From e3fb0536deccd00ca39da764b62e8f245d684a41 Mon Sep 17 00:00:00 2001
From: arr <arr@FreeBSD.org>
Date: Tue, 2 Apr 2002 17:43:17 +0000
Subject: - Add a mutex to lock the global securelevel value. - Make use of
 MTX_SYSINIT() as the means to initialize our mutex lock.

---
 sys/kern/kern_mib.c | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

(limited to 'sys')

diff --git a/sys/kern/kern_mib.c b/sys/kern/kern_mib.c
index 662fd1b..ebcba94 100644
--- a/sys/kern/kern_mib.c
+++ b/sys/kern/kern_mib.c
@@ -204,6 +204,10 @@ SYSCTL_INT(_regression, OID_AUTO, securelevel_nonmonotonic, CTLFLAG_RW,
 #endif
 
 int securelevel = -1;
+struct mtx securelevel_mtx;
+
+MTX_SYSINIT(securelevel_lock, &securelevel_mtx, "securelevel mutex lock",
+    MTX_DEF);
 
 static int
 sysctl_kern_securelvl(SYSCTL_HANDLER_ARGS)
@@ -240,10 +244,14 @@ sysctl_kern_securelvl(SYSCTL_HANDLER_ARGS)
 		pr->pr_securelevel = level;
 		mtx_unlock(&pr->pr_mtx);
 	} else {
+		mtx_lock(&securelevel_mtx);
 		if (!regression_securelevel_nonmonotonic &&
-		    (level < securelevel))
+		    (level < securelevel)) {
+			mtx_unlock(&securelevel_mtx);
 			return (EPERM);
+		}
 		securelevel = level;
+		mtx_unlock(&securelevel_mtx);
 	}
 	return (error);
 }
-- 
cgit v1.1