Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

port to cap-std #449

Open
cgwalters opened this issue Mar 21, 2023 · 0 comments
Open

port to cap-std #449

cgwalters opened this issue Mar 21, 2023 · 0 comments

Comments

@cgwalters
Copy link
Member

openat is deprecated and less secure, and pulls in less maintained deps.
cgwalters added a commit to cgwalters/bootupd that referenced this issue Jun 28, 2024
@cgwalters
Add cap-std, use in grubconfigs
fd49360 
Starting on coreos#449

`openat` is pretty dead upstream, and especially going forward
as we start to do more nontrivial file things, it's really
useful to have cap-std's additional verification that we
aren't accidentally escaping the root.

Signed-off-by: Colin Walters <[email protected]>
@cgwalters cgwalters mentioned this issue Jun 28, 2024
Draft
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@cgwalters