diff options
| author | YASUOKA Masahiko <yasuoka@cvs.openbsd.org> | 2015-10-19 22:07:38 +0000 |
|---|---|---|
| committer | YASUOKA Masahiko <yasuoka@cvs.openbsd.org> | 2015-10-19 22:07:38 +0000 |
| commit | 4253fd8a4d8567187accda27e999d8b2ba8d5bbe (patch) | |
| tree | ed8c99f6618b8b1deb9338214dbe0f2c826b4aff /usr.sbin/radiusctl | |
| parent | b64d10496c1217c1e32fe4a15266b5ffbfa81512 (diff) | |
Add pledge(2) for radiusctl(8) and radiusd(8).
- radiusd: "stdio inet"
- radiusd_radius: "stdio inet"
- radiusd_bsdauth:
- "stdio proc" for the non-priviledged process
- "stdio getpw rpath proc exec" for the priviledged process
- radiusctl: "stdio dns inet"
"go ahead" deraadt
Diffstat (limited to 'usr.sbin/radiusctl')
| -rw-r--r-- | usr.sbin/radiusctl/radiusctl.c | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/usr.sbin/radiusctl/radiusctl.c b/usr.sbin/radiusctl/radiusctl.c index 2591e77158e..c0e82354fe0 100644 --- a/usr.sbin/radiusctl/radiusctl.c +++ b/usr.sbin/radiusctl/radiusctl.c @@ -1,4 +1,4 @@ -/* $OpenBSD: radiusctl.c,v 1.4 2015/08/25 01:21:57 yasuoka Exp $ */ +/* $OpenBSD: radiusctl.c,v 1.5 2015/10/19 22:07:37 yasuoka Exp $ */ /* * Copyright (c) 2015 YASUOKA Masahiko <yasuoka@yasuoka.net> * @@ -71,6 +71,8 @@ main(int argc, char *argv[]) case NONE: break; case TEST: + if (pledge("stdio dns inet", NULL) == -1) + err(EXIT_FAILURE, "pledge"); radius_test(result); break; } |