Reluctantly classify statfs and fstatfs as RPATH for now, because they

leak system path information. Should be reconsidered in the future.
author: deraadt <deraadt@openbsd.org> 2015-09-29 14:41:27 +0000
committer: deraadt <deraadt@openbsd.org> 2015-09-29 14:41:27 +0000
commit: f67f69d971ae796e544c078b1b12b34032e6a47f (patch)
tree: 4d29b2d526d7cae137bea0a580529a475e855419 /sys/kern/kern_tame.c
parent: makemap(8) should Xr table(5); OK gilles@ (diff)
download: wireguard-openbsd-f67f69d971ae796e544c078b1b12b34032e6a47f.tar.xz
wireguard-openbsd-f67f69d971ae796e544c078b1b12b34032e6a47f.zip
1 files changed, 4 insertions, 3 deletions
diff --git a/sys/kern/kern_tame.c b/sys/kern/kern_tame.c
index 3ed3ff74661..c432f48d98b 100644
--- a/sys/kern/kern_tame.c
+++ b/sys/kern/kern_tame.c
@@ -1,4 +1,4 @@
-/*	$OpenBSD: kern_tame.c,v 1.43 2015/09/28 15:40:18 semarie Exp $	*/
+/*	$OpenBSD: kern_tame.c,v 1.44 2015/09/29 14:41:27 deraadt Exp $	*/
 
 /*
  * Copyright (c) 2015 Nicholas Marriott <nicm@openbsd.org>
@@ -173,9 +173,10 @@ const u_int tame_syscalls[SYS_MAXSYSCALL] = {
 	[SYS_mkdir] = TAME_CPATH,
 	[SYS_mkdirat] = TAME_CPATH,
 
-	/* Classify so due to info leak */
+	/* Classify as RPATH, becuase these leak path information */
 	[SYS_getfsstat] = TAME_RPATH,
-	/* XXX Consider statfs and fstatfs */
+	[SYS_statfs] = TAME_RPATH,
+	[SYS_fstatfs] = TAME_RPATH,
 
 	[SYS_utimes] = TAME_FATTR,
 	[SYS_futimes] = TAME_FATTR,
author	deraadt <deraadt@openbsd.org>	2015-09-29 14:41:27 +0000
committer	deraadt <deraadt@openbsd.org>	2015-09-29 14:41:27 +0000
commit	f67f69d971ae796e544c078b1b12b34032e6a47f (patch)
tree	4d29b2d526d7cae137bea0a580529a475e855419 /sys/kern/kern_tame.c
parent	makemap(8) should Xr table(5); OK gilles@ (diff)
download	wireguard-openbsd-f67f69d971ae796e544c078b1b12b34032e6a47f.tar.xz wireguard-openbsd-f67f69d971ae796e544c078b1b12b34032e6a47f.zip