Userland: Add unveil/pledge requisites for dynamic Unicode data loading

Loading libunicodedata.so will require dlopen(), which in turn requires mmap(). The 'prot_exec' pledge is needed for this. Further, the .so itself must be unveiled for reading. The "real" path is unveiled (libunicodedata.so.serenity) as the symlink (libunicodedata.so) itself cannot be unveiled.
Author: https://github.com/trflynn89 Commit: 10a8b6d411 Pull-request: https://github.com/SerenityOS/serenity/pull/11280 Reviewed-by: https://github.com/Hendiadyoin1
2025-08-17 07:50:04 +00:00 · 2021-12-16 08:13:00 -05:00 · 2021-12-16 08:13:00 -05:00 · 10a8b6d411 · 2024-07-17 22:28:06 +09:00
commit 10a8b6d411
parent 35e5cbe3b3
7 changed files with 16 additions and 8 deletions
--- a/Userland/Applications/Spreadsheet/main.cpp
+++ b/Userland/Applications/Spreadsheet/main.cpp
@ -22,7 +22,7 @@

 int main(int argc, char* argv[])
 {
-    if (pledge("stdio recvfd sendfd rpath fattr unix cpath wpath thread", nullptr) < 0) {
+    if (pledge("stdio recvfd sendfd rpath fattr unix cpath wpath thread prot_exec", nullptr) < 0) {
        perror("pledge");
        return 1;
    }
@ -69,6 +69,11 @@ int main(int argc, char* argv[])
        return 1;
    }

+    if (unveil("/usr/lib/libunicodedata.so.serenity", "r") < 0) {
+        perror("unveil");
+        return 1;
+    }
+
    if (unveil(nullptr, nullptr) < 0) {
        perror("unveil");
        return 1;