pathtrust

Designate a file or filesystem as trusted, or see if it is

Syntax:

Mark a file or filesystem as trusted: 

pathtrust [!]file... [lockdown]

Test to see if a file is trusted: 

pathtrust [-q] -t file... [lockdown]

Runs on:

QNX Neutrino

Options:

-q
Be quiet; use only the return code to indicate whether or not the file is trusted.
-t
Test to see if the file is trusted. If you haven't also specified -q, pathtrust reports the results on standard output.
[!]file
The file to test or mark as trusted.

If you haven't specified the -t option, then if you specify a leading exclamation mark, the given file is designated as trusted. If you don't specify the exclamation mark, the underlying filesystem is designated as trusted.

lockdown
Prevent any other files or filesystems from being marked as trusted.

Description:

The pathtrust utility sends messages to procnto to mark the given files and filesystems as trusted. If you don't mark any files or filesystems as trusted, all are trusted.

If a privileged process (root, or non-root with the PROCMGR_AID_PROT_EXEC ability—see procmgr_ability()) attempts to mark a region of memory as PROT_EXEC, any memory-mapped files in the region must be trusted or be from a trusted filesystem.

Exit status:

0
Successful completion; the file or filesystem is trusted.
1
The file or filesystem isn't trusted.
2
An error occurred.
Parent topic: P
Related reference
procnto*
fdistrusted() (QNX Neutrino C Library Reference)
mmap() (QNX Neutrino C Library Reference)
mprotect() (QNX Neutrino C Library Reference)
procmgr_ability() (QNX Neutrino C Library Reference)