Re: More duplicate code, vnode locking question

To: Elad Efrat <elad%NetBSD.org@localhost>
Subject: Re: More duplicate code, vnode locking question
From: Andrew Doran <ad%netbsd.org@localhost>
Date: Sat, 25 Apr 2009 20:44:01 +0000

On Thu, Apr 23, 2009 at 02:56:49AM +0300, Elad Efrat wrote:

> +     error = genfs_can_mount(devvp, VREAD, l->l_cred);

FYI l->l_cred used outside core kernel code (basically in anything that
could be loaded as a module) should be kauth_cred_get() to reduce exposure
to 'struct lwp'.

> +                      *
> +                      * Permission to update a mount is checked higher, so 
> here we presume
> +                      * updating the mount is okay (for example, as far as 
> securelevel goes)
> +                      * which leaves us with the normal check.
>                        */

http://nxr.netbsd.org/source/xref/share/misc/style#47

Follow-Ups:
- Re: More duplicate code, vnode locking question
  - From: Elad Efrat

References:
- More duplicate code, vnode locking question
  - From: Elad Efrat
- Re: More duplicate code, vnode locking question
  - From: Andrew Doran
- Re: More duplicate code, vnode locking question
  - From: Elad Efrat
- Re: More duplicate code, vnode locking question
  - From: Antti Kantee
- Re: More duplicate code, vnode locking question
  - From: Elad Efrat
- Re: More duplicate code, vnode locking question
  - From: Antti Kantee
- Re: More duplicate code, vnode locking question
  - From: Elad Efrat
- Re: More duplicate code, vnode locking question
  - From: Antti Kantee
- Re: More duplicate code, vnode locking question
  - From: Elad Efrat
- Re: More duplicate code, vnode locking question
  - From: Elad Efrat

Prev by Date: Re: CVS commit: src/sys/kern
Next by Date: Re: CVS commit: src/sys/kern
Previous by Thread: Re: More duplicate code, vnode locking question
Next by Thread: Re: More duplicate code, vnode locking question
Indexes:

Home | Main Index | Thread Index | Old Index