openbsd/src
1
0
Fork 0
mirror of https://github.com/openbsd/src.git synced 2026-06-18 07:13:36 +02:00
Code Activity

replace pledge "stdio rpath tmppath" with unveil "/tmp" "rwc" to satisfy

Browse Source 
mktemp(3) type operations, unveil "/" "r" for reading all over the tree,
and pledge "stdio rpath wpath cpath" to permit both unveils subject to
their own limitations.
This commit is contained in:
deraadt
2026-02-23 16:45:16 +00:00
parent 1b5c1c8cc4
commit 3ae6636769
1 changed files with 5 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
gnu/usr.bin/binutils-2.17/binutils/objdump.c
+5 -1
View File
@@ -2962,7 +2962,11 @@ main (int argc, char **argv)
bindtextdomain (PACKAGE, LOCALEDIR);
textdomain (PACKAGE);
if (pledge ("stdio rpath tmppath", NULL) == -1)
if (unveil ("/tmp", "rwc") == -1)
fatal (_("Failed to unveil /tmp"));
if (unveil ("/", "r") == -1)
fatal (_("Failed to unveil /"));
if (pledge ("stdio rpath wpath cpath", NULL) == -1)
fatal (_("Failed to pledge"));
program_name = *argv;