Date: Mon, 30 Aug 2010 16:30:18 +0000 (UTC) From: Jaakko Heinonen <jh@FreeBSD.org> To: cvs-src-old@freebsd.org Subject: cvs commit: src/sys/cddl/contrib/opensolaris/uts/common/fs/zfs zfs_vnops.c src/sys/kern kern_exec.c subr_acl_nfs4.c subr_acl_posix1e.c vfs_subr.c Message-ID: <201008301630.o7UGUcl7097345@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
jh 2010-08-30 16:30:18 UTC
FreeBSD src repository
Modified files:
sys/cddl/contrib/opensolaris/uts/common/fs/zfs zfs_vnops.c
sys/kern kern_exec.c subr_acl_nfs4.c
subr_acl_posix1e.c vfs_subr.c
Log:
SVN rev 212002 on 2010-08-30 16:30:18Z by jh
execve(2) has a special check for file permissions: a file must have at
least one execute bit set, otherwise execve(2) will return EACCES even
for an user with PRIV_VFS_EXEC privilege.
Add the check also to vaccess(9), vaccess_acl_nfs4(9) and
vaccess_acl_posix1e(9). This makes access(2) to better agree with
execve(2). Because ZFS doesn't use vaccess(9) for VEXEC, add the check
to zfs_freebsd_access() too. There may be other file systems which are
not using vaccess*() functions and need to be handled separately.
PR: kern/125009
Reviewed by: bde, trasz
Approved by: pjd (ZFS part)
Revision Changes Path
1.69 +11 -4 src/sys/cddl/contrib/opensolaris/uts/common/fs/zfs/zfs_vnops.c
1.358 +8 -8 src/sys/kern/kern_exec.c
1.7 +20 -2 src/sys/kern/subr_acl_nfs4.c
1.59 +8 -2 src/sys/kern/subr_acl_posix1e.c
1.791 +6 -0 src/sys/kern/vfs_subr.c
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201008301630.o7UGUcl7097345>