Use tighter pledge(2) restrictions.

Made possible by the logging overhaul.  Tested by Freddy Dissaux.

diff --git a/usr.sbin/route6d/route6d.c b/usr.sbin/route6d/route6d.c
index 1117807..1f06e71 100644 (file)
--- a/usr.sbin/route6d/route6d.c
+++ b/usr.sbin/route6d/route6d.c
@@ -1,4 +1,4 @@
-/*     $OpenBSD: route6d.c,v 1.89 2016/08/05 11:32:28 jca Exp $        */
+/*     $OpenBSD: route6d.c,v 1.90 2016/08/05 11:34:51 jca Exp $        */
 /*     $KAME: route6d.c,v 1.111 2006/10/25 06:38:13 jinmei Exp $       */
 
 /*
@@ -317,7 +317,7 @@ main(int argc, char *argv[])
 
        init();
 
-       if (pledge("stdio rpath wpath cpath inet route mcast", NULL) == -1)
+       if (pledge("stdio inet route mcast", NULL) == -1)
                fatal("pledge");
 
        ifconfig();