Mailing List Archive | ports@openbsd.org

From:: Bjorn Ketelaars <bket@openbsd.org>
Subject:: Re: spotifyd: pledge
To:: Klemens Nanni <kn@openbsd.org>
Cc:: ports@openbsd.org
Date:: Fri, 5 Jan 2024 19:32:58 +0100

Download raw body.

Thread

2024-01-01 14:03 Klemens Nanni:
spotifyd: pledge
- 2024-01-05 15:54 Klemens Nanni:
  spotifyd: pledge
- - 2024-01-05 18:32 Bjorn Ketelaars:
    spotifyd: pledge

On Fri 05/01/2024 15:54, Klemens Nanni wrote:
> On Mon, Jan 01, 2024 at 02:03:49PM +0000, Klemens Nanni wrote:
> > Code comments explain the promises a bit more, tl;dr:
> >     main() {
> >         pledge("stdio rpath wpath cpath inet mcast flock chown unix dns proc exec audio", NULL)
> >         [CLI arg and config parsing]
> >         if (on-song-change-hook)
> >             pledge("stdio rpath wpath cpath inet mcast unix dns proc exec audio", NULL)
> >         else
> >             pledge("stdio rpath wpath cpath inet mcast unix dns audio", NULL)
> >         [...]
> >     }
> > 
> > Daemon or in foreground, static credentials or --*-cmd or zeroconf discovery,
> > cache or no persistent files, rc.d script or manually run, MPRIS interaction
> > via playerctl(1):  it all works for me.
> > 
> > Unveil looks viable and doable, but as a second step.
> > 
> > Please try to break this.
> > Feedback? OK?

Tested as daemon and in foreground as user _spotifyd. So far, with
spotify-qt, no issues found.
¬
OK bket@

2024-01-01 14:03 Klemens Nanni:
spotifyd: pledge
- 2024-01-05 15:54 Klemens Nanni:
  spotifyd: pledge
- - 2024-01-05 18:32 Bjorn Ketelaars:
    spotifyd: pledge