Zachary Loafman zml at
Thu May 28 15:18:18 UTC 2009

On Thu, May 28, 2009 at 08:16:29AM -0400, John Baldwin wrote:
> I suppose you would implement this by having a new flag in td_pflags to 
> indicate that the thread is using a private credential and use that to 
> disable the automatic updating of td_ucred on syscall return and then just 
> point td_ucred at the thread-specific credential?

That sounds about right, though is actually more detailed than I had
gotten in my cursory investigation.
> Hmm, the XXX in Darwin's source about P_SUGID is probably meaningful for us as 
> we still use that flag.  I would defer to Robert on how that should work 
> though.

Hm, given the intent of issetugid(2), it seems like P_SUGID should
instead become a count of tainted threads rather than a flag.

Zach Loafman | Staff Engineer | Isilon Systems

More information about the freebsd-arch mailing list