From 3b6a07388e622de315a8a156d8fe65dd4fb6fde7 Mon Sep 17 00:00:00 2001 From: deraadt Date: Sun, 18 Oct 2015 03:54:22 +0000 Subject: [PATCH] Add "dns" to the pledges. Previously these worked because of "inet", alas "dns" is now a mandatory statement if you want to do dns! --- usr.bin/finger/finger.c | 4 ++-- usr.bin/tftp/main.c | 4 ++-- usr.sbin/tftpd/tftpd.c | 4 ++-- 3 files changed, 6 insertions(+), 6 deletions(-) diff --git a/usr.bin/finger/finger.c b/usr.bin/finger/finger.c index cd06cce8599..5d18467d600 100644 --- a/usr.bin/finger/finger.c +++ b/usr.bin/finger/finger.c @@ -1,4 +1,4 @@ -/* $OpenBSD: finger.c,v 1.23 2015/10/10 20:35:00 deraadt Exp $ */ +/* $OpenBSD: finger.c,v 1.24 2015/10/18 03:54:22 deraadt Exp $ */ /* * Copyright (c) 1989 The Regents of the University of California. @@ -126,7 +126,7 @@ main(int argc, char *argv[]) mflag++; } - if (pledge("stdio rpath getpw inet", NULL) == -1) + if (pledge("stdio rpath getpw dns inet", NULL) == -1) err(1, "pledge"); (void)time(&now); diff --git a/usr.bin/tftp/main.c b/usr.bin/tftp/main.c index 37ea7d565f8..eaeaefdac3e 100644 --- a/usr.bin/tftp/main.c +++ b/usr.bin/tftp/main.c @@ -1,4 +1,4 @@ -/* $OpenBSD: main.c,v 1.37 2015/10/09 01:37:09 deraadt Exp $ */ +/* $OpenBSD: main.c,v 1.38 2015/10/18 03:54:22 deraadt Exp $ */ /* $NetBSD: main.c,v 1.6 1995/05/21 16:54:10 mycroft Exp $ */ /* @@ -171,7 +171,7 @@ main(int argc, char *argv[]) { f = -1; - if (pledge("stdio inet rpath wpath cpath", NULL) == -1) + if (pledge("stdio rpath wpath cpath dns inet", NULL) == -1) err(1, "pledge"); /* set default transfer mode */ diff --git a/usr.sbin/tftpd/tftpd.c b/usr.sbin/tftpd/tftpd.c index 8c7b518cf5a..554167c2352 100644 --- a/usr.sbin/tftpd/tftpd.c +++ b/usr.sbin/tftpd/tftpd.c @@ -1,4 +1,4 @@ -/* $OpenBSD: tftpd.c,v 1.31 2015/10/10 22:21:39 deraadt Exp $ */ +/* $OpenBSD: tftpd.c,v 1.32 2015/10/18 03:54:22 deraadt Exp $ */ /* * Copyright (c) 2012 David Gwynne @@ -358,7 +358,7 @@ main(int argc, char *argv[]) if (!debug && daemon(1, 0) == -1) err(1, "unable to daemonize"); - if (pledge("stdio rpath wpath cpath fattr inet", NULL) == -1) + if (pledge("stdio rpath wpath cpath fattr dns inet", NULL) == -1) err(1, "pledge"); event_init(); -- 2.20.1