Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

genkeys, yggdrasilctl: Use pledge(2) on OpenBSD #1193

Open
wants to merge 2 commits into
base: develop
Choose a base branch
from
Open

genkeys, yggdrasilctl: Use pledge(2) on OpenBSD #1193

wants to merge 2 commits into from

Conversation

klemensn
Copy link
Contributor

@klemensn klemensn commented Oct 20, 2024
edited
Loading

Restrict system operations of CLI tools with https://man.openbsd.org/pledge.2.

https://pkg.go.dev/suah.dev/protect abstracts the OS specific code, i.e. is a NOOP on non-OpenBSD systems.

This PR is to gauge upstream interest in this direction; my OpenBSD port of yggdrasil already pledges the daemon,
resulting in minimal runtime privileges, but there are still a few rough edges:
https://github.com/jasperla/openbsd-wip/blob/master/net/yggdrasil/patches/patch-cmd_yggdrasil_main_go#L80

@klemensn klemensn mentioned this pull request Oct 22, 2024
Open
@klemensn
pledge genkeys
c27e3f4 
The simplest tool first:  genkeys only does standard I/O, nothing else.
@klemensn
pledge yggdrasilctl
9e1efc2 
The CLI is simple, but parses config files and communicates over the network
with arbitrary endpoints.

Limit system operations to that is needed before doing anything and drop all
priviledges after config file and socket handling is done, i.e. do parse and
speak over the network completely unprivileged.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@klemensn