From 91922f370c9c01a1dc9d3ad9659a05bfe03fa550 Mon Sep 17 00:00:00 2001
From: deraadt <deraadt@openbsd.org>
Date: Mon, 12 Oct 2015 21:43:20 +0000
Subject: [PATCH] Remove the "cmsg" attribute, as promised.  Use "sendfd" or
 "recvfd", depending on what you need.  inet/inet6 cmsg's come through
 unmolested -- that is something to consider later.

---
 sys/kern/kern_pledge.c | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/sys/kern/kern_pledge.c b/sys/kern/kern_pledge.c
index cf6dbccc907..3a07c340f36 100644
--- a/sys/kern/kern_pledge.c
+++ b/sys/kern/kern_pledge.c
@@ -1,4 +1,4 @@
-/*	$OpenBSD: kern_pledge.c,v 1.15 2015/10/11 16:19:48 semarie Exp $	*/
+/*	$OpenBSD: kern_pledge.c,v 1.16 2015/10/12 21:43:20 deraadt Exp $	*/
 
 /*
  * Copyright (c) 2015 Nicholas Marriott <nicm@openbsd.org>
@@ -237,7 +237,6 @@ static const struct {
 	{ "unix",		PLEDGE_SELF | PLEDGE_RW | PLEDGE_UNIX },
 	{ "dns",		PLEDGE_SELF | PLEDGE_MALLOC | PLEDGE_DNSPATH },
 	{ "getpw",		PLEDGE_SELF | PLEDGE_MALLOC | PLEDGE_RW | PLEDGE_GETPW },
-/*X*/	{ "cmsg",		PLEDGE_UNIX | PLEDGE_INET | PLEDGE_SENDFD | PLEDGE_RECVFD },
 	{ "sendfd",		PLEDGE_RW | PLEDGE_SENDFD },
 	{ "recvfd",		PLEDGE_RW | PLEDGE_RECVFD },
 	{ "ioctl",		PLEDGE_IOCTL },
-- 
2.20.1