Date: Sat, 21 Apr 2007 18:11:19 +0000 (UTC) From: Robert Watson <rwatson@FreeBSD.org> To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/sys/nfsclient nfs_lock.c src/sys/nfsserver nfs_syscalls.c src/sys/sys priv.h Message-ID: <200704211811.l3LIBJpG034959@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
rwatson 2007-04-21 18:11:19 UTC
FreeBSD src repository
Modified files:
sys/nfsclient nfs_lock.c
sys/nfsserver nfs_syscalls.c
sys/sys priv.h
Log:
Attempt to rationalize NFS privileges:
- Replace PRIV_NFSD with PRIV_NFS_DAEMON, add PRIV_NFS_LOCKD.
- Use PRIV_NFS_DAEMON in the NFS server.
- In the NFS client, move the privilege check from nfslockdans(), which
occurs every time a write is performed on /dev/nfslock, and instead do it
in nfslock_open() just once. This allows us to avoid checking the saved
uid for root, and just use the effective on open. Use PRIV_NFS_LOCKD.
Revision Changes Path
1.45 +5 -11 src/sys/nfsclient/nfs_lock.c
1.113 +1 -1 src/sys/nfsserver/nfs_syscalls.c
1.12 +6 -1 src/sys/sys/priv.h
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200704211811.l3LIBJpG034959>