HomeFreeBSD

Add a new sysctl, "security.jail.chflags_allowed", which controls the
rS141543Unpublished

Unpublished Commit ยท Learn More

No further details are available.

Description

Add a new sysctl, "security.jail.chflags_allowed", which controls the
behaviour of chflags within a jail. If set to 0 (the default), then a
jailed root user is treated as an unprivileged user; if set to 1, then
a jailed root user is treated the same as an unjailed root user.

This is necessary to allow "make installworld" to work inside a jail,
since it attempts to manipulate the system immutable flag on certain
files.

Discussed with: csjp, rwatson
MFC after: 2 weeks

Details

Provenance
cpercivaAuthored on
Parents
rS141542: Split the vop_vector for ffs1 and ffs2, this is mostly for the different
Branches
Unknown
Tags
Unknown

Event Timeline