diff options
author | trasz <trasz@FreeBSD.org> | 2011-03-05 12:40:35 +0000 |
---|---|---|
committer | trasz <trasz@FreeBSD.org> | 2011-03-05 12:40:35 +0000 |
commit | 62f6a13e39978ed28ac30de98bfd177259f00de2 (patch) | |
tree | 8810ff86b50f45ade154877395ba9bd0885b1dea /sys/kern/kern_jail.c | |
parent | 154e7a9e1b3b5b34692d8c1e59704d1567bbc073 (diff) | |
download | FreeBSD-src-62f6a13e39978ed28ac30de98bfd177259f00de2.zip FreeBSD-src-62f6a13e39978ed28ac30de98bfd177259f00de2.tar.gz |
Add two new system calls, setloginclass(2) and getloginclass(2). This makes
it possible for the kernel to track login class the process is assigned to,
which is required for RCTL. This change also make setusercontext(3) call
setloginclass(2) and makes it possible to retrieve current login class using
id(1).
Reviewed by: kib (as part of a larger patch)
Diffstat (limited to 'sys/kern/kern_jail.c')
-rw-r--r-- | sys/kern/kern_jail.c | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/sys/kern/kern_jail.c b/sys/kern/kern_jail.c index 335cd31..ed98a77 100644 --- a/sys/kern/kern_jail.c +++ b/sys/kern/kern_jail.c @@ -3874,6 +3874,12 @@ prison_priv_check(struct ucred *cred, int priv) case PRIV_NETINET_GETCRED: return (0); + /* + * Allow jailed root to set loginclass. + */ + case PRIV_PROC_SETLOGINCLASS: + return (0); + default: /* * In all remaining cases, deny the privilege request. This |