diff options
author | Damien Miller <djm@mindrot.org> | 2016-01-08 14:24:56 +1100 |
---|---|---|
committer | Damien Miller <djm@mindrot.org> | 2016-01-08 14:29:12 +1100 |
commit | 4626cbaf78767fc8e9c86dd04785386c59ae0839 (patch) | |
tree | 449a777d8781a7f88724cbec9a4717f5b3fe4ec6 /mux.c | |
parent | 422d1b3ee977ff4c724b597fb2e437d38fc8de9d (diff) |
Support Illumos/Solaris fine-grained privileges
Includes a pre-auth privsep sandbox and several pledge()
emulations. bz#2511, patch by Alex Wilson.
ok dtucker@
Diffstat (limited to 'mux.c')
-rw-r--r-- | mux.c | 2 |
1 files changed, 2 insertions, 0 deletions
@@ -1891,6 +1891,7 @@ mux_client_request_session(int fd) | |||
1891 | 1891 | ||
1892 | if (pledge("stdio proc tty", NULL) == -1) | 1892 | if (pledge("stdio proc tty", NULL) == -1) |
1893 | fatal("%s pledge(): %s", __func__, strerror(errno)); | 1893 | fatal("%s pledge(): %s", __func__, strerror(errno)); |
1894 | platform_pledge_mux(); | ||
1894 | 1895 | ||
1895 | signal(SIGHUP, control_client_sighandler); | 1896 | signal(SIGHUP, control_client_sighandler); |
1896 | signal(SIGINT, control_client_sighandler); | 1897 | signal(SIGINT, control_client_sighandler); |
@@ -2001,6 +2002,7 @@ mux_client_request_stdio_fwd(int fd) | |||
2001 | 2002 | ||
2002 | if (pledge("stdio proc tty", NULL) == -1) | 2003 | if (pledge("stdio proc tty", NULL) == -1) |
2003 | fatal("%s pledge(): %s", __func__, strerror(errno)); | 2004 | fatal("%s pledge(): %s", __func__, strerror(errno)); |
2005 | platform_pledge_mux(); | ||
2004 | 2006 | ||
2005 | debug3("%s: stdio forward request sent", __func__); | 2007 | debug3("%s: stdio forward request sent", __func__); |
2006 | 2008 | ||