Commit Diff
- Commit:
311f6453d10c899931a0076229398c1f6749d165
- From:
- Omar Polo <op@omarpolo.com>
- Date:
- Message:
- enable pledging of the main process not particularly interesting (and to be fair also quite large) but it doesn't touch untrusted data: all it does is waiting for signals to either reload the config (and the socket) or terminate.
- Actions:
- Patch | Tree
--- galileo.c +++ galileo.c @@ -172,8 +172,9 @@ main(int argc, char **argv) log_info("startup"); - /* if (pledge("stdio rpath wpath cpath unix fattr sendfd", NULL) == -1) */ - /* fatal("pledge"); */ + if (pledge("stdio rpath wpath cpath chown unix fattr sendfd", NULL) + == -1) + fatal("pledge"); event_init();