blob: 13a2bf0d34e54b6fcf4922b29ee7c739b5735553 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
|
--- libexec/got-read-tree/got-read-tree.c.orig 2022-06-19 18:47:42 UTC
+++ libexec/got-read-tree/got-read-tree.c
@@ -14,6 +14,7 @@
* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
*/
+#include <sys/capsicum.h>
#include <sys/types.h>
#include <sys/queue.h>
#include <sys/uio.h>
@@ -113,6 +114,11 @@ main(int argc, char *argv[])
/* revoke access to most system calls */
if (pledge("stdio recvfd", NULL) == -1) {
err = got_error_from_errno("pledge");
+ got_privsep_send_error(&ibuf, err);
+ return 1;
+ }
+ if (cap_enter() == -1) {
+ err = got_error_from_errno("cap_enter");
got_privsep_send_error(&ibuf, err);
return 1;
}
|
