237 	priv_set_t *pset;  in solaris_basic_privset()  local
240 	if ((pset = priv_allocset()) == NULL) {  in solaris_basic_privset()
244 	priv_basicset(pset);  in solaris_basic_privset()
246 	if ((pset = priv_str_to_set("basic", ",", NULL)) == NULL) {  in solaris_basic_privset()
251 	return pset;  in solaris_basic_privset()
257 	priv_set_t *pset = NULL, *npset = NULL;  in solaris_drop_privs_pinfo_net_fork_exec()  local
275 	if ((pset = priv_allocset()) == NULL)  in solaris_drop_privs_pinfo_net_fork_exec()
297 	if (getppriv(PRIV_PERMITTED, pset) != 0)  in solaris_drop_privs_pinfo_net_fork_exec()
300 	priv_intersect(pset, npset);  in solaris_drop_privs_pinfo_net_fork_exec()
307 	priv_freeset(pset);  in solaris_drop_privs_pinfo_net_fork_exec()
314 	priv_set_t *pset = NULL;  in solaris_drop_privs_root_pinfo_net()  local
317 	if ((pset = solaris_basic_privset()) == NULL)  in solaris_drop_privs_root_pinfo_net()
320 	if (priv_delset(pset, PRIV_FILE_LINK_ANY) != 0 ||  in solaris_drop_privs_root_pinfo_net()
322 	    priv_delset(pset, PRIV_NET_ACCESS) != 0 ||  in solaris_drop_privs_root_pinfo_net()
324 	    priv_delset(pset, PRIV_PROC_INFO) != 0 ||  in solaris_drop_privs_root_pinfo_net()
325 	    priv_delset(pset, PRIV_PROC_SESSION) != 0)  in solaris_drop_privs_root_pinfo_net()
328 	if (setppriv(PRIV_SET, PRIV_PERMITTED, pset) != 0 ||  in solaris_drop_privs_root_pinfo_net()
329 	    setppriv(PRIV_SET, PRIV_LIMIT, pset) != 0 ||  in solaris_drop_privs_root_pinfo_net()
330 	    setppriv(PRIV_SET, PRIV_INHERITABLE, pset) != 0)  in solaris_drop_privs_root_pinfo_net()
333 	priv_freeset(pset);  in solaris_drop_privs_root_pinfo_net()
339 	priv_set_t *pset = NULL;  in solaris_drop_privs_root_pinfo_net_exec()  local
343 	if ((pset = solaris_basic_privset()) == NULL)  in solaris_drop_privs_root_pinfo_net_exec()
346 	if (priv_delset(pset, PRIV_FILE_LINK_ANY) != 0 ||  in solaris_drop_privs_root_pinfo_net_exec()
348 	    priv_delset(pset, PRIV_NET_ACCESS) != 0 ||  in solaris_drop_privs_root_pinfo_net_exec()
350 	    priv_delset(pset, PRIV_PROC_EXEC) != 0 ||  in solaris_drop_privs_root_pinfo_net_exec()
351 	    priv_delset(pset, PRIV_PROC_INFO) != 0 ||  in solaris_drop_privs_root_pinfo_net_exec()
352 	    priv_delset(pset, PRIV_PROC_SESSION) != 0)  in solaris_drop_privs_root_pinfo_net_exec()
355 	if (setppriv(PRIV_SET, PRIV_PERMITTED, pset) != 0 ||  in solaris_drop_privs_root_pinfo_net_exec()
356 	    setppriv(PRIV_SET, PRIV_LIMIT, pset) != 0 ||  in solaris_drop_privs_root_pinfo_net_exec()
357 	    setppriv(PRIV_SET, PRIV_INHERITABLE, pset) != 0)  in solaris_drop_privs_root_pinfo_net_exec()
360 	priv_freeset(pset);  in solaris_drop_privs_root_pinfo_net_exec()