Re: [dev] pledge(2) patches

From: Connor Lane Smith <cls_AT_lubutu.com>
Date: Mon, 6 Jun 2016 12:01:00 +0100

On 6 June 2016 at 11:51, Martin K├╝hne <mysatyre_AT_gmail.com> wrote:
> I don't understand the purpose of pledge, since it's under the control
> of the programmer, but so is what the program does just as well. In
> what way is the programmer supposed to prevent himself from doing what
> they were going to do anyway?

The idea is to prevent oneself from inadvertently doing what one
*didn't* mean to do. For example, in the event of an exploit, the
process cannot be made to do something it has pledged not to. This
limits the impact of security holes.

cls
Received on Mon Jun 06 2016 - 13:01:00 CEST

This archive was generated by hypermail 2.3.0 : Mon Jun 06 2016 - 13:12:10 CEST