Change Details

Use priv_check() instead of explicitly testing for UID 0 (the former has been the rule for almost 20 years). As a side effect, cr_canseejailproc() now abides by the 'security.bsd.suser_enabled' sysctl (FWIW). While here, comply to style(9) and decrease code verbosity.

Use priv_check_cred() instead of explicitly testing for UID 0 (the former has been the rule for almost 20 years). As a side effect, cr_canseejailproc() now abides by the 'security.bsd.suser_enabled' sysctl and MAC policies.

Use priv_check_cred() instead of explicitly testing for UID 0 (the former has been been the rule for almost 20 years). As a side effect, cr_canseejailproc() now abides abides by the 'security.bsd.suser_enabled' sysctl (FWIW). While here, comply to style(9) and decrease code verbosityMAC policies.