From b5b5adfe6d468d4efad0623e4e2d12fd7ac25a85 Mon Sep 17 00:00:00 2001
From: deraadt <deraadt@openbsd.org>
Date: Sun, 11 Oct 2015 16:01:06 +0000
Subject: [PATCH] sigaltstack is directly used by setjmp on some architectures.
 it only refers to the process itself.  pledge should allow it.

---
 sys/kern/kern_pledge.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/sys/kern/kern_pledge.c b/sys/kern/kern_pledge.c
index e003c80f1fa..037ec1b4e09 100644
--- a/sys/kern/kern_pledge.c
+++ b/sys/kern/kern_pledge.c
@@ -1,4 +1,4 @@
-/*	$OpenBSD: kern_pledge.c,v 1.13 2015/10/11 15:40:48 deraadt Exp $	*/
+/*	$OpenBSD: kern_pledge.c,v 1.14 2015/10/11 16:01:06 deraadt Exp $	*/
 
 /*
  * Copyright (c) 2015 Nicholas Marriott <nicm@openbsd.org>
@@ -89,6 +89,7 @@ const u_int pledge_syscalls[SYS_MAXSYSCALL] = {
 
 	[SYS_sendsyslog] = PLEDGE_SELF,
 	[SYS_nanosleep] = PLEDGE_SELF,
+	[SYS_sigaltstack] = PLEDGE_SELF,
 	[SYS_sigprocmask] = PLEDGE_SELF,
 	[SYS_sigsuspend] = PLEDGE_SELF,
 	[SYS_sigaction] = PLEDGE_SELF,
-- 
2.20.1