PERFORCE change 108139 for review

Thu Oct 19 17:33:44 PDT 2006

http://perforce.freebsd.org/chv.cgi?CH=108139

Change 108139 by rwatson at rwatson_zoo on 2006/10/20 00:32:57

	Merge from HEAD priv(9):
	
	Do allow System V IPC and POSIX message queue privileges in Jail.

Affected files ...

.. //depot/projects/trustedbsd/priv6/src/sys/kern/kern_jail.c#3 edit

Differences ...

==== //depot/projects/trustedbsd/priv6/src/sys/kern/kern_jail.c#3 (text+ko) ====

@@ -593,12 +593,12 @@
 		 * The following privileges should be granted to jail once
 		 * implemented.
 		 */
-	/* case PRIV_IPC_READ: */
-	/* case PRIV_IPC_WRITE: */
-	/* case PRIV_IPC_EXEC: */
-	/* case PRIV_IPC_ADMIN: */
-	/* case PRIV_IPC_MSGSIZE: */
-	/* case PRIV_MQ_ADMIN: */
+	case PRIV_IPC_READ:
+	case PRIV_IPC_WRITE:
+	case PRIV_IPC_EXEC:
+	case PRIV_IPC_ADMIN:
+	case PRIV_IPC_MSGSIZE:
+	case PRIV_MQ_ADMIN:
 
 		/*
 		 * Jail implements its own inter-process limits, so allow
