change got_worktree_init, open

From:: Ed Maste <emaste@freebsd.org>
Subject:: Re: change got_worktree_init, open_worktree to use fds
To:: stsp@stsp.name
Cc:: Yang Zhong <yzhong@freebsdfoundation.org>, gameoftrees@openbsd.org
Date:: Fri, 4 Dec 2020 09:52:22 -0500

Download raw body.

Thread

2020-12-01 22:39 Yang Zhong:
change got_worktree_init, open_worktree to use fds
- 2020-12-01 23:11 Stefan Sperling:
  change got_worktree_init, open_worktree to use fds
- - 2020-12-04 14:52 Ed Maste:
    change got_worktree_init, open_worktree to use fds
  - - 2020-12-04 15:15 Stefan Sperling:
      change got_worktree_init, open_worktree to use fds
    - - 2020-12-04 15:33 Yang Zhong:
        change got_worktree_init, open_worktree to use fds

On Tue, 1 Dec 2020 at 18:11, Stefan Sperling <stsp@stsp.name> wrote:
>
> Couldn't you apply capsicum to open file descriptors provided via newly
> initialized struct got_worktree and struct got_repository, and enter the
> sandbox before the main operation logic of the got command starts executing?

Yes, this is likely the approach to take; once the root directories of
the repository and of the working tree have been located we can enter
the sandbox and no longer rely on ambient authority or access to
global namespaces.

2020-12-01 22:39 Yang Zhong:
change got_worktree_init, open_worktree to use fds
- 2020-12-01 23:11 Stefan Sperling:
  change got_worktree_init, open_worktree to use fds
- - 2020-12-04 14:52 Ed Maste:
    change got_worktree_init, open_worktree to use fds
  - - 2020-12-04 15:15 Stefan Sperling:
      change got_worktree_init, open_worktree to use fds
    - - 2020-12-04 15:33 Yang Zhong:
        change got_worktree_init, open_worktree to use fds