diff options
| author | Damien Miller <djm@mindrot.org> | 2024-10-14 05:49:25 +0200 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2024-10-14 05:49:25 +0200 |
| commit | f8edf08c258ee2918689872c4702302052729726 (patch) | |
| tree | 249f7c252cd59d32ca703d9e8bde784c2113604e | |
| parent | depend (diff) | |
| download | openssh-f8edf08c258ee2918689872c4702302052729726.tar.xz openssh-f8edf08c258ee2918689872c4702302052729726.zip | |
there's only one sandbox, move to a static global
| -rw-r--r-- | sshd-auth.c | 7 |
1 files changed, 5 insertions, 2 deletions
diff --git a/sshd-auth.c b/sshd-auth.c index 577470676..52bbd0b9a 100644 --- a/sshd-auth.c +++ b/sshd-auth.c @@ -163,6 +163,10 @@ static void do_ssh2_kex(struct ssh *); /* Unprivileged user */ struct passwd *privsep_pw = NULL; +#ifndef HAVE_PLEDGE +static struct ssh_sandbox *box; +#endif + /* XXX stub */ int mm_is_monitor(void) @@ -174,9 +178,8 @@ static void privsep_child_demote(void) { gid_t gidset[1]; -#ifndef HAVE_PLEDGE - struct ssh_sandbox *box = NULL; +#ifndef HAVE_PLEDGE if ((box = ssh_sandbox_init(pmonitor)) == NULL) fatal_f("ssh_sandbox_init failed"); #endif |