system/freebsd-src
system/freebsd-src
1
0
Fork 0
mirror of https://github.com/freebsd/freebsd-src synced 2024-07-08 20:26:31 +00:00
Code Issues Packages Projects Releases Wiki Activity
4052c95280
freebsd-src/usr.sbin/bhyveload
History
Kyle Evans 7b48fa60a5 bhyveload(8): document some SECURITY CONSIDERATIONS 
The situation is improved now that we're running in a sandbox, but there
is still some host machine access that could be concerning depending on
the context.  These concerns may be somewhat mitigated by the fact that
the host machine usually provides the loader binary, even when the guest
image is providing the loader scripts -- they only bring the lua
scripts, and they have to be able to execute arbitrary syscalls rather
than the interfaces provided by libsa(3).

Reviewed by:	jhb, markj

(cherry picked from commit 5df041c4bb)
2024-01-22 11:17:53 -06:00
..
bhyveload.8 bhyveload(8): document some SECURITY CONSIDERATIONS 2024-01-22 11:17:53 -06:00
bhyveload.c bhyveload: add CAP_SEEK to our dirfd rights 2024-01-22 11:17:53 -06:00
Makefile Remove $FreeBSD$: one-line sh pattern 2023-08-23 11:43:30 -06:00
Makefile.depend Remove $FreeBSD$: one-line sh pattern 2023-08-23 11:43:30 -06:00