[Bug 222632] Enable Capsicum for connect(2)

bugzilla-noreply at freebsd.org bugzilla-noreply at freebsd.org
Wed Sep 27 17:31:25 UTC 2017


--- Comment #9 from Shawn Webb <shawn.webb at hardenedbsd.org> ---
Turns out that Tor will at some point call SSL_connect from libssl. Since
connect(2) isn't allowed in capmode, my efforts to apply Capsicum to Tor are in

What would be the best way to handle this? I definitely want any network
communication libssl might do to be Capsicumized. So calling SSL_connect from
the non-capmode child process won't work.

You are receiving this mail because:
You are the assignee for the bug.

More information about the freebsd-bugs mailing list