Date: Fri, 15 May 2026 17:53:51 +0000 From: Mariusz Zaborski <oshogbo@FreeBSD.org> To: src-committers@FreeBSD.org, dev-commits-src-all@FreeBSD.org, dev-commits-src-main@FreeBSD.org Subject: git: 394f8ff461e6 - main - jail: replace PR_ALLOW_ALL_STATIC hex constant with symbolic OR Message-ID: <6a075daf.1fdc9.19f075a3@gitrepo.freebsd.org>
index | next in thread | raw e-mail
The branch main has been updated by oshogbo: URL: https://cgit.FreeBSD.org/src/commit/?id=394f8ff461e69e30c36570618bb24fd474856f6a commit 394f8ff461e69e30c36570618bb24fd474856f6a Author: Mariusz Zaborski <oshogbo@FreeBSD.org> AuthorDate: 2026-05-15 12:31:31 +0000 Commit: Mariusz Zaborski <oshogbo@FreeBSD.org> CommitDate: 2026-05-15 17:38:44 +0000 jail: replace PR_ALLOW_ALL_STATIC hex constant with symbolic OR No functional change intended. Reviewed by: kib Differential Revision: https://reviews.freebsd.org/D57014 --- sys/sys/jail.h | 10 +++++++++- 1 file changed, 9 insertions(+), 1 deletion(-) diff --git a/sys/sys/jail.h b/sys/sys/jail.h index 5ac4c5f9008d..c0ad53eec3cf 100644 --- a/sys/sys/jail.h +++ b/sys/sys/jail.h @@ -280,7 +280,15 @@ struct prison_racct { * build time. PR_ALLOW_ALL_STATIC should contain any bit above that we expect * to be used on the system, while PR_ALLOW_PRISON0 will be some subset of that. */ -#define PR_ALLOW_ALL_STATIC 0x00ff87ff +#define PR_ALLOW_ALL_STATIC \ + (PR_ALLOW_SET_HOSTNAME | PR_ALLOW_SYSVIPC | PR_ALLOW_RAW_SOCKETS | \ + PR_ALLOW_CHFLAGS | PR_ALLOW_MOUNT | PR_ALLOW_QUOTAS | \ + PR_ALLOW_SOCKET_AF | PR_ALLOW_MLOCK | PR_ALLOW_READ_MSGBUF | \ + PR_ALLOW_UNPRIV_DEBUG | PR_ALLOW_SUSER | PR_ALLOW_RESERVED_PORTS | \ + PR_ALLOW_KMEM_ACCESS | PR_ALLOW_NFSD | PR_ALLOW_EXTATTR | \ + PR_ALLOW_ADJTIME | PR_ALLOW_SETTIME | PR_ALLOW_ROUTING | \ + PR_ALLOW_UNPRIV_PARENT_TAMPER | PR_ALLOW_SETAUDIT) + #define PR_ALLOW_PRISON0 \ (PR_ALLOW_ALL_STATIC & ~(PR_ALLOW_UNPRIV_PARENT_TAMPER))home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6a075daf.1fdc9.19f075a3>