-/* $OpenBSD: kern_pledge.c,v 1.288 2022/07/17 04:29:38 deraadt Exp $ */
+/* $OpenBSD: kern_pledge.c,v 1.289 2022/07/18 17:45:46 deraadt Exp $ */
/*
* Copyright (c) 2015 Nicholas Marriott <nicm@openbsd.org>
[SYS_pwrite] = PLEDGE_STDIO,
[SYS_pwritev] = PLEDGE_STDIO,
[SYS_recvmsg] = PLEDGE_STDIO,
- [SYS_recvfrom] = PLEDGE_STDIO | PLEDGE_YPACTIVE,
+ [SYS_recvfrom] = PLEDGE_STDIO,
[SYS_ftruncate] = PLEDGE_STDIO,
[SYS_lseek] = PLEDGE_STDIO,
[SYS_fpathconf] = PLEDGE_STDIO,
-#if 1
- [SYS_pad_mquery] = PLEDGE_STDIO,
- [SYS_pad_mmap] = PLEDGE_STDIO,
- [SYS_pad_pread] = PLEDGE_STDIO,
- [SYS_pad_preadv] = PLEDGE_STDIO,
- [SYS_pad_pwrite] = PLEDGE_STDIO,
- [SYS_pad_pwritev] = PLEDGE_STDIO,
- [SYS_pad_ftruncate] = PLEDGE_STDIO,
- [SYS_pad_lseek] = PLEDGE_STDIO,
- [SYS_pad_truncate] = PLEDGE_WPATH,
-#endif
-
/*
* Address selection required a network pledge ("inet",
* "unix", "dns".
*/
- [SYS_sendto] = PLEDGE_STDIO | PLEDGE_YPACTIVE,
+ [SYS_sendto] = PLEDGE_STDIO,
/*
* Address specification required a network pledge ("inet",
[SYS_lchown] = PLEDGE_CHOWN,
[SYS_fchown] = PLEDGE_CHOWN,
- [SYS_socket] = PLEDGE_INET | PLEDGE_UNIX | PLEDGE_DNS | PLEDGE_YPACTIVE,
- [SYS_connect] = PLEDGE_INET | PLEDGE_UNIX | PLEDGE_DNS | PLEDGE_YPACTIVE,
- [SYS_bind] = PLEDGE_INET | PLEDGE_UNIX | PLEDGE_DNS | PLEDGE_YPACTIVE,
- [SYS_getsockname] = PLEDGE_INET | PLEDGE_UNIX | PLEDGE_DNS | PLEDGE_YPACTIVE,
+ [SYS_socket] = PLEDGE_INET | PLEDGE_UNIX | PLEDGE_DNS,
+ [SYS_connect] = PLEDGE_INET | PLEDGE_UNIX | PLEDGE_DNS,
+ [SYS_bind] = PLEDGE_INET | PLEDGE_UNIX | PLEDGE_DNS,
+ [SYS_getsockname] = PLEDGE_INET | PLEDGE_UNIX | PLEDGE_DNS,
[SYS_listen] = PLEDGE_INET | PLEDGE_UNIX,
[SYS_accept4] = PLEDGE_INET | PLEDGE_UNIX,
[SYS_accept] = PLEDGE_INET | PLEDGE_UNIX,
[SYS_getpeername] = PLEDGE_INET | PLEDGE_UNIX,
- [SYS_flock] = PLEDGE_FLOCK | PLEDGE_YPACTIVE,
+ [SYS_flock] = PLEDGE_FLOCK,
[SYS_ypconnect] = PLEDGE_GETPW,
ni->ni_cnd.cn_flags |= BYPASSUNVEIL;
return (0);
}
-
- /* XXX delete chunk after ypconnect() is established */
- /* when avoiding YP mode, getpw* functions touch this */
- if (ni->ni_pledge == PLEDGE_RPATH &&
+ /*
+ * XXX delete before 7.2.
+ * Old static binaries may try this file in getpwent and friends
+ */
+ if ((ni->ni_pledge == PLEDGE_RPATH) &&
+ (pledge & PLEDGE_GETPW) &&
strcmp(path, "/var/run/ypbind.lock") == 0) {
- if (pledge & PLEDGE_GETPW) {
- ni->ni_cnd.cn_flags |= BYPASSUNVEIL;
- return (0);
- } else
- return (pledge_fail(p, error, PLEDGE_GETPW));
+ ni->ni_cnd.cn_flags |= BYPASSUNVEIL;
+ return (0);
}
break;
case SYS_open:
}
}
+ /*
+ * XXX delete before 7.2.
+ * Old static binaries may try this file in getpwent and friends
+ */
if ((ni->ni_pledge == PLEDGE_RPATH) &&
- (pledge & PLEDGE_GETPW)) {
- /* XXX delete chunk after ypconnect() is established */
- if (strcmp(path, "/var/run/ypbind.lock") == 0) {
- /*
- * XXX
- * The current hack for YP support in "getpw"
- * is to enable some "inet" features until
- * next pledge call.
- */
- mtx_enter(&p->p_p->ps_mtx);
- p->p_p->ps_pledge |= PLEDGE_YPACTIVE;
- mtx_leave(&p->p_p->ps_mtx);
- ni->ni_cnd.cn_flags |= BYPASSUNVEIL;
- return (0);
- }
- if (strncmp(path, "/var/yp/binding/",
- sizeof("/var/yp/binding/") - 1) == 0) {
- ni->ni_cnd.cn_flags |= BYPASSUNVEIL;
- return (0);
- }
+ (pledge & PLEDGE_GETPW) &&
+ strcmp(path, "/var/run/ypbind.lock") == 0) {
+ ni->ni_cnd.cn_flags |= BYPASSUNVEIL;
+ return (0);
}
/* tzset() needs these. */
if ((p->p_p->ps_flags & PS_PLEDGE) == 0)
return (0);
- if ((p->p_p->ps_pledge & (PLEDGE_INET | PLEDGE_UNIX | PLEDGE_DNS | PLEDGE_YPACTIVE)))
+ if ((p->p_p->ps_pledge & (PLEDGE_INET | PLEDGE_UNIX | PLEDGE_DNS)))
return (0); /* may use address */
if (to == NULL)
return (0); /* behaves just like write */
}
}
- if ((pledge & (PLEDGE_INET|PLEDGE_UNIX|PLEDGE_DNS|PLEDGE_YPACTIVE)) == 0)
+ if ((pledge & (PLEDGE_INET|PLEDGE_UNIX|PLEDGE_DNS)) == 0)
return pledge_fail(p, EPERM, PLEDGE_INET);
/* In use by some service libraries */
switch (level) {
}
}
- /* YP may do these requests */
- if (pledge & PLEDGE_YPACTIVE) {
- switch (level) {
- case IPPROTO_IP:
- switch (optname) {
- case IP_PORTRANGE:
- return (0);
- }
- break;
-
- case IPPROTO_IPV6:
- switch (optname) {
- case IPV6_PORTRANGE:
- return (0);
- }
- break;
- }
- }
-
if ((pledge & (PLEDGE_INET|PLEDGE_UNIX)) == 0)
return pledge_fail(p, EPERM, PLEDGE_INET);
switch (level) {
return (0);
case AF_INET:
case AF_INET6:
- if (ISSET(pledge, PLEDGE_INET) ||
- ISSET(pledge, PLEDGE_YPACTIVE))
+ if (ISSET(pledge, PLEDGE_INET))
return 0;
return pledge_fail(p, EPERM, PLEDGE_INET);
projects / openbsd / commitdiff