summaryrefslogtreecommitdiff
path: root/sys/kern
diff options
context:
space:
mode:
authorTheo de Raadt <deraadt@cvs.openbsd.org>2015-10-10 19:15:54 +0000
committerTheo de Raadt <deraadt@cvs.openbsd.org>2015-10-10 19:15:54 +0000
commitce389ec25725c5f90083ca9de42afb07f7aa770b (patch)
tree407746c192daa88cecad3ab164ee6dc29052816b /sys/kern
parent174b83e9c078302c45ada8f28937066da0800fb3 (diff)
For pledge, sigsuspend() should is affecting the behaviour a process itself,
so we should allow it for 'self'. ok djm
Diffstat (limited to 'sys/kern')
-rw-r--r--sys/kern/kern_pledge.c4
1 files changed, 2 insertions, 2 deletions
diff --git a/sys/kern/kern_pledge.c b/sys/kern/kern_pledge.c
index f6394c6872c..5ee44b4582e 100644
--- a/sys/kern/kern_pledge.c
+++ b/sys/kern/kern_pledge.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: kern_pledge.c,v 1.9 2015/10/10 16:35:08 deraadt Exp $ */
+/* $OpenBSD: kern_pledge.c,v 1.10 2015/10/10 19:15:53 deraadt Exp $ */
/*
* Copyright (c) 2015 Nicholas Marriott <nicm@openbsd.org>
@@ -89,6 +89,7 @@ const u_int pledge_syscalls[SYS_MAXSYSCALL] = {
[SYS_sendsyslog] = PLEDGE_SELF,
[SYS_nanosleep] = PLEDGE_SELF,
[SYS_sigprocmask] = PLEDGE_SELF,
+ [SYS_sigsuspend] = PLEDGE_SELF,
[SYS_sigaction] = PLEDGE_SELF,
[SYS_sigreturn] = PLEDGE_SELF,
[SYS_sigpending] = PLEDGE_SELF,
@@ -138,7 +139,6 @@ const u_int pledge_syscalls[SYS_MAXSYSCALL] = {
[SYS_vfork] = PLEDGE_PROC,
[SYS_kill] = PLEDGE_SELF | PLEDGE_PROC,
[SYS_setpgid] = PLEDGE_PROC,
- [SYS_sigsuspend] = PLEDGE_PROC,
[SYS_setrlimit] = PLEDGE_PROC,
[SYS_execve] = PLEDGE_EXEC,
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-26 05:52:16 +0000