From owner-freebsd-security@FreeBSD.ORG Thu Jun 20 12:55:22 2013 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by hub.freebsd.org (Postfix) with ESMTP id 496BD14E; Thu, 20 Jun 2013 12:55:22 +0000 (UTC) (envelope-from priit.jarv@gmail.com) Received: from mail-ea0-x233.google.com (mail-ea0-x233.google.com [IPv6:2a00:1450:4013:c01::233]) by mx1.freebsd.org (Postfix) with ESMTP id A82671669; Thu, 20 Jun 2013 12:55:21 +0000 (UTC) Received: by mail-ea0-f179.google.com with SMTP id b15so3873985eae.38 for ; Thu, 20 Jun 2013 05:55:20 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=sender:date:from:x-x-sender:to:cc:subject:in-reply-to:message-id :references:user-agent:mime-version:content-type; bh=LLgLgR7P9ZqB2g9st7lQXK0iksWJqQq4AP3bF7vgYzU=; b=e241A/M2Ukbn9Z20HsQFRiJB2+v6O/Aog2DeN7R3uSEfea8oT3QPwhBwGsE2ylgVwW rVMokBXf4vYRcgTZkSHoLGrCK7ts+bH8eGj+oZjkB6d4mkx8r3mSfyykRz395l43VSxC d0EaJXM3X+xtjPz+oYOKnCAranzgYwZOojALgxZYUKFobTFhVZt64TP7IWkRQ2wdwFNS 35zyrUo9FhjlfY02rBtoFeNkRT9KkknqWGHmFaRcFpNZnUSCJEprgv06FQV5f/S+dT0h MymQBd+MNnqQBh9gApnMNrW07wysOtJyfJYIxMSAVpFE5rjPIvmZl7r9pzJMdvxox+FO 3wEg== X-Received: by 10.15.45.5 with SMTP id a5mr7645627eew.7.1371732920699; Thu, 20 Jun 2013 05:55:20 -0700 (PDT) Received: from chu (243.100.196.88.dyn.estpak.ee. [88.196.100.243]) by mx.google.com with ESMTPSA id c44sm297751eeb.8.2013.06.20.05.55.18 for (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Thu, 20 Jun 2013 05:55:19 -0700 (PDT) Sender: =?UTF-8?Q?Priit_J=C3=A4rv?= Date: Thu, 20 Jun 2013 15:46:57 +0300 (EEST) From: priit@cc.ttu.ee X-X-Sender: priit@chu To: Robert Watson Subject: RE: libarchive and MAC labels In-Reply-To: Message-ID: References: <62DD3F47DDCD4105AC023171CCF8BDA2@white> User-Agent: Alpine 2.03 (LNX 1266 2009-07-14) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: freebsd-security@freebsd.org X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Jun 2013 12:55:22 -0000 On Tue, 18 Jun 2013, Robert Watson wrote: > I'd also like to see this go back into libarchive; I suspect many people > would find this useful. Thank you for the feedback. I've already submitted the patch to libarchive. If anybody would like to view the changes the diff can be seen at: https://github.com/libarchive/libarchive/pull/42/files It remains quite basic so I'm open to suggestions for improvement. The question of archiving the system namespace extattrs instead has been brought up. Based on my limited understanding the system extattrs aren't supposed to be accessed that way, which is why the patch doesn't do that. It would however bypass some of the issues the current solution needs to deal with. Priit.