[Bug 222632] Enable Capsicum for connect(2)
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Wed Sep 27 17:31:25 UTC 2017
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=222632
--- Comment #9 from Shawn Webb <shawn.webb at hardenedbsd.org> ---
Turns out that Tor will at some point call SSL_connect from libssl. Since
connect(2) isn't allowed in capmode, my efforts to apply Capsicum to Tor are in
vain.
What would be the best way to handle this? I definitely want any network
communication libssl might do to be Capsicumized. So calling SSL_connect from
the non-capmode child process won't work.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-bugs
mailing list