mirror of
https://github.com/freebsd/freebsd-src
synced 2024-11-05 18:22:52 +00:00
Put a comment here about using suser() to determine super-user-ness.
Using suser() means that the p_acflag will (can) be set, to show that a process used super-powers during execution. It also makes it easier to restrict roots we don't trust later on. Reviewed by: bde
This commit is contained in:
Poul-Henning Kamp
parent
4e48a6bfe0
commit
dd84acd074
Notes:
svn2git
2020-12-20 02:59:44 +00:00
svn path=/head/; revision=43429
1 changed files with 4 additions and 1 deletions
|
|
@ -31,7 +31,7 @@
|
|||
* SUCH DAMAGE.
|
||||
*
|
||||
* @(#)ucred.h 8.4 (Berkeley) 1/9/95
|
||||
* $Id$
|
||||
* $Id: ucred.h,v 1.8 1997/02/22 09:46:19 peter Exp $
|
||||
*/
|
||||
|
||||
#ifndef _SYS_UCRED_H_
|
||||
|
|
@ -39,6 +39,9 @@
|
|||
|
||||
/*
|
||||
* Credentials.
|
||||
*
|
||||
* Please do not inspect cr_uid directly to determine superuserness.
|
||||
* only the suser() function should be used for this.
|
||||
*/
|
||||
struct ucred {
|
||||
u_short cr_ref; /* reference count */
|
||||
|
|
|
|||
Loading…
Reference in a new issue