MFp4 @229483:

Limit communication pipe with privileged process to CAP_READ and CAP_WRITE. Reviewed by: brooks Sponsored by: The FreeBSD Foundation
2013-07-03 22:17:29 +00:00 · 2013-07-03 22:17:29 +00:00 · 6526d2e66a
commit 6526d2e66a
parent 11d993e694
1 changed files with 6 additions and 0 deletions
--- a/sbin/dhclient/dhclient.c
+++ b/sbin/dhclient/dhclient.c
@ -59,6 +59,8 @@ __FBSDID("$FreeBSD$");
 #include "dhcpd.h"
 #include "privsep.h"

+#include <sys/capability.h>
+
 #include <net80211/ieee80211_freebsd.h>

 #ifndef _PATH_VAREMPTY
@ -470,6 +472,10 @@ main(int argc, char *argv[])

 	close(pipe_fd[0]);
 	privfd = pipe_fd[1];
+	if (cap_rights_limit(privfd, CAP_READ | CAP_WRITE) < 0 &&
+	    errno != ENOSYS) {
+		error("can't limit private descriptor: %m");
+	}

 	if ((fd = open(path_dhclient_db, O_RDONLY|O_EXLOCK|O_CREAT, 0)) == -1)
 		error("can't open and lock %s: %m", path_dhclient_db);