diff options
| author | Gilles Chehade <gilles@cvs.openbsd.org> | 2015-10-13 08:07:36 +0000 |
|---|---|---|
| committer | Gilles Chehade <gilles@cvs.openbsd.org> | 2015-10-13 08:07:36 +0000 |
| commit | d8d345b2561a22a3a2ce6895aaf831ce4dc7ed8e (patch) | |
| tree | 0cf555488248a4994be40eb89db9b50f7204b650 | |
| parent | 638e3086fc6366b892a7eb0d3184a86f4609a45f (diff) | |
pledge("stdio") the RSA-privsep process
| -rw-r--r-- | usr.sbin/smtpd/ca.c | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/usr.sbin/smtpd/ca.c b/usr.sbin/smtpd/ca.c index ccfae188398..0332fc2e2ac 100644 --- a/usr.sbin/smtpd/ca.c +++ b/usr.sbin/smtpd/ca.c @@ -1,4 +1,4 @@ -/* $OpenBSD: ca.c,v 1.14 2015/01/20 17:37:54 deraadt Exp $ */ +/* $OpenBSD: ca.c,v 1.15 2015/10/13 08:07:35 gilles Exp $ */ /* * Copyright (c) 2014 Reyk Floeter <reyk@openbsd.org> @@ -137,6 +137,9 @@ ca(void) /* Ignore them until we get our config */ mproc_disable(p_pony); + if (pledge("stdio", NULL) == -1) + err(1, "pledge"); + if (event_dispatch() < 0) fatal("event_dispatch"); ca_shutdown(); |