Diffusion FreeBSD src repository 3ad322db8902

New cr_bsd_visible(): Whether BSD policies deny seeing subjects/objects
3ad322db8902
Actions

Description

New cr_bsd_visible(): Whether BSD policies deny seeing subjects/objects

This is a new helper function that leverages existing code: It calls
successively cr_canseeotheruids(), cr_canseeothergids() and
cr_canseejailproc() (as long as the previous didn't deny access). Will
be used in a subsequent commit.

Reviewed by: mhorne
MFC after: 2 weeks
Sponsored by: Kumacom SAS
Differential Revision: https://reviews.freebsd.org/D40627

(cherry picked from commit e4a7b4f99cfd4931468c0866da4ae8b49cf5badb)

Details

Provenance

olce	Authored on Aug 17 2023, 11:54 PM
mhorne	Committed on Oct 17 2023, 7:42 PM

Reviewer

mhorne

Differential Revision

D40627: New cr_bsd_visible(): Whether BSD policies deny seeing subjects/objects

Parents

rG9dad3ed1d15c: cr_canseejailproc(): New privilege, no direct check for UID 0

Branches

Unknown

Tags

Unknown

Event Timeline

mhorne committed rG3ad322db8902: New cr_bsd_visible(): Whether BSD policies deny seeing subjects/objects (authored by olce).Oct 17 2023, 7:42 PM

mhorne added an edge: D40627: New cr_bsd_visible(): Whether BSD policies deny seeing subjects/objects.

Changes (2)

Path

Size

sys/

kern/

kern_prot.c

sys/

proc.h

rG3ad322db8902

View Options

sys/kern/kern_prot.c