Update comment for capsicum

author Roy Marples <roy@marples.name>

Tue, 12 May 2020 10:46:19 +0000 (11:46 +0100)

committer Roy Marples <roy@marples.name>

Tue, 12 May 2020 10:46:19 +0000 (11:46 +0100)
author Roy Marples <roy@marples.name>
Tue, 12 May 2020 10:46:19 +0000 (11:46 +0100)
committer Roy Marples <roy@marples.name>
Tue, 12 May 2020 10:46:19 +0000 (11:46 +0100)
diff --git a/src/dhcpcd.c b/src/dhcpcd.c

index c2d10617575559d978730bc061abd9c2f0940db0..c4e46809add983a60470d52d5883217516bd98ca 100644 (file)
--- a/src/dhcpcd.c
+++ b/src/dhcpcd.c
@@ -2263,11 +2263,13 @@ printpidfile:
  
  #ifdef PRIVSEP
         if (ctx.options & DHCPCD_PRIVSEP) {
-
                 /*
-                * PSF_CAP_ENTER is not set because the following functions
-                * won't work in it:
-                * getifaddrs(3), gethostname(3), uname(3).
+                * PSF_CAP_ENTER is not set because getifaddrs(3) won't
+                * work in it. This is a huge challenge because it's the
+                * only portable interface to work stuff out and it's
+                * non trivial to IPC for privsep.
+                * gethostname(3) can be trivially done.
+                * There could be more blockers, it's as far as I've got.
                  */
                 if (ps_dropprivs(&ctx, PSF_PLEDGE) == -1) {
                         logerr("ps_dropprivs");
author	Roy Marples <roy@marples.name>
	Tue, 12 May 2020 10:46:19 +0000 (11:46 +0100)
committer	Roy Marples <roy@marples.name>
	Tue, 12 May 2020 10:46:19 +0000 (11:46 +0100)