diff options
| author | Kristaps Dzonsons <kristaps@bsd.lv> | 2016-07-12 05:18:38 +0000 |
|---|---|---|
| committer | Kristaps Dzonsons <kristaps@bsd.lv> | 2016-07-12 05:18:38 +0000 |
| commit | 64b286c7df62ada31dfaeaaf812bce0a0a217325 (patch) | |
| tree | 3ca968b1830a5a9a2feb52d20eb31486642ce175 /mandocdb.c | |
| parent | 7c248f50d315de6e082833a448c2ce9d69b6773b (diff) | |
| download | mandoc-64b286c7df62ada31dfaeaaf812bce0a0a217325.tar.gz | |
Add support for Mac OS X's sandbox_init(3) sandbox functionality, which
is marked as DEPRECATED in OS X after 2011 or so, but has not been
removed and has no replacement.
ok schwarze@
Diffstat (limited to 'mandocdb.c')
| -rw-r--r-- | mandocdb.c | 10 |
1 files changed, 10 insertions, 0 deletions
@@ -34,6 +34,9 @@ #include "compat_fts.h" #endif #include <limits.h> +#if HAVE_SANDBOX_INIT +#include <sandbox.h> +#endif #include <stddef.h> #include <stdio.h> #include <stdint.h> @@ -345,6 +348,13 @@ mandocdb(int argc, char *argv[]) } #endif +#if HAVE_SANDBOX_INIT + if (sandbox_init(kSBXProfileNoInternet, SANDBOX_NAMED, NULL) == -1) { + warnx("sandbox_init"); + return (int)MANDOCLEVEL_SYSERR; + } +#endif + memset(&conf, 0, sizeof(conf)); memset(stmts, 0, STMT__MAX * sizeof(sqlite3_stmt *)); |