pledge "stdio rpath wpath cpath fattr inet" after chroot and such

appears to be good enough for the main loop processing.

diff --git a/usr.sbin/tftpd/tftpd.c b/usr.sbin/tftpd/tftpd.c
index b3552e3..8c7b518 100644 (file)
--- a/usr.sbin/tftpd/tftpd.c
+++ b/usr.sbin/tftpd/tftpd.c
@@ -1,4 +1,4 @@
-/*     $OpenBSD: tftpd.c,v 1.30 2015/10/06 06:03:11 deraadt Exp $      */
+/*     $OpenBSD: tftpd.c,v 1.31 2015/10/10 22:21:39 deraadt Exp $      */
 
 /*
  * Copyright (c) 2012 David Gwynne <dlg@uq.edu.au>
@@ -358,6 +358,9 @@ main(int argc, char *argv[])
        if (!debug && daemon(1, 0) == -1)
                err(1, "unable to daemonize");
 
+       if (pledge("stdio rpath wpath cpath fattr inet", NULL) == -1)
+               err(1, "pledge");
+
        event_init();
 
        if (rewrite != NULL)