d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
f2e6be5865
freebsd-skq/sys/fs
History
Robert Watson f2e6be5865 Prior to support for almost all ps activity via sysctl, ps used procfs, 
and so special-casing was introduced to provide extra procfs privilege
to the kmem group.  With the advent of non-setgid kmem ps, this code
is no longer required, and in fact, can is potentially harmful as it
allocates privilege to a gid that is increasingly less meaningful.
Knowledge of specific gid's in kernel is also generally bad precedent,
as the kernel security policy doesn't distinguish gid's specifically,
only uid 0.

This commit removes reference to kmem in procfs, both in terms of
access control decisions, and the applying of gid kmem to the
/proc/*/mem file, simplifying the associated code considerably.
Processes are still permitted to access the mem file based on
the debugging policy, so ps -e still works fine for normal
processes and use.

Reviewed by:	tmm
Obtained from:	TrustedBSD Project
2001-08-03 17:13:23 +00:00
..
cd9660 - FDESC, FIFO, NULL, PORTAL, PROC, UMAP and UNION file 2001-05-23 09:42:29 +00:00
coda Warning fix: coda_fbsd.c:113: warning: unused variable `ret' 2001-06-15 00:02:27 +00:00
deadfs Undo part of the tangle of having sys/lock.h and sys/mutex.h included in 2001-05-01 08:13:21 +00:00
devfs Support /dev/tun cloning. Ansify if_tun.c while I'm there. 2001-06-01 15:51:10 +00:00
fdescfs Fix warning: 552: warning: `fdesc_badop' defined but not used 2001-06-15 00:27:21 +00:00
fifofs The kq write filter was hooked up to the wrong socket, and thus was 2001-06-06 17:38:36 +00:00
hpfs Fix warnings (mostly harmless, due to struct bio being embedded in buf): 2001-06-15 00:30:27 +00:00
msdosfs remove support for creating files and directories from msdosfs_mknod 2001-07-19 19:15:42 +00:00
ntfs Fix warning (exposed NetBSD code): 2001-06-15 00:32:07 +00:00
nullfs the last argument to copyinstr is of t ype size_t, not u_int 2001-06-13 18:58:11 +00:00
nwfs Protect the mnt_vnode list with the mntvnode lock. 2001-06-28 03:50:17 +00:00
portalfs Fix warning: 568: warning: `portal_badop' defined but not used 2001-06-15 00:38:03 +00:00
procfs Prior to support for almost all ps activity via sysctl, ps used procfs, 2001-08-03 17:13:23 +00:00
pseudofs #if 0 out pfs_null() to silence the warning about it not being referenced. 2001-06-15 12:30:46 +00:00
smbfs Grab the process lock around psignal(). 2001-07-18 19:17:36 +00:00
specfs With Alfred's permission, remove vm_mtx in favor of a fine-grained approach 2001-07-04 16:20:28 +00:00
umapfs Actually rename FDESC, PORTAL, UMAP and UNION file systems. 2001-05-24 15:20:11 +00:00
unionfs Protect the mnt_vnode list with the mntvnode lock. 2001-06-28 03:50:17 +00:00