summaryrefslogtreecommitdiffstats
path: root/usr.bin/ssh/ssh-agent.c
diff options
context:
space:
mode:
authordjm <djm@openbsd.org>2015-12-01 23:29:24 +0000
committerdjm <djm@openbsd.org>2015-12-01 23:29:24 +0000
commitee45212806b34107c43014413415184fe70b1fa9 (patch)
tree50824cc789cd45e3414a95e1883ec5080facfba8 /usr.bin/ssh/ssh-agent.c
parentknock out duplicate rcs id; (diff)
downloadwireguard-openbsd-ee45212806b34107c43014413415184fe70b1fa9.tar.xz
wireguard-openbsd-ee45212806b34107c43014413415184fe70b1fa9.zip
basic pledge() for ssh-agent, more refinement needed
Diffstat (limited to 'usr.bin/ssh/ssh-agent.c')
-rw-r--r--usr.bin/ssh/ssh-agent.c5
1 files changed, 4 insertions, 1 deletions
diff --git a/usr.bin/ssh/ssh-agent.c b/usr.bin/ssh/ssh-agent.c
index ed3ddb7e27c..14370d78202 100644
--- a/usr.bin/ssh/ssh-agent.c
+++ b/usr.bin/ssh/ssh-agent.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssh-agent.c,v 1.204 2015/07/08 20:24:02 markus Exp $ */
+/* $OpenBSD: ssh-agent.c,v 1.205 2015/12/01 23:29:24 djm Exp $ */
/*
* Author: Tatu Ylonen <ylo@cs.hut.fi>
* Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
@@ -1371,6 +1371,9 @@ skip:
signal(SIGTERM, cleanup_handler);
nalloc = 0;
+ if (pledge("stdio unix exec", NULL) != 0)
+ fatal("%s: pledge: %s", __progname, strerror(errno));
+
while (1) {
prepare_select(&readsetp, &writesetp, &max_fd, &nalloc, &tvp);
result = select(max_fd + 1, readsetp, writesetp, NULL, tvp);
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.