d/freebsd-nq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Don't deny mounting for jailed processes immediately, allow

Browse Source 
prison_priv_check() to decide what to do.

This change is suppose not to change current (security) behaviour
in any way.

Reviewed by:	rwatson
This commit is contained in:
Pawel Jakub Dawidek 2007-03-14 13:09:59 +00:00
parent ab6386e42d
commit 7533652025
1 changed files with 1 additions and 3 deletions

4
sys/kern/vfs_mount.c

@ -815,9 +815,7 @@ vfs_domount(
if (strlen(fstype) >= MFSNAMELEN || strlen(fspath) >= MNAMELEN)
return (ENAMETOOLONG);
if (jailed(td->td_ucred))
return (EPERM);
if (usermount == 0) {
if (jailed(td->td_ucred) || usermount == 0) {
if ((error = priv_check(td, PRIV_VFS_MOUNT)) != 0)
return (error);
}