Liav A e598f22768 Kernel: Disallow executing SUID binaries if process is jailed ... Check if the process we are currently running is in a jail, and if that is the case, fail early with the EPERM error code. Also, as Brian noted, we should also disallow attaching to a jail in case of already running within a setid executable, as this leaves the user with false thinking of being secure (because you can't exec new setid binaries), but the current program is still marked setid, which means that at the very least we gained permissions while we didn't expect it, so let's block it.		2022-12-30 15:49:37 -05:00
..
bin	Userland: Add support for -S to env command	2021-04-12 14:06:24 +02:00
include	Toolchain: Useit.sh finish and added an install target for the libc's Makefile and a bit of ground work for a gcc port	2019-04-29 13:12:20 +02:00
lib	Toolchain: Useit.sh finish and added an install target for the libc's Makefile and a bit of ground work for a gcc port	2019-04-29 13:12:20 +02:00
share	Kernel: Disallow executing SUID binaries if process is jailed	2022-12-30 15:49:37 -05:00