From owner-freebsd-security@FreeBSD.ORG  Thu Aug 22 19:15:30 2013
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTP id B4D2DDA7;
 Thu, 22 Aug 2013 19:15:30 +0000 (UTC)
 (envelope-from delphij@delphij.net)
Received: from anubis.delphij.net (anubis.delphij.net
 [IPv6:2001:470:1:117::25])
 (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by mx1.freebsd.org (Postfix) with ESMTPS id 8D528273F;
 Thu, 22 Aug 2013 19:15:30 +0000 (UTC)
Received: from zeta.ixsystems.com (unknown [69.198.165.132])
 (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by anubis.delphij.net (Postfix) with ESMTPSA id 99B29547E;
 Thu, 22 Aug 2013 12:15:29 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=delphij.net; s=anubis;
 t=1377198929; bh=OajHApMX4BVAhfA4OimECffsW8TwD9BS3/oohMwCpeA=;
 h=Date:From:Reply-To:To:CC:Subject;
 b=zdRmml/c+2gSp2XwYs3lfSzCJED+r9WelwYbBaX58F1/5WrfXW2ygH1QZh79c2ncT
 rpRaaqmE02MFkw6I/peKd7sJZYbIOVSrqcfH4Z4V4bdmufuDOqYEF8jFjtnclQNaCI
 4hoNW9W6iowOY+WC+LNr2WY6qlivvMBDHJBNThno=
Message-ID: <52166351.4030106@delphij.net>
Date: Thu, 22 Aug 2013 12:15:29 -0700
From: Xin Li <delphij@delphij.net>
Organization: The FreeBSD Project
MIME-Version: 1.0
To: "freebsd-security@freebsd.org" <freebsd-security@freebsd.org>
Subject: Allowing tmpfs to be mounted in jail?
X-Enigmail-Version: 1.5.1
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Cc: freebsd-fs@FreeBSD.ORG, kib@freebsd.org
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
Reply-To: d@delphij.net
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 22 Aug 2013 19:15:30 -0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi,

Do anybody have concerns if I would commit this?

Index: sys/fs/tmpfs/tmpfs_vfsops.c
===================================================================
- --- sys/fs/tmpfs/tmpfs_vfsops.c	(revision 254663)
+++ sys/fs/tmpfs/tmpfs_vfsops.c	(working copy)
@@ -420,4 +420,4 @@ struct vfsops tmpfs_vfsops = {
 	.vfs_statfs =			tmpfs_statfs,
 	.vfs_fhtovp =			tmpfs_fhtovp,
 };
- -VFS_SET(tmpfs_vfsops, tmpfs, 0);
+VFS_SET(tmpfs_vfsops, tmpfs, VFCF_JAIL);

Cheers,
- -- 
Xin LI <delphij@delphij.net>    https://www.delphij.net/
FreeBSD - The Power to Serve!           Live free or die
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.21 (FreeBSD)

iQEcBAEBCgAGBQJSFmNRAAoJEG80Jeu8UPuzhFMH/2jligxAHwhYCbaYe43d8XXd
8ljxmusiVWLTwsjhcZRs0Pg56BSPFR2yMbf1rLgQQCc1HpIK82N9zd3hfDoSZTM3
fhY+gB+M3aMfQ3A0lGzpCckFdj7Dlyr+drXuVeKsTCEdM7U82/GRBq/wkI8OGft4
kCd9kmpiupFL5WmboBJNjC1wSgn0TYeGXazkTY9K4n0HmZP+306xf6ABHEkPO5XI
nJuGsq8u2MhBmet4Cm38dGJGXym5mWRkU/i+YmgDTCVWbdKwILtEHQyq55krSPkP
p85ntduffcAwcy8Yl8facveYq+pybQKO9pEP8hUMZIN0bLPCM01FQl5x4vbyFzc=
=w8tX
-----END PGP SIGNATURE-----