mirror of
https://github.com/freebsd/freebsd-src
synced 2024-10-04 07:31:11 +00:00
Keep PRIV_KMEM_READ permitted inside jails as it is on the outside.
This commit is contained in:
Jamie Gritton
parent
cbb61c6b61
commit
bb56d716ea
Notes:
svn2git
2020-12-20 02:59:44 +00:00
svn path=/head/; revision=255316
|
|
@ -3885,6 +3885,13 @@ prison_priv_check(struct ucred *cred, int priv)
|
|||
case PRIV_VFS_SETGID:
|
||||
case PRIV_VFS_STAT:
|
||||
case PRIV_VFS_STICKYFILE:
|
||||
|
||||
/*
|
||||
* As in the non-jail case, non-root users are expected to be
|
||||
* able to read kernel/phyiscal memory (provided /dev/[k]mem
|
||||
* exists in the jail and they have permission to access it).
|
||||
*/
|
||||
case PRIV_KMEM_READ:
|
||||
return (0);
|
||||
|
||||
/*
|
||||
|
|
|
|||
Loading…
Reference in a new issue