[Midnightbsd-cvs] [MidnightBSD/src] dbb5f3: prowld: Implement security hardening and fix memor...
Lucas Holt
noreply at github.com
Sun Apr 19 23:13:39 EDT 2026
Branch: refs/heads/master
Home: https://github.com/MidnightBSD/src
Commit: dbb5f33f98d6ca2dd7a0e33e36c1b222902bb9e0
https://github.com/MidnightBSD/src/commit/dbb5f33f98d6ca2dd7a0e33e36c1b222902bb9e0
Author: Lucas Holt <luke at foolishgames.com>
Date: 2026-04-19 (Sun, 19 Apr 2026)
Changed paths:
M sbin/prowld/job.c
M sbin/prowld/supervisor.c
M sbin/prowld/unit.c
Log Message:
-----------
prowld: Implement security hardening and fix memory leaks
- Harden drop-in override support with strict path ownership and permission checks.
- Fix memory leaks in job_free() for mDNS TXT records.
- Ensure sane default umask (022) is set for all managed services.
- Use absolute paths and execv() for internal helper processes (dns-sd).
- Clean up duplicate definitions and improve code quality in supervisor.c.
AI-Assisted-by: Gemini
Signed-off-by: Lucas Holt <luke at foolishgames.com>
To unsubscribe from these emails, change your notification settings at https://github.com/MidnightBSD/src/settings/notifications
More information about the Midnightbsd-cvs
mailing list