[Midnightbsd-cvs] src [8617] trunk/sys: turn unpriv mlock off for compat
laffer1 at midnightbsd.org
laffer1 at midnightbsd.org
Sun Sep 25 13:44:12 EDT 2016
Revision: 8617
http://svnweb.midnightbsd.org/src/?rev=8617
Author: laffer1
Date: 2016-09-25 13:44:12 -0400 (Sun, 25 Sep 2016)
Log Message:
-----------
turn unpriv mlock off for compat
Modified Paths:
--------------
trunk/sys/kern/kern_priv.c
trunk/sys/vm/vm_mmap.c
Modified: trunk/sys/kern/kern_priv.c
===================================================================
--- trunk/sys/kern/kern_priv.c 2016-09-25 17:43:47 UTC (rev 8616)
+++ trunk/sys/kern/kern_priv.c 2016-09-25 17:44:12 UTC (rev 8617)
@@ -59,7 +59,7 @@
&suser_enabled, 0, "processes with uid 0 have privilege");
TUNABLE_INT("security.bsd.suser_enabled", &suser_enabled);
-static int unprivileged_mlock = 1;
+static int unprivileged_mlock = 0;
SYSCTL_INT(_security_bsd, OID_AUTO, unprivileged_mlock, CTLFLAG_RW|CTLFLAG_TUN,
&unprivileged_mlock, 0, "Allow non-root users to call mlock(2)");
TUNABLE_INT("security.bsd.unprivileged_mlock", &unprivileged_mlock);
Modified: trunk/sys/vm/vm_mmap.c
===================================================================
--- trunk/sys/vm/vm_mmap.c 2016-09-25 17:43:47 UTC (rev 8616)
+++ trunk/sys/vm/vm_mmap.c 2016-09-25 17:44:12 UTC (rev 8617)
@@ -88,7 +88,7 @@
#include <sys/pmckern.h>
#endif
-int old_mlock = 0;
+int old_mlock = 1;
SYSCTL_INT(_vm, OID_AUTO, old_mlock, CTLFLAG_RW | CTLFLAG_TUN, &old_mlock, 0,
"Do not apply RLIMIT_MEMLOCK on mlockall");
TUNABLE_INT("vm.old_mlock", &old_mlock);
More information about the Midnightbsd-cvs
mailing list