Diffusion FreeBSD src repository 0dafeb5bc874

New cr_bsd_visible(): Whether BSD policies deny seeing subjects/objects
0dafeb5bc874
Actions

Description

New cr_bsd_visible(): Whether BSD policies deny seeing subjects/objects

This is a new helper function that leverages existing code: It calls
successively cr_canseeotheruids(), cr_canseeothergids() and
cr_canseejailproc() (as long as the previous didn't deny access). Will
be used in a subsequent commit.

Reviewed by: mhorne
Sponsored by: Kumacom SAS
Differential Revision: https://reviews.freebsd.org/D40627

(cherry picked from commit e4a7b4f99cfd4931468c0866da4ae8b49cf5badb)

Approved by: markj (mentor)

Details

Provenance

olce	Authored on Aug 17 2023, 11:54 PM

Reviewer

mhorne

Differential Revision

D40627: New cr_bsd_visible(): Whether BSD policies deny seeing subjects/objects

Parents

rGd40c6fa7db7d: cr_canseejailproc(): New privilege, no direct check for UID 0

Branches

Unknown

Tags

Unknown

Event Timeline

olce committed rG0dafeb5bc874: New cr_bsd_visible(): Whether BSD policies deny seeing subjects/objects (authored by olce).Dec 21 2023, 1:36 PM

olce added an edge: D40627: New cr_bsd_visible(): Whether BSD policies deny seeing subjects/objects.Dec 21 2023, 1:45 PM

Changes (2)

Path

Size

sys/

kern/

kern_prot.c

sys/

proc.h

rG0dafeb5bc874

View Options

sys/kern/kern_prot.c