Changeset View
Changeset View
Standalone View
Standalone View
sys/kern/kern_priv.c
Show First 20 Lines • Show All 188 Lines • ▼ Show 20 Lines | if (suser_enabled) { | ||||
case PRIV_MAXFILES: | case PRIV_MAXFILES: | ||||
case PRIV_MAXPROC: | case PRIV_MAXPROC: | ||||
case PRIV_PROC_LIMIT: | case PRIV_PROC_LIMIT: | ||||
if (cred->cr_ruid == 0) { | if (cred->cr_ruid == 0) { | ||||
error = 0; | error = 0; | ||||
goto out; | goto out; | ||||
} | } | ||||
break; | break; | ||||
case PRIV_VFS_READ_DIR: | |||||
/* | |||||
* Allow PRIV_VFS_READ_DIR for root if we're not in a | |||||
* jail, otherwise deny unless a MAC policy grants it. | |||||
*/ | |||||
if (jailed(cred)) | |||||
break; | |||||
default: | default: | ||||
if (cred->cr_uid == 0) { | if (cred->cr_uid == 0) { | ||||
error = 0; | error = 0; | ||||
goto out; | goto out; | ||||
} | } | ||||
break; | break; | ||||
} | } | ||||
} | } | ||||
▲ Show 20 Lines • Show All 61 Lines • Show Last 20 Lines |