syscalls.c
lib/libc/gen : opendir.c shm_open.3 shm_open.c
lib/libc/sys : accept.2 dup.2 fcntl.2 open.2 pipe.2 socket.2
socketpair.2 w_fcntl.c execve.2
lib/libc/stdlib: mkstemp.c mktemp.3
Log message:
Implement the POSIX-2024 close-on-fork flag, but modified to be
reset on exec as preserving it across exec is not necessary for its
original purpose and has security and usability concerns.
Many thanks to Ricardo Branco (rbranco (at) suse.de) who did an
independent implementation, caught that /dev/fd/* needed to be
handled, and provided a port of the illumos test suite. Thanks
to tb@ for assistance with that.
ok deraadt@
