From fa8a4eced963e628995f2392cf0f402a82ed5231 Mon Sep 17 00:00:00 2001 From: Theo de Raadt Date: Fri, 2 Oct 2015 20:48:49 +0000 Subject: I see no evidence that lstat() is being done for /etc/resolv.conf, nor can I figure out why I added this in the past... --- sys/kern/kern_tame.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/sys/kern/kern_tame.c b/sys/kern/kern_tame.c index 9c10f8320f8..7d388742e7f 100644 --- a/sys/kern/kern_tame.c +++ b/sys/kern/kern_tame.c @@ -1,4 +1,4 @@ -/* $OpenBSD: kern_tame.c,v 1.52 2015/10/02 20:42:26 deraadt Exp $ */ +/* $OpenBSD: kern_tame.c,v 1.53 2015/10/02 20:48:48 deraadt Exp $ */ /* * Copyright (c) 2015 Nicholas Marriott @@ -161,7 +161,7 @@ const u_int tame_syscalls[SYS_MAXSYSCALL] = { [SYS_fstatat] = TAME_RPATH | TAME_WPATH, [SYS_faccessat] = TAME_RPATH | TAME_WPATH, [SYS_readlinkat] = TAME_RPATH | TAME_WPATH, - [SYS_lstat] = TAME_RPATH | TAME_WPATH | TAME_TMPPATH | TAME_DNSPATH, + [SYS_lstat] = TAME_RPATH | TAME_WPATH | TAME_TMPPATH, [SYS_rename] = TAME_CPATH, [SYS_rmdir] = TAME_CPATH, [SYS_renameat] = TAME_CPATH, -- cgit v1.2.3