]> CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit
projects / FreeBSD / FreeBSD.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: bd07da3) | patch
Make it easier for filesystems to count themselves as jail-enabled,
authorjamie <jamie@FreeBSD.org>
Fri, 4 May 2018 20:54:27 +0000 (20:54 +0000)
committerjamie <jamie@FreeBSD.org>
Fri, 4 May 2018 20:54:27 +0000 (20:54 +0000)
commit1c11f552d63c8d13159b579aed059a7649bbf5aa
tree3ababcca953402d6c1fa7ca587685de9a95cbdf6tree | snapshot
parentbd07da39ba6bc29fdde1a53c5f8427cfa7bfa358commit | diff
Make it easier for filesystems to count themselves as jail-enabled,
by doing most of the work in a new function prison_add_vfs in kern_jail.c
Now a jail-enabled filesystem need only mark itself with VFCF_JAIL, and
the rest is taken care of.  This includes adding a jail parameter like
allow.mount.foofs, and a sysctl like security.jail.mount_foofs_allowed.
Both of these used to be a static list of known filesystems, with
predefined permission bits.

Reviewed by: kib
Differential Revision: D14681
17 files changed:
lib/libjail/jail.c diff | blob | history
sys/cddl/contrib/opensolaris/uts/common/fs/zfs/zfs_vfsops.c diff | blob | history
sys/compat/linprocfs/linprocfs.c diff | blob | history
sys/compat/linsysfs/linsysfs.c diff | blob | history
sys/fs/devfs/devfs_vfsops.c diff | blob | history
sys/fs/fdescfs/fdesc_vfsops.c diff | blob | history
sys/fs/nullfs/null_vfsops.c diff | blob | history
sys/fs/procfs/procfs.c diff | blob | history
sys/fs/pseudofs/pseudofs.h diff | blob | history
sys/fs/tmpfs/tmpfs_vfsops.c diff | blob | history
sys/kern/kern_jail.c diff | blob | history
sys/kern/vfs_init.c diff | blob | history
sys/kern/vfs_mount.c diff | blob | history
sys/kern/vfs_subr.c diff | blob | history
sys/sys/jail.h diff | blob | history
sys/sys/mount.h diff | blob | history
usr.sbin/jail/jail.8 diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.