fun with pledge()

Started by Kirill, October 07, 2020, 08:11:17 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions

Kirill

October 07, 2020, 08:11:17 AM Last Edit: December 31, 1969, 04:00:00 PM by Guest
On OpenBSD http://man.openbsd.org/pledge">pledge() system call forces the current process into a restricted-service operating mode.



I know newLISP can import function from shared libraries, but I have never done so yet. So I thought I'd give it a try with pledge():


Code Select

> (import "/usr/lib/libc.so.96.0" "pledge")
pledge@F99015DECD0
> (pledge "tty stdio" 0)
0
> (println "yay!")
yay!
"yay!"
> (! "ls -al")
Abort trap (core dumped)


In another window I see


Code Select

newlisp[56936]: pledge "proc", syscall 66


That was fun! I will play more with this little tool.

rickyboy

#1
October 07, 2020, 06:56:07 PM Last Edit: December 31, 1969, 04:00:00 PM by Guest
Nice! 👍
(λx. x x) (λx. x x)

Kirill

#2
October 08, 2020, 01:06:34 AM Last Edit: December 31, 1969, 04:00:00 PM by Guest
I was thinking of creating something that would allow running untrusted newLISP code (think serverless, function-as-a-service et c) as a CGI, only allowing to act on submittes post data and do calculations and spit out the result.



Now, with pledge() and newLISP running in a chroot already, the idea may some day come true.
Print
Go Up Pages1
User actions