diff options
author | Leah Rowe <leah@libreboot.org> | 2023-06-03 20:03:18 +0100 |
---|---|---|
committer | Leah Rowe <leah@libreboot.org> | 2023-06-03 21:03:21 +0100 |
commit | 94aa43d85750c676450e7ae0e29c06c861a126f8 (patch) | |
tree | 2374bfe984c62d435f104d51aa3a19fc0e9f85a1 /util/ich9utils/src/common/descriptor_gbe.c | |
parent | db63fcffb5ba30f7a0ed74ba9b437957592e6cb9 (diff) |
util/nvmutil: call unveil earlier, and harden
The mentality behind pledge and unveil is that you should
think ahead, so that large parts of code can run under
extremely tight restrictions.
The pledge calls have been adjusted accordingly, also.
Disallow all unveil calls after the gbe file and the
file /dev/urandom have been unveiled.
Signed-off-by: Leah Rowe <leah@libreboot.org>
Diffstat (limited to 'util/ich9utils/src/common/descriptor_gbe.c')
0 files changed, 0 insertions, 0 deletions