nologin(8): unveil(2)

Tue, 14 Aug 2018 08:21:01 -0700 

nologin(8) caught my eye for a different reason, but before doing
anything else we ought to unveil(2) it.

ok?

--
Scott Cheloha

Index: sbin/nologin/nologin.c
===================================================================
RCS file: /cvs/src/sbin/nologin/nologin.c,v
retrieving revision 1.6
diff -u -p -r1.6 nologin.c
--- sbin/nologin/nologin.c      13 Oct 2015 07:10:38 -0000      1.6
+++ sbin/nologin/nologin.c      14 Aug 2018 14:31:57 -0000
@@ -46,6 +46,8 @@ main(int argc, char *argv[])
        ssize_t nrd;
        char nbuf[BUFSIZ];
 
+       if (unveil(_PATH_NOLOGIN_TXT, "r") == -1)
+               err(1, "unveil");
        if (pledge("stdio rpath", NULL) == -1)
                err(1, "pledge");

Reply via email to