In all fairness, so does BSD patch.
-
-
-
OpenBSD's patch(1) should have fixed this back in 2015. https://ftp.openbsd.org/pub/OpenBSD/patches/5.7/common/013_patch.patch.sig …
-
We also brought that patch into FreeBSD in 2015, and we invoke /usr/bin/red which disables shell commands. A little later OpenBSD introduced an improvement (processing ed-style patches internally) and we should bring that to FreeBSD still.
-
Though OpenBSD unfortunately dropped `red`https://twitter.com/OpenBSD_src/status/470020172451835905 …
-
patch(1) was changed to handle ed-style patches internally, and hence no longer pledges "proc exec", i.e: cannot execute commands. ed(1) is a text editor, and text editors are shells, so it still needs "proc exec". 'red' was never installed on OpenBSD.https://github.com/openbsd/src/commit/6d4b3e9e0bc5d740ca39ae31930a7cec26a8ac69 …
End of conversation
New conversation -
-
-
Even worse! Patches can modify your sourcecode and introduce backdoors, if not reviewed carefully.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.