Kernel: Add dedicated "ptrace" pledge promise

The vast majority of programs don't ever need to use sys$ptrace(), and it seems like a high-value system call to prevent a compromised process from using. This patch moves sys$ptrace() from the "proc" promise to its own, new "ptrace" promise and updates the affected apps.
author: Andreas Kling <kling@serenityos.org> 2021-01-11 22:30:57 +0100
committer: Andreas Kling <kling@serenityos.org> 2021-01-11 22:32:59 +0100
commit: f03800cee39c5cbe06c2b68aeb9c9cd558231c3b (patch)
tree: 5c5625b83840f3f03677056a1d8a231f501a4e84 /Base
parent: 127ce32d9e235622b708f5a7a7be9fc57bef2c39 (diff)
download: serenity-f03800cee39c5cbe06c2b68aeb9c9cd558231c3b.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/Base/usr/share/man/man2/pledge.md b/Base/usr/share/man/man2/pledge.md
index cd7911c812..1a1a5a4aaf 100644
--- a/Base/usr/share/man/man2/pledge.md
+++ b/Base/usr/share/man/man2/pledge.md
@@ -53,6 +53,7 @@ If the process later attempts to use any system functionality it has previously
 * `sigaction`: Change signal handlers and dispositions (\*)
 * `sendfd`: Send file descriptors over a local socket
 * `recvfd`: Receive file descriptors over a local socket
+* `ptrace`: The [`ptrace(2)`](ptrace.md) syscall (\*)
 
 Promises marked with an asterisk (\*) are SerenityOS specific extensions not supported by the original OpenBSD `pledge()`.
author	Andreas Kling <kling@serenityos.org>	2021-01-11 22:30:57 +0100
committer	Andreas Kling <kling@serenityos.org>	2021-01-11 22:32:59 +0100
commit	f03800cee39c5cbe06c2b68aeb9c9cd558231c3b (patch)
tree	5c5625b83840f3f03677056a1d8a231f501a4e84 /Base
parent	127ce32d9e235622b708f5a7a7be9fc57bef2c39 (diff)
download	serenity-f03800cee39c5cbe06c2b68aeb9c9cd558231c3b.zip