D40626.id124002.diff
No OneTemporary
Actions

Size

841 B

Referenced Files

None

Subscribers

None

D40626.id124002.diff
View Options

	diff --git a/sys/kern/kern_prot.c b/sys/kern/kern_prot.c
	--- a/sys/kern/kern_prot.c
	+++ b/sys/kern/kern_prot.c
	@@ -1421,9 +1421,9 @@
	int
	cr_canseejailproc(struct ucred u1, struct ucred u2)
	{
	- if (u1->cr_uid == 0)
	- return (0);
	- return (!see_jail_proc && u1->cr_prison != u2->cr_prison ? ESRCH : 0);
	+ return (see_jail_proc != 0 \|\| u1->cr_prison == u2->cr_prison \|\|
	+ priv_check_cred(u1, PRIV_SEEJAILPROC) == 0 ?
	+ 0 : ESRCH);
	}

	/*-
	diff --git a/sys/sys/priv.h b/sys/sys/priv.h
	--- a/sys/sys/priv.h
	+++ b/sys/sys/priv.h
	@@ -107,6 +107,7 @@
	#define PRIV_CRED_SETRESGID 58 /* setresgid. */
	#define PRIV_SEEOTHERGIDS 59 /* Exempt bsd.seeothergids. */
	#define PRIV_SEEOTHERUIDS 60 /* Exempt bsd.seeotheruids. */
	+#define PRIV_SEEJAILPROC 61 /* Exempt from bsd.see_jail_proc. */

	/*
	* Debugging privileges.