diff options
| author |   semarie <semarie@openbsd.org> | 2016-05-02 06:25:29 +0000 |
|---|---|---|
| committer | semarie <semarie@openbsd.org> | 2016-05-02 06:25:29 +0000 |
| commit | 1343a444fe8e94e470f8b12d6a639f4b4f667259 (patch) | |
| tree | 8118ad87a4a13d43b757c87789b9499677bdc287 | |
| parent | prepare userland for removing chroot(2) from allowed syscalls under pledge(2). (diff) | |
| download | wireguard-openbsd-1343a444fe8e94e470f8b12d6a639f4b4f667259.tar.xz wireguard-openbsd-1343a444fe8e94e470f8b12d6a639f4b4f667259.zip | |
prepare userland for removing chroot(2) from allowed syscalls under pledge(2).
for ntpd(8), removing the pledge call is a first step: futher redesign will occurs later.
ok reyk@ benno@
| -rw-r--r-- | usr.sbin/ntpd/ntpd.c | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/usr.sbin/ntpd/ntpd.c b/usr.sbin/ntpd/ntpd.c index 914027d8446..1ba779cc3ab 100644 --- a/usr.sbin/ntpd/ntpd.c +++ b/usr.sbin/ntpd/ntpd.c @@ -1,4 +1,4 @@ -/* $OpenBSD: ntpd.c,v 1.106 2016/02/02 17:51:11 sthen Exp $ */ +/* $OpenBSD: ntpd.c,v 1.107 2016/05/02 06:25:29 semarie Exp $ */ /* * Copyright (c) 2003, 2004 Henning Brauer <henning@openbsd.org> @@ -230,8 +230,10 @@ main(int argc, char *argv[]) * Constraint processes are forked with certificates in memory, * then privdrop into chroot before speaking to the outside world. */ +#if 0 if (pledge("stdio rpath inet settime proc id", NULL) == -1) err(1, "pledge"); +#endif while (quit == 0) { new_cnt = PFD_MAX + constraint_cnt; |