freebsd-nq/sys
Pawel Jakub Dawidek 9cdb62160b Fix information leakage.
Without this fix it is possible to cheat policies like:
- sysctl security.bsd.see_other_[gu]ids=0,
- mac_seeotheruids(4),
- jail(2)
and get full processes list with their arguments.

This problem exists from revision 1.62 of kern_proc.c when it was
introduced.

Reviewed by:	nectar, rwatson.
2004-03-17 13:19:43 +00:00
..
alpha Refactor the existing machine-dependent sf_buf_free() into a machine- 2004-03-16 19:04:28 +00:00
amd64 Refactor the existing machine-dependent sf_buf_free() into a machine- 2004-03-16 19:04:28 +00:00
arm Add sysentvec->sv_fixlimits() hook so that we can catch cases on 64 bit 2003-09-25 01:10:26 +00:00
boot MFi386: revision 1.29. 2004-03-14 09:43:15 +00:00
cam Compare the *number* of patterns to zero, not the *pointer* to the 2004-02-28 12:59:56 +00:00
coda Device megapatch 5/6: 2004-02-21 21:32:15 +00:00
compat Use vfs_nmount() to mount linprocfs filesystems in linux_mount(); 2004-03-16 09:05:56 +00:00
conf Remove RAIDFrame. It hasn't worked since GEOM replaced the old disk 2004-03-16 12:23:43 +00:00
contrib Remove `$Name$' leftovers from the port version reporting. 2004-03-10 15:08:21 +00:00
crypto Fix a reentrancy issue in md5_calc(). 2004-01-27 18:57:21 +00:00
ddb Give DDB a "watchdog" command which disables all watchdogs. 2004-02-29 09:55:32 +00:00
dev Adjust $FreeBSD$'s. 2004-03-17 03:43:53 +00:00
fs Don't reject FAT file systems with a number of "Heads" greater than 2004-03-14 23:28:12 +00:00
geom Be more insistent on destroying geoms at unload time. Still not perfect, 2004-03-11 08:16:23 +00:00
gnu Properly vector all bwrite() and BUF_WRITE() calls through the same path 2004-03-11 18:02:36 +00:00
i4b Device megapatch 4/6: 2004-02-21 21:10:55 +00:00
i386 Refactor the existing machine-dependent sf_buf_free() into a machine- 2004-03-16 19:04:28 +00:00
ia64 Refactor the existing machine-dependent sf_buf_free() into a machine- 2004-03-16 19:04:28 +00:00
isa Remove unused FDNUMTOUNIT() macro 2004-02-29 10:21:40 +00:00
isofs/cd9660 Remove unused second arg to vfinddev(). 2004-03-11 16:33:11 +00:00
kern Fix information leakage. 2004-03-17 13:19:43 +00:00
libkern These are changes to allow to use the Intel C/C++ compiler (lang/icc) 2004-03-12 21:45:33 +00:00
modules Move the arl to i386 only. 2004-03-16 12:43:08 +00:00
net Remove tun_proc; replace with tun_pid. tun_proc pointer may be stale 2004-03-17 01:12:09 +00:00
net80211 Add explicit dependency on "ether", since we use ether_ifattach(). 2004-03-16 19:25:55 +00:00
netatalk Make ddp_ports static, as it's not used outside of ddp_usrreq.c. 2004-03-17 12:54:21 +00:00
netatm These are changes to allow to use the Intel C/C++ compiler (lang/icc) 2004-03-12 21:45:33 +00:00
netgraph Add a netgraph node to handle ATM LLC encapsulation. This currently handles 2004-03-08 10:54:35 +00:00
netinet Run through indent(1) so I can read the code without getting a headache. 2004-03-16 21:30:41 +00:00
netinet6 Move the AH algorithm list from a static local function variable to 2004-03-10 04:56:54 +00:00
netipsec Fix type in a sysctl. It used to be: net.key.prefered_oldsa 2004-02-16 17:09:53 +00:00
netipx Rename dup_sockaddr() to sodupsockaddr() for consistency with other 2004-03-01 03:14:23 +00:00
netkey avoid duplicate free. 2004-01-25 17:18:12 +00:00
netnatm Rename dup_sockaddr() to sodupsockaddr() for consistency with other 2004-03-01 03:14:23 +00:00
netncp Make the process_exit eventhandler run without Giant. Add Giant hooks 2004-03-14 02:06:28 +00:00
netsmb Rename dup_sockaddr() to sodupsockaddr() for consistency with other 2004-03-01 03:14:23 +00:00
nfs University of Michigan's Citi NFSv4 kernel client code. 2003-11-14 20:54:10 +00:00
nfs4client Properly vector all bwrite() and BUF_WRITE() calls through the same path 2004-03-11 18:02:36 +00:00
nfsclient Calculate NFS timeouts in units of 10ms, not 5ms. This matches the default 2004-03-14 06:21:56 +00:00
nfsserver Calculate NFS timeouts in units of 10ms, not 5ms. This matches the default 2004-03-14 06:21:56 +00:00
opencrypto kthread_exit() no longer requires Giant, so don't force callers to acquire 2004-03-05 22:42:17 +00:00
pc98 Don't use the pcic polling. 2004-03-16 12:40:11 +00:00
pccard Device megapatch 4/6: 2004-02-21 21:10:55 +00:00
pci Announce ethernet MAC addresss in ether_ifattach(). 2004-03-14 07:12:25 +00:00
posix4 The sem_timedwait() and ksem_timedwait() functions both 2004-02-03 22:27:03 +00:00
powerpc Refactor the existing machine-dependent sf_buf_free() into a machine- 2004-03-16 19:04:28 +00:00
rpc Calculate NFS timeouts in units of 10ms, not 5ms. This matches the default 2004-03-14 06:21:56 +00:00
security Define BPFD_LOCK_ASSERT() to assert the BPF descriptor lock. 2004-02-29 15:33:56 +00:00
sparc64 Refactor the existing machine-dependent sf_buf_free() into a machine- 2004-03-16 19:04:28 +00:00
sys Refactor the existing machine-dependent sf_buf_free() into a machine- 2004-03-16 19:04:28 +00:00
tools Attempt to clean up the emu10k1-alsa.h stuff so that config doesn't 2004-02-05 22:51:16 +00:00
ufs Avoid doing bawrite to initialize inode block while holding cylinder 2004-03-16 22:06:32 +00:00
vm Make overflow/wraparound checking more robust and unbreak len=0 in 2004-03-15 09:11:23 +00:00
Makefile Replaced outdated comment. 2004-01-17 03:28:27 +00:00