Date: Mon, 4 Jul 2005 11:07:40 GMT From: Robert Watson <rwatson@FreeBSD.org> To: Perforce Change Reviews <perforce@freebsd.org> Subject: PERFORCE change 79534 for review Message-ID: <200507041107.j64B7edd096997@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
http://perforce.freebsd.org/chv.cgi?CH=79534 Change 79534 by rwatson@rwatson_paprika on 2005/07/04 11:07:18 Convert suser() checks associated with retrieving file system id/ handle data to CAP_SYS_ADMIN. This may be the closest match -- another alternative might be CAP_SYS_RAWIO. Affected files ... .. //depot/projects/trustedbsd/sebsd/sys/kern/vfs_syscalls.c#16 edit Differences ... ==== //depot/projects/trustedbsd/sebsd/sys/kern/vfs_syscalls.c#16 (text+ko) ==== @@ -568,7 +568,7 @@ continue; } sp->f_flags = mp->mnt_flag & MNT_VISFLAGMASK; - if (suser(td)) { + if (cap_check(td, CAP_SYS_ADMIN)) { bcopy(sp, &sb, sizeof(sb)); sb.f_fsid.val[0] = sb.f_fsid.val[1] = 0; sp = &sb; @@ -3927,7 +3927,7 @@ int vfslocked; int error; - error = suser(td); + error = cap_check(td, CAP_SYS_ADMIN); if (error) return (error); NDINIT(&nd, LOOKUP, NOFOLLOW | LOCKLEAF | MPSAFE,
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200507041107.j64B7edd096997>