Peter Wemm b67cbc6548 Implement code for an OpenBSD-style issetuigid(). ...

This is valueable for library code which needs to be able to find out
whether the current process is or *was* set[ug]id at some point in the
past, and may have a "tainted" execution environment.  This is especially
a problem with the trend to immediately revoke privs at startup and regain
them for critical sections.  One problem with this is that if a cracker
is able to compromise the program while it's still got a saved id, the
cracker can direct the program to regain the privs.  Another problem is
that the user may be able to affect the program in some other way (eg:
setting resolver host aliases) and the library code needs to know when it
should disable these sorts of features.

Reviewed by: ache
Inspired by: OpenBSD (but with a different implementation)

1997-03-31 15:13:33 +00:00

..

imgact_aout.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

imgact_elf.c

Don't #include <sys/fcntl.h> in <sys/file.h> if KERNEL is defined.

1997-03-23 03:37:54 +00:00

imgact_gzip.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

imgact_shell.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

inflate.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

init_main.c

Fixed some invalid (non-atomic) accesses to `time', mostly ones of the

1997-03-22 06:53:45 +00:00

init_sysent.c

Regenerate (added issetugid)

1997-03-31 14:55:05 +00:00

init_sysvec.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

kern_acct.c

Don't include <sys/ioctl.h> in the kernel. Stage 1: don't include

1997-03-24 11:25:10 +00:00

kern_clock.c

Restore Bruce's original comment. It seems that "iff" = if and only if,

1997-03-22 20:34:21 +00:00

kern_conf.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

kern_descrip.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

kern_exec.c

Changed the way that the exec image header is read to be filesystem-

1997-03-31 11:11:26 +00:00

kern_exit.c

Don't include <sys/ioctl.h> in the kernel. Stage 1: don't include

1997-03-24 11:25:10 +00:00

kern_fork.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

kern_ktrace.c

Don't #include <sys/fcntl.h> in <sys/file.h> if KERNEL is defined.

1997-03-23 03:37:54 +00:00

kern_lkm.c

Don't include <sys/ioctl.h> in the kernel. Stage 1: don't include

1997-03-24 11:25:10 +00:00

kern_lock.c

Add missing $Id$

1997-03-25 17:11:30 +00:00

kern_lockf.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

kern_malloc.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

kern_mib.c

Attach vfs_sysctl() one level lower so that only the levels below

1997-03-04 18:31:56 +00:00

kern_ntptime.c

Update our kernel ntp code to the latest from David Mills. The main change

1996-12-30 18:26:28 +00:00

kern_opt.c

Added a copyright and restored order.

1997-02-28 10:14:24 +00:00

kern_physio.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

kern_proc.c

Don't include <sys/ioctl.h> in the kernel. Stage 1: don't include

1997-03-24 11:25:10 +00:00

kern_prot.c

Implement code for an OpenBSD-style issetuigid().

1997-03-31 15:13:33 +00:00

kern_random.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

kern_resource.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

kern_shutdown.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

kern_sig.c

Don't #include <sys/fcntl.h> in <sys/file.h> if KERNEL is defined.

1997-03-23 03:37:54 +00:00

kern_subr.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

kern_synch.c

Wrapped mi_switch() with splstatclock()/splx(). This fixes excessive

1997-02-27 18:03:48 +00:00

kern_sysctl.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

kern_tc.c

Restore Bruce's original comment. It seems that "iff" = if and only if,

1997-03-22 20:34:21 +00:00

kern_time.c

Removed volatile' from declaration of time', and removed the resulting

1997-03-22 08:03:51 +00:00

kern_timeout.c

Restore Bruce's original comment. It seems that "iff" = if and only if,

1997-03-22 20:34:21 +00:00

kern_xxx.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

Make.tags.inc

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

Makefile

Remove bogus architectures to allow make tags to work.

1996-03-31 18:53:43 +00:00

makesyscalls.sh

Make sure we touch all the temporary files at startup, because we assume

1997-03-29 11:11:18 +00:00

md5c.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

subr_autoconf.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

subr_clist.c

Don't include <sys/ioctl.h> in the kernel. Stage 1: don't include

1997-03-24 11:25:10 +00:00

subr_disklabel.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

subr_diskmbr.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

subr_diskslice.c

Don't include <sys/ioctl.h> in the kernel. Stage 1: don't include

1997-03-24 11:25:10 +00:00

subr_dkbad.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

subr_log.c

Don't include <sys/ioctl.h> in the kernel. Stage 4: include

1997-03-24 11:52:29 +00:00

subr_param.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

subr_prf.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

subr_prof.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

subr_rlist.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

subr_trap.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

subr_xxx.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

sys_generic.c

Don't include <sys/ioctl.h> in the kernel. Stage 4: include

1997-03-24 11:52:29 +00:00

sys_pipe.c

Don't include <sys/ioctl.h> in the kernel. Stage 4: include

1997-03-24 11:52:29 +00:00

sys_process.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

sys_socket.c

Don't include <sys/ioctl.h> in the kernel. Stage 4: include

1997-03-24 11:52:29 +00:00

syscalls.c

Regenerate (added issetugid)

1997-03-31 14:55:05 +00:00

syscalls.master

issetugid is now implemented rather than reserved

1997-03-31 14:52:50 +00:00

sysv_ipc.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

sysv_msg.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

sysv_sem.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

sysv_shm.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

tty_compat.c

Don't include <sys/ioctl.h> in the kernel. Stage 5: include

1997-03-24 12:03:06 +00:00

tty_conf.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

tty_cons.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

tty_pty.c

Don't include <sys/ioctl.h> in the kernel. Stage 5: include

1997-03-24 12:03:06 +00:00

tty_snoop.c

Don't include <sys/ioctl.h> in the kernel. Stage 3: include

1997-03-24 11:37:53 +00:00

tty_subr.c

Don't include <sys/ioctl.h> in the kernel. Stage 1: don't include

1997-03-24 11:25:10 +00:00

tty_tb.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

tty_tty.c

Don't include <sys/ioctl.h> in the kernel. Stage 1: don't include

1997-03-24 11:25:10 +00:00

tty.c

Don't include <sys/ioctl.h> in the kernel. Stage 5: include

1997-03-24 12:03:06 +00:00

uipc_domain.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

uipc_mbuf.c

Create a new branch of the kernel MIB, kern.ipc, to store

1997-02-24 20:30:58 +00:00

uipc_proto.c

Create a new branch of the kernel MIB, kern.ipc, to store

1997-02-24 20:30:58 +00:00

uipc_sockbuf.c

In accept1(), falloc() is called after the process has awoken, but prior

1997-03-31 12:30:01 +00:00

uipc_socket2.c

In accept1(), falloc() is called after the process has awoken, but prior

1997-03-31 12:30:01 +00:00

uipc_socket.c

Don't #include <sys/fcntl.h> in <sys/file.h> if KERNEL is defined.

1997-03-23 03:37:54 +00:00

uipc_syscalls.c

In accept1(), falloc() is called after the process has awoken, but prior

1997-03-31 12:30:01 +00:00

uipc_usrreq.c

Don't #include <sys/fcntl.h> in <sys/file.h> if KERNEL is defined.

1997-03-23 03:37:54 +00:00

vfs_bio.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

vfs_cache.c

Fixed the hash formula. Lite2 doesn't have phashinit(), so Lite2's hash

1997-03-08 15:22:14 +00:00

vfs_cluster.c

Remove unnecessary check for vp->v_mount being null. Pointed

1997-03-07 14:40:54 +00:00

vfs_conf.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

vfs_export.c

Fixed splbio problems in vinvalbuf. Closes PR#2875, although fixed

1997-03-05 04:54:54 +00:00

vfs_extattr.c

Code to do lchown(2), copied from chown(2) except it's NOFOLLOW in ND_INIT

1997-03-31 12:21:37 +00:00

vfs_init.c

Moved vfs sysctls to where Lite2 put them. No code changes yet.

1997-03-02 11:06:22 +00:00

vfs_lookup.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

vfs_mount.c

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

vfs_subr.c

Fixed splbio problems in vinvalbuf. Closes PR#2875, although fixed

1997-03-05 04:54:54 +00:00

vfs_syscalls.c

Code to do lchown(2), copied from chown(2) except it's NOFOLLOW in ND_INIT

1997-03-31 12:21:37 +00:00

vfs_vnops.c

Don't include <sys/ioctl.h> in the kernel. Stage 4: include

1997-03-24 11:52:29 +00:00

vnode_if.pl

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

vnode_if.sh

Back out part 1 of the MCFH that changed $Id$ to $FreeBSD$. We are not

1997-02-22 09:48:43 +00:00

vnode_if.src

This is the kernel Lite/2 commit. There are some requisite userland

1997-02-10 02:22:35 +00:00