aboutsummaryrefslogtreecommitdiff
path: root/sys/sys/mount.h
diff options
context:
space:
mode:
authorJamie Gritton <jamie@FreeBSD.org>2018-05-04 20:54:27 +0000
committerJamie Gritton <jamie@FreeBSD.org>2018-05-04 20:54:27 +0000
commit0e5c6bd43646821dc676a6db03b7175f2668ec88 (patch)
tree3ababcca953402d6c1fa7ca587685de9a95cbdf6 /sys/sys/mount.h
parentd55f0e89c807d794d9e2b5b75301f42da4d3da1f (diff)
downloadsrc-0e5c6bd43646821dc676a6db03b7175f2668ec88.tar.gz
src-0e5c6bd43646821dc676a6db03b7175f2668ec88.zip
Make it easier for filesystems to count themselves as jail-enabled,
by doing most of the work in a new function prison_add_vfs in kern_jail.c Now a jail-enabled filesystem need only mark itself with VFCF_JAIL, and the rest is taken care of. This includes adding a jail parameter like allow.mount.foofs, and a sysctl like security.jail.mount_foofs_allowed. Both of these used to be a static list of known filesystems, with predefined permission bits. Reviewed by: kib Differential Revision: D14681
Notes
Notes: svn path=/head/; revision=333263
Diffstat (limited to 'sys/sys/mount.h')
-rw-r--r--sys/sys/mount.h4
1 files changed, 3 insertions, 1 deletions
diff --git a/sys/sys/mount.h b/sys/sys/mount.h
index 9d499004434f..c4f4bebfac64 100644
--- a/sys/sys/mount.h
+++ b/sys/sys/mount.h
@@ -516,6 +516,7 @@ struct vfsconf {
int vfc_typenum; /* historic filesystem type number */
int vfc_refcount; /* number mounted of this type */
int vfc_flags; /* permanent flags */
+ int vfc_prison_flag; /* prison allow.mount.* flag */
struct vfsoptdecl *vfc_opts; /* mount options */
TAILQ_ENTRY(vfsconf) vfc_list; /* list of vfscons */
};
@@ -851,7 +852,8 @@ vfs_statfs_t __vfs_statfs;
*/
#define VFS_VERSION_00 0x19660120
#define VFS_VERSION_01 0x20121030
-#define VFS_VERSION VFS_VERSION_01
+#define VFS_VERSION_02 0x20180504
+#define VFS_VERSION VFS_VERSION_02
#define VFS_SET(vfsops, fsname, flags) \
static struct vfsconf fsname ## _vfsconf = { \