Add SIOCATMARK to allow pledge("inet") programs to call sockatmark(3).

author bluhm <bluhm@openbsd.org>

Tue, 11 Apr 2017 15:55:41 +0000 (15:55 +0000)

committer bluhm <bluhm@openbsd.org>

Tue, 11 Apr 2017 15:55:41 +0000 (15:55 +0000)
author bluhm <bluhm@openbsd.org>
Tue, 11 Apr 2017 15:55:41 +0000 (15:55 +0000)
committer bluhm <bluhm@openbsd.org>
Tue, 11 Apr 2017 15:55:41 +0000 (15:55 +0000)
diff --git a/sys/kern/kern_pledge.c b/sys/kern/kern_pledge.c

index dfa3d23..78ae2fa 100644 (file)
--- a/sys/kern/kern_pledge.c
+++ b/sys/kern/kern_pledge.c
@@ -1,4 +1,4 @@
-/*     $OpenBSD: kern_pledge.c,v 1.201 2017/03/30 15:22:07 deraadt Exp $       */
+/*     $OpenBSD: kern_pledge.c,v 1.202 2017/04/11 15:55:41 bluhm Exp $ */
  
  /*
   * Copyright (c) 2015 Nicholas Marriott <nicm@openbsd.org>
@@ -1130,6 +1130,7 @@ pledge_ioctl(struct proc *p, long com, struct file *fp)
  
         if ((p->p_p->ps_pledge & PLEDGE_INET)) {
                 switch (com) {
+               case SIOCATMARK:
                 case SIOCGIFGROUP:
                         if (fp->f_type == DTYPE_SOCKET)
                                 return (0);
author	bluhm <bluhm@openbsd.org>
	Tue, 11 Apr 2017 15:55:41 +0000 (15:55 +0000)
committer	bluhm <bluhm@openbsd.org>
	Tue, 11 Apr 2017 15:55:41 +0000 (15:55 +0000)