Date: Mon, 8 Jun 2009 20:44:51 GMT From: Robert Watson <rwatson@FreeBSD.org> To: Perforce Change Reviews <perforce@freebsd.org> Subject: PERFORCE change 163830 for review Message-ID: <200906082044.n58KipIJ016722@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
http://perforce.freebsd.org/chv.cgi?CH=163830 Change 163830 by rwatson@rwatson_freebsd_capabilities on 2009/06/08 20:44:45 Supplement existing privilege separation in dhclient using capability mode. Affected files ... .. //depot/projects/trustedbsd/capabilities/src/sbin/dhclient/dhclient.c#4 edit Differences ... ==== //depot/projects/trustedbsd/capabilities/src/sbin/dhclient/dhclient.c#4 (text+ko) ==== @@ -61,6 +61,8 @@ #include <net80211/ieee80211_freebsd.h> +#include <sys/capability.h> + #ifndef _PATH_VAREMPTY #define _PATH_VAREMPTY "/var/empty" #endif @@ -438,6 +440,9 @@ if (immediate_daemon) go_daemon(); + if (cap_enter() != 0 && errno != ENOSYS) + error("cap_enter"); + ifi->client->state = S_INIT; state_reboot(ifi);
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200906082044.n58KipIJ016722>