there's only one sandbox, move to a static global

2025-02-21 16:26:52 +00:00 · 2024-10-14 14:49:25 +11:00 · 2024-10-14 14:49:25 +11:00 · f8edf08c25
commit f8edf08c25
parent 4482f0042b
1 changed files with 5 additions and 2 deletions
--- a/sshd-auth.c
+++ b/sshd-auth.c
@ -163,6 +163,10 @@ static void do_ssh2_kex(struct ssh *);
 /* Unprivileged user */
 struct passwd *privsep_pw = NULL;

+#ifndef HAVE_PLEDGE
+static struct ssh_sandbox *box;
+#endif
+
 /* XXX stub */
 int
 mm_is_monitor(void)
@ -174,9 +178,8 @@ static void
 privsep_child_demote(void)
 {
 	gid_t gidset[1];
-#ifndef HAVE_PLEDGE
-	struct ssh_sandbox *box = NULL;

+#ifndef HAVE_PLEDGE
 	if ((box = ssh_sandbox_init(pmonitor)) == NULL)
 		fatal_f("ssh_sandbox_init failed");
 #endif