d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
33040d38ab
freebsd-dev/sys
History
Robert Watson 2e4a71cdb1 When exporting file descriptor data for threads invoking the 
kern.file sysctl, don't return information about processes that
fail p_cansee(td, p).  This prevents sockstat and related
programs from seeing file descriptors owned by processes not
in the same jail as the thread, as well as having implications
for MAC, etc.

This is a partial solution: it permits an information leak about
the number of descriptors in the sizing calculation (but this is
not new information, you can also get it from kern.openfiles),
and doesn't attempt to mask file descriptors based on the
properties of the descriptor, only the process referencing it.
However, it provides most of what you want under most
circumstances, without complicating the locking.

PR:	54211
Based on a patch submitted by:	Pawel Jakub Dawidek <nick@garage.freebsd.pl>
2003-07-28 16:03:53 +00:00
..
alpha Reset the per-CPU unique value at boot and clear it in the PCB of the 2003-07-27 23:45:48 +00:00
amd64 - Introduce a new busdma flag BUS_DMA_ZERO to request for zero'ed 2003-07-27 13:52:10 +00:00
arm sys/sys/limits.h: 2003-05-19 20:29:07 +00:00
boot Fix the ski loader, broken by the gcc upgrade. Update the linker 2003-07-17 01:49:59 +00:00
cam Add a PATH_INQ flag, PIM_NO_6_BYTE, which indicates the SIM never wishes to 2003-07-28 06:15:59 +00:00
coda Add a "int fd" argument to VOP_OPEN() which in the future will 2003-07-26 07:32:23 +00:00
compat Add a "int fd" argument to VOP_OPEN() which in the future will 2003-07-26 07:32:23 +00:00
conf Turn -Werror back on again. I've tested with/without 2003-07-26 03:46:39 +00:00
contrib Make this compile on 64 bit systems again. You cannot just cast a 32 bit 2003-07-28 10:25:26 +00:00
crypto Use __FBSDID(). 2003-06-10 21:44:29 +00:00
ddb Rename P_THREADED to P_SA. P_SA means a process is using scheduler 2003-06-15 00:31:24 +00:00
dev Add a PATH_INQ flag, PIM_NO_6_BYTE, which indicates the SIM never wishes to 2003-07-28 06:15:59 +00:00
fs Add a "int fd" argument to VOP_OPEN() which in the future will 2003-07-26 07:32:23 +00:00
geom Handle geoms which are withering away specially in the dump functions. 2003-07-08 21:12:40 +00:00
gnu Add a "int fd" argument to VOP_OPEN() which in the future will 2003-07-26 07:32:23 +00:00
i4b Undo agressive inlining which GCC previously wisely ignored. 2003-07-23 17:58:41 +00:00
i386 Changed the data types of three index variables, two of them 2003-07-27 14:01:33 +00:00
ia64 - Introduce a new busdma flag BUS_DMA_ZERO to request for zero'ed 2003-07-27 13:52:10 +00:00
isa Add support for the A4 Tech RFSW-35 mouse wheel. Probe is similar to 2003-07-12 18:36:04 +00:00
isofs/cd9660 Add a "int fd" argument to VOP_OPEN() which in the future will 2003-07-26 07:32:23 +00:00
kern When exporting file descriptor data for threads invoking the 2003-07-28 16:03:53 +00:00
libkern Backed out the micro-optimization in 1.4. It was to help gcc-2.6.3 2003-07-25 15:54:23 +00:00
modules Initiate de-orbit burn for fpu-less operation. 386+387 is still 2003-07-22 08:11:17 +00:00
net Use M_WAITOK instead of M_WAIT in sppp_attach(). 2003-07-26 21:58:06 +00:00
net80211 add monitor mode 2003-07-21 02:49:42 +00:00
netatalk - Use if_broadcastaddr from struct ifnet rather than relying on 2003-03-21 17:53:16 +00:00
netatm Silence a gcc-warning. Do this by inlining the macro-call. This is 2003-07-26 14:20:37 +00:00
netgraph add missing machine/bus.h that is necessary to build now that usb is bus_dma 2003-07-16 03:43:14 +00:00
netinet o Do not overwrite saved interrupt priority level by alloc_hash(), 2003-07-25 09:59:16 +00:00
netinet6 ip6fw does not handle ESP correctly 2003-07-27 16:21:10 +00:00
netipsec consolidate callback optimization check in one location by adding a flag 2003-06-30 05:09:32 +00:00
netipx Use __FBSDID(). 2003-06-11 05:37:42 +00:00
netkey Use __FBSDID(). 2003-06-11 05:37:42 +00:00
netnatm Instead of returning an error call the ioctl() handler of the interface 2003-07-15 15:51:50 +00:00
netncp size_t != int. Make this compile on 64 bit platforms (eg: amd64). 2003-07-24 01:59:18 +00:00
netsmb Reserve space for the trailing null byte in the srvname member of 2003-07-27 11:36:00 +00:00
nfs Back out M_* changes, per decision of the TRB. 2003-02-19 05:47:46 +00:00
nfsclient Add fdidx argument to vn_open() and vn_open_cred() and pass -1 throughout. 2003-07-27 17:04:56 +00:00
nfsserver Change idle state sleep identifier to "-" for nfsd. 2003-07-02 08:08:32 +00:00
opencrypto consolidate callback optimization check in one location by adding a flag 2003-06-30 05:09:32 +00:00
pc98 MFi386: revision 1.1090. 2003-07-23 12:09:14 +00:00
pccard OLDCARD is OBSOLETE_IN_6. Tag it as such. 2003-06-12 04:46:43 +00:00
pci Use the BUS_DMA_ZERO flag. 2003-07-27 14:38:54 +00:00
posix4 Use __FBSDID(). 2003-06-11 06:34:30 +00:00
powerpc Make pmap_pvo_allocf() callable without Giant. 2003-07-27 20:57:53 +00:00
rpc
security Remove trailing whitespace. 2003-07-05 01:24:36 +00:00
sparc64 Respect BUS_DMA_ZERO in iommu_dvmamem_alloc(). 2003-07-27 15:19:45 +00:00
sys Add fdidx argument to vn_open() and vn_open_cred() and pass -1 throughout. 2003-07-27 17:04:56 +00:00
tools Don't check the state of the vnode interlock if the specification says 2003-06-22 21:20:06 +00:00
ufs Add fdidx argument to vn_open() and vn_open_cred() and pass -1 throughout. 2003-07-27 17:04:56 +00:00
vm None of the "alloc" functions used by UMA assume that Giant is held any 2003-07-28 02:29:07 +00:00
Makefile Revert exclusion for amd64 that stopped boot/ being built. 2003-06-26 03:52:48 +00:00