11 Jun
2007
11 Jun
'07
9:52 a.m.
The plan is to do it with library injection,
I'm not sure what this means..? The above paths would be made available to the chroot environment... by hard links? or how? And how do you make those certain areas read-only?
Library injection means that open(2), write(2) and so on are patched with our own versions and that's how we trick the ports, by returning ENOENT, EACCES, etc. On darwin, the technique consists in setting DYLD_INSERT_LIBRARIES and DYLD_FORCE_FLAT_NAMESPACE. Paul