mirror of
https://github.com/freebsd/freebsd-src
synced 2024-10-17 22:04:40 +00:00
For now, reflect practical reality that Audit system calls aren't
allowed in Jail: return a privilege error.
This commit is contained in:
parent
969e5bdcd0
commit
c3c1b5e62a
Notes:
svn2git
2020-12-20 02:59:44 +00:00
svn path=/head/; revision=166827
|
@ -542,6 +542,7 @@ prison_priv_check(struct ucred *cred, int priv)
|
|||
*/
|
||||
case PRIV_KTRACE:
|
||||
|
||||
#if 0
|
||||
/*
|
||||
* Allow jailed processes to configure audit identity and
|
||||
* submit audit records (login, etc). In the future we may
|
||||
|
@ -551,6 +552,7 @@ prison_priv_check(struct ucred *cred, int priv)
|
|||
case PRIV_AUDIT_GETAUDIT:
|
||||
case PRIV_AUDIT_SETAUDIT:
|
||||
case PRIV_AUDIT_SUBMIT:
|
||||
#endif
|
||||
|
||||
/*
|
||||
* Allow jailed processes to manipulate process UNIX
|
||||
|
|
Loading…
Reference in a new issue