diff options
| author | Sebastien Marie <semarie@cvs.openbsd.org> | 2015-12-16 08:27:33 +0000 |
|---|---|---|
| committer | Sebastien Marie <semarie@cvs.openbsd.org> | 2015-12-16 08:27:33 +0000 |
| commit | 2a602b0522534027fef30565d409c641a269d3ff (patch) | |
| tree | 5402039514d1a497ebf640f30069ef99eed6801e /lib/libc/sys/pledge.2 | |
| parent | 177fea08e7159e3cbf3f47ab89271d447273c3a9 (diff) | |
in pledged process, setuid/setgid/sticky bits should be ignored.
enforce it for mkfifo(2) and mknod(2) (with "dpath" promise).
ok deraadt@
Diffstat (limited to 'lib/libc/sys/pledge.2')
| -rw-r--r-- | lib/libc/sys/pledge.2 | 6 |
1 files changed, 4 insertions, 2 deletions
diff --git a/lib/libc/sys/pledge.2 b/lib/libc/sys/pledge.2 index d9867608d00..844dbb26085 100644 --- a/lib/libc/sys/pledge.2 +++ b/lib/libc/sys/pledge.2 @@ -1,4 +1,4 @@ -.\" $OpenBSD: pledge.2,v 1.19 2015/12/03 16:50:44 bluhm Exp $ +.\" $OpenBSD: pledge.2,v 1.20 2015/12/16 08:27:32 semarie Exp $ .\" .\" Copyright (c) 2015 Nicholas Marriott <nicm@openbsd.org> .\" @@ -14,7 +14,7 @@ .\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF .\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. .\" -.Dd $Mdocdate: December 3 2015 $ +.Dd $Mdocdate: December 16 2015 $ .Dt PLEDGE 2 .Os .Sh NAME @@ -81,6 +81,8 @@ Use of the "tty" and "ioctl" promises receive more ioctl requests. .It Xr lchown 2 .It Xr fchown 2 .It Xr fchownat 2 +.It Xr mkfifo 2 +.It Xr mknod 2 Setuid/setgid/sticky bits are ignored. The user or group cannot be changed on a file. .Pp |