Diffusion FreeBSD src repository 61b07f8aa528

MAC/do: allow to call setuid if real user id is 0
61b07f8aa528
Actions

Tags

None

Referenced Files

None

Subscribers

None

Description

MAC/do: allow to call setuid if real user id is 0

This fixed sshd not able to call restore_uid when MAC/do policy is
loaded

Details

Provenance

bapt	Authored on May 23 2024, 10:09 AM

Parents

rG56a8aca83ab5: Stop treating size 0 as unknown size in vnode_create_vobject().

Branches

Unknown

Tags

Unknown

Event Timeline

bapt committed rG61b07f8aa528: MAC/do: allow to call setuid if real user id is 0 (authored by bapt).May 23 2024, 10:09 AM

Changes (1)

Path

Size

sys/

security/

mac_do/

rG61b07f8aa528

sys/security/mac_do/mac_do.c

Loading...