Date: Tue, 13 Dec 2011 17:59:16 +0000 (UTC) From: "David E. O'Brien" <obrien@FreeBSD.org> To: src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-head@freebsd.org Subject: svn commit: r228475 - head/sys/kern Message-ID: <201112131759.pBDHxG3K061181@svn.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: obrien Date: Tue Dec 13 17:59:16 2011 New Revision: 228475 URL: http://svn.freebsd.org/changeset/base/228475 Log: Disallow various debug.kdb sysctl's when securelevel is raised. PR: 161350 Modified: head/sys/kern/kern_shutdown.c Modified: head/sys/kern/kern_shutdown.c ============================================================================== --- head/sys/kern/kern_shutdown.c Tue Dec 13 17:34:47 2011 (r228474) +++ head/sys/kern/kern_shutdown.c Tue Dec 13 17:59:16 2011 (r228475) @@ -102,8 +102,9 @@ int debugger_on_panic = 0; #else int debugger_on_panic = 1; #endif -SYSCTL_INT(_debug, OID_AUTO, debugger_on_panic, CTLFLAG_RW | CTLFLAG_TUN, - &debugger_on_panic, 0, "Run debugger on kernel panic"); +SYSCTL_INT(_debug, OID_AUTO, debugger_on_panic, + CTLFLAG_RW | CTLFLAG_SECURE | CTLFLAG_TUN, &debugger_on_panic, 0, + "Run debugger on kernel panic"); TUNABLE_INT("debug.debugger_on_panic", &debugger_on_panic); #ifdef KDB_TRACE @@ -111,8 +112,9 @@ static int trace_on_panic = 1; #else static int trace_on_panic = 0; #endif -SYSCTL_INT(_debug, OID_AUTO, trace_on_panic, CTLFLAG_RW | CTLFLAG_TUN, - &trace_on_panic, 0, "Print stack trace on kernel panic"); +SYSCTL_INT(_debug, OID_AUTO, trace_on_panic, + CTLFLAG_RW | CTLFLAG_SECURE | CTLFLAG_TUN, &trace_on_panic, 0, + "Print stack trace on kernel panic"); TUNABLE_INT("debug.trace_on_panic", &trace_on_panic); #endif /* KDB */
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201112131759.pBDHxG3K061181>