Date: Tue, 29 May 2007 15:54:23 GMT From: Robert Watson <rwatson@FreeBSD.org> To: Perforce Change Reviews <perforce@freebsd.org> Subject: PERFORCE change 120567 for review Message-ID: <200705291554.l4TFsNVK038453@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
http://perforce.freebsd.org/chv.cgi?CH=120567 Change 120567 by rwatson@rwatson_zoo on 2007/05/29 15:53:45 Move suser(9) compatibility APIs to priv.h; eliminate SUSER_ALLOWJAIL as that knowledge is now handled internally to the privilege check facility. This doesn't compile yet. Affected files ... .. //depot/projects/trustedbsd/priv/sys/sys/priv.h#15 edit .. //depot/projects/trustedbsd/priv/sys/sys/systm.h#13 edit Differences ... ==== //depot/projects/trustedbsd/priv/sys/sys/priv.h#15 (text+ko) ==== @@ -466,6 +466,18 @@ struct ucred; int priv_check(struct thread *td, int priv); int priv_check_cred(struct ucred *cred, int priv, int flags); + +/* + * Continue to support external modules that rely on suser(9) -- for now. + */ +int suser(struct thread *td); +int suser_cred(struct ucred *cred, int flags); + +/* + * For historical reasons, flags to priv_check_cred() retain the SUSER_ + * prefix. + */ +#define SUSER_RUID 2 #endif #endif /* !_SYS_PRIV_H_ */ ==== //depot/projects/trustedbsd/priv/sys/sys/systm.h#13 (text+ko) ==== @@ -236,12 +236,6 @@ void cpu_startprofclock(void); void cpu_stopprofclock(void); -/* flags for suser() and suser_cred() */ -#define SUSER_ALLOWJAIL 1 -#define SUSER_RUID 2 - -int suser(struct thread *td); -int suser_cred(struct ucred *cred, int flags); int cr_cansee(struct ucred *u1, struct ucred *u2); int cr_canseesocket(struct ucred *cred, struct socket *so);
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200705291554.l4TFsNVK038453>