On Thu, Jan 04, 2018 at 03:02:23AM -0600, William Orr wrote:
> I was working on an application that uses pledge, and without diving
> into the source, I found it difficult to figure out what sysctl's are
> permitted at different pledge levels.
> This documents the set of different sysctl ops that are allowed at
> different pledge levels, and adds some additional documentation around
> ioctl's as well.
Documenting pledge(2) is complex: it should document the expected
behaviour, and not the implementation details.