diff options
| author | Theo de Raadt <deraadt@cvs.openbsd.org> | 2015-10-05 13:30:31 +0000 |
|---|---|---|
| committer | Theo de Raadt <deraadt@cvs.openbsd.org> | 2015-10-05 13:30:31 +0000 |
| commit | 79a5b1930464b264a4172ae6a34b14370a4c238f (patch) | |
| tree | 238d4929c561d9347a472863bafcdfd4bfae64e4 /usr.bin/colrm | |
| parent | da8b794f1a034a35fd3254d7ba14f02e02ffbe5f (diff) | |
tame "stdio rpath" or tame "stdio" suffices for all of these programs.
fairly easy to audit by running nm and noticing nothing beyond base
stdio except for fopen/freopen. Then review all callpaths to those
functions, and place the tame() calls.
ok sthen
Diffstat (limited to 'usr.bin/colrm')
| -rw-r--r-- | usr.bin/colrm/colrm.c | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/usr.bin/colrm/colrm.c b/usr.bin/colrm/colrm.c index 2c5e4d86462..26e601cd1c8 100644 --- a/usr.bin/colrm/colrm.c +++ b/usr.bin/colrm/colrm.c @@ -1,4 +1,4 @@ -/* $OpenBSD: colrm.c,v 1.9 2009/10/27 23:59:36 deraadt Exp $ */ +/* $OpenBSD: colrm.c,v 1.10 2015/10/05 13:30:30 deraadt Exp $ */ /* $NetBSD: colrm.c,v 1.4 1995/09/02 05:51:37 jtc Exp $ */ /*- @@ -52,6 +52,9 @@ main(int argc, char *argv[]) int ch; char *p; + if (tame("stdio", NULL) == -1) + err(1, "tame"); + while ((ch = getopt(argc, argv, "")) != -1) switch(ch) { case '?': |