commit 311f6453d10c899931a0076229398c1f6749d165
from: Omar Polo <op@omarpolo.com>
date: Fri Apr 14 09:35:13 2023 UTC

enable pledging of the main process

not particularly interesting (and to be fair also quite large) but
it doesn't touch untrusted data: all it does is waiting for signals
to either reload the config (and the socket) or terminate.

commit - 92f1d5fbc35371b3f7f72b3c6e00fbc51f089e06
commit + 311f6453d10c899931a0076229398c1f6749d165
blob - 75b0ce2ef6f49c5d50dc77d244adeaec1adfc0e6
blob + 471e1ed033b15b63c8ef292db48cc8eec26eec28
--- galileo.c
+++ galileo.c
@@ -172,8 +172,9 @@ main(int argc, char **argv)
 
 	log_info("startup");
 
-	/* if (pledge("stdio rpath wpath cpath unix fattr sendfd", NULL) == -1) */
-		/* fatal("pledge"); */
+	if (pledge("stdio rpath wpath cpath chown unix fattr sendfd", NULL)
+	    == -1)
+		fatal("pledge");
 
 	event_init();