From owner-cvs-all  Fri Nov  2  8:41:12 2001
Delivered-To: cvs-all@freebsd.org
Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21])
	by hub.freebsd.org (Postfix) with ESMTP
	id 1C76C37B403; Fri,  2 Nov 2001 08:41:07 -0800 (PST)
Received: (from rwatson@localhost)
	by freefall.freebsd.org (8.11.4/8.11.4) id fA2Gf7d94698;
	Fri, 2 Nov 2001 08:41:07 -0800 (PST)
	(envelope-from rwatson)
Message-Id: <200111021641.fA2Gf7d94698@freefall.freebsd.org>
From: Robert Watson <rwatson@FreeBSD.org>
Date: Fri, 2 Nov 2001 08:41:07 -0800 (PST)
To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org
Subject: cvs commit: src/sys/kern kern_prot.c
X-FreeBSD-CVS-Branch: HEAD
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
List-ID: <cvs-all.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20cvs-all>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20cvs-all>
X-Loop: FreeBSD.ORG

rwatson     2001/11/02 08:41:07 PST

  Modified files:
    sys/kern             kern_prot.c 
  Log:
  o Add a comment to p_candebug() noting that the P_INEXEC check should
    really be moved elsewhere: p_candebug() encapsulates the security
    policy decision, whereas the P_INEXEC check has to do with "correctness"
    regarding race conditions, rather than security policy.
  
    Example: even if no security protections were enforced (the "uids are
    advisory" model), removing P_INEXEC could result in incorrect operation
    due to races on credential evaluation and modification during execve().
  
  Obtained from:	TrustedBSD Project
  
  Revision  Changes    Path
  1.119     +6 -1      src/sys/kern/kern_prot.c

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message