CVS commit: src

To: source-changes%NetBSD.org@localhost
Subject: CVS commit: src
From: "Roy Marples" <roy%netbsd.org@localhost>
Date: Sat, 30 May 2026 10:09:48 +0000

Module Name:    src
Committed By:   roy
Date:           Sat May 30 10:09:48 UTC 2026

Modified Files:
        src/distrib/sets/lists/comp: mi
        src/include: util.h
        src/lib/libutil: Makefile pidfile.3 pidfile.c util.expsym

Log Message:
pidfile: Add functionality for use in sandboxing

pidfile_fd() returns the file descriptor of the locked pidfile so it can
be limited in sandboxes like Capsicum.

pidfile_unremoveable() will avoid unlink(2) being called at program exit
to avoid tripping any sandboxes like Pledge which may restrict it or
it's just not reachable anymore if the program is in a chroot(2).

pidfile_path() returns the path of the locked pidfile so it can be removed
by a process than can reach it if pidfile_unremoveable() has been called.

pidfile_unlock() just releases the resources held by the locked pidfile.
This is lighter weight than pidfile_clean() as it avoids a lseek and read.


To generate a diff of this commit:
cvs rdiff -u -r1.2524 -r1.2525 src/distrib/sets/lists/comp/mi
cvs rdiff -u -r1.71 -r1.72 src/include/util.h
cvs rdiff -u -r1.87 -r1.88 src/lib/libutil/Makefile
cvs rdiff -u -r1.16 -r1.17 src/lib/libutil/pidfile.3 \
    src/lib/libutil/pidfile.c
cvs rdiff -u -r1.2 -r1.3 src/lib/libutil/util.expsym

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: src/sys/dev/ic
Next by Date: CVS commit: src/sys/arch
Previous by Thread: CVS commit: src/sys/dev/ic
Next by Thread: CVS commit: src/sys/arch
Indexes:

Home | Main Index | Thread Index | Old Index