Diffusion FreeBSD src repository 0fe74ae624fc

jail: Consistently handle the pr_allow bitmask
0fe74ae624fc
Actions

Description

jail: Consistently handle the pr_allow bitmask

Return a boolean (i.e. 0 or 1) from prison_allow, instead of the flag
value itself, which is what sysctl expects.

Add prison_set_allow(), which can set or clear a permission bit, and
propagates cleared bits down to child jails.

Use prison_allow() and prison_set_allow() in the various jail.allow.*
sysctls, and others that depend on thoe permissions.

Add locking around checking both pr_allow and pr_enforce_statfs in
prison_priv_check().

Details

Provenance

jamie

Authored on Dec 27 2020, 4:25 AM

Parents

rG43c273489523: jail: Make comments on struct prison locking more precise

Branches

Unknown

Tags

Unknown

Event Timeline

jamie committed rG0fe74ae624fc: jail: Consistently handle the pr_allow bitmask (authored by jamie).Dec 27 2020, 4:25 AM

Changes (5)

Path

Size

sys/

kern/

sys/

rG0fe74ae624fc

View Options

sys/kern/kern_jail.c

View Options

sys/kern/kern_mib.c

View Options

sys/kern/kern_priv.c

View Options

sys/kern/kern_prot.c

View Options

jail: Consistently handle the pr_allow bitmask0fe74ae624fcActions

Description

Details

Event Timeline

Changes (5)

rG0fe74ae624fc

sys/kern/kern_jail.c

sys/kern/kern_mib.c

sys/kern/kern_priv.c

sys/kern/kern_prot.c

sys/sys/jail.h

jail: Consistently handle the pr_allow bitmask
0fe74ae624fc
Actions