Re: git: 61d77e6c0095 - main - loader: allow for exceptions to restricted settings.

Reply: Warner Losh : "Re: git: 61d77e6c0095 - main - loader: allow for exceptions to restricted settings."
Reply: Simon J. Gerraty: "Re: git: 61d77e6c0095 - main - loader: allow for exceptions to restricted settings."
In reply to: Simon J. Gerraty: "git: 61d77e6c0095 - main - loader: allow for exceptions to restricted settings."
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: Kyle Evans <kevans_at_FreeBSD.org>
Date: Mon, 02 Jun 2025 16:14:54 UTC

On 6/2/25 00:49, Simon J. Gerraty wrote:
> The branch main has been updated by sjg:
> 
> URL: https://cgit.FreeBSD.org/src/commit/?id=61d77e6c009544d1489078c16a5d22b27d25c91b
> 
> commit 61d77e6c009544d1489078c16a5d22b27d25c91b
> Author:     Simon J. Gerraty <sjg@FreeBSD.org>
> AuthorDate: 2025-06-02 05:48:43 +0000
> Commit:     Simon J. Gerraty <sjg@FreeBSD.org>
> CommitDate: 2025-06-02 05:48:43 +0000
> 
>      loader: allow for exceptions to restricted settings.
>      
>      We restrict what an unverified loader.conf etc can set,
>      and the same restrictions are applied to interactive input.
>      We need to allow for exceptions (eg boot_verbose).
>      It is best if any allowed settings match up to '='.
>      
>      If we do not allow it to be set, do not allow it to be unset
>      
>      Reviewed by:    stevek
>      Sponsored by:   Juniper Networks, Inc.
> ---
Long-term, we should probably work out something that can work for 
lualoader, too.  We use setenv() there directly rather than adding a 
layer of indirection through the command-line parser.

Thanks,

Kyle Evans