summaryrefslogtreecommitdiffstats
path: root/sys/kern/kern_jail.c
Commit message (Expand)AuthorAgeFilesLines
* Add a new priv(9) kernel interface for checking the availability ofrwatson2006-11-061-1/+168
* Complete break-out of sys/sys/mac.h into sys/security/mac/mac_framework.hrwatson2006-10-221-1/+2
* Declare security and security.bsd sysctl hierarchies in sysctl.h alongrwatson2006-09-171-1/+0
* Push Giant down in jails. Pass the MPSAFE flag to NDINIT, and keep trackcsjp2005-09-281-16/+15
* Actually only protect mount-point if security.jail.enforce_statfs is set to 2.pjd2005-06-231-1/+0
* Rename sysctl security.jail.getfsstatroot_only to security.jail.enforce_statfspjd2005-06-091-11/+86
* - Use taskqueue_thread rather than taskqueue_swi since our task is goingjeff2005-04-051-1/+1
* Drop a bogus mp_fixme(). Adding a lock would do nothing to reduce userlandjhb2005-03-311-2/+0
* Add a new sysctl, "security.jail.chflags_allowed", which controls thecperciva2005-02-081-0/+5
* /* -> /*- for copyright notices, minor format tweaks as necessaryimp2005-01-061-1/+1
* Add two missing includes and remove two uneeded.pjd2004-06-271-0/+3
* Fix sysctl name: security.jail.getfsstate_getfsstatroot_only ->pjd2004-05-201-1/+1
* Give jail(8) the feature to allow raw sockets from within abmilekic2004-04-261-0/+5
* Remove sysctl security.jail.list_allowed.pjd2004-03-151-6/+1
* Rework jail_attach(2) so that an already jailed process cannot hopnectar2004-02-191-12/+12
* Added sysctl security.jail.jailed.pjd2004-02-191-0/+13
* By default, don't allow processes in a jail to list the set ofrwatson2004-02-141-0/+7
* Fix mismerge in last commit: check that cred->cr_prison is NULLrwatson2004-02-141-1/+1
* By default, when a process in jail calls getfsstat(), only return therwatson2004-02-141-0/+20
* Defer the vrele() on a jail's root vnode reference from prison_free()rwatson2004-01-231-6/+22
* Use __FBSDID().obrien2003-06-111-3/+3
* style(9)mike2003-04-281-25/+20
* - The prison mutex cannot possibly protect pointers to the prison itjhb2003-04-171-3/+1
* o In struct prison, add an allprison linked list of prisons (protectedmike2003-04-091-20/+218
* Back out M_* changes, per decision of the TRB.imp2003-02-191-1/+1
* Remove M_TRYWAIT/M_WAITOK/M_WAIT. Callers should use 0.alfred2003-01-211-1/+1
* Don't forget to destroy the mutex if an error occursmux2002-12-201-0/+1
* remove syscallarg().alfred2002-12-141-1/+1
* Use strlcpy() instead of strncpy() to copy NUL terminated stringsrobert2002-10-171-3/+2
* The jail syscall calls chroot, which is not mpsafe, so put back aiedowse2002-07-011-0/+2
* - Alleviate jail() from having the burden of acquiring Giant by simplyarr2002-06-261-3/+0
* Change callers of mtx_init() to pass in an appropriate lock type name. Injhb2002-04-041-1/+1
* Change the suser() API to take advantage of td_ucred as well as do ajhb2002-04-011-1/+1
* Make getcredhostname() take a buffer and the buffer's sizerobert2002-02-271-3/+12
* Add a function which returns the correct hostname for a givenrobert2002-02-271-0/+11
* - Attempt to help declutter kern. sysctl by moving security out fromarr2002-01-161-5/+5
* - Move _jail sysctl node underneath _kern_security in order to standardizearr2001-12-121-4/+5
* o Introduce pr_mtx into struct prison, providing protection for therwatson2001-12-031-0/+17
* o Move suser() calls in kern/ to using suser_xxx() with an explicitrwatson2001-11-011-1/+1
* - Catch up to the new ucred API.jhb2001-10-111-18/+24
* o Initialize per-jail securelevel from global securelevel as part ofrwatson2001-09-261-0/+1
* KSE Milestone 2julian2001-09-121-3/+4
* Pushdown Giant for acct(), kqueue(), kevent(), execve(), fork(),dillon2001-09-011-4/+14
* Anton kindly pointed out (and fixed) a bug in the Jail handling of therwatson2001-08-031-1/+8
* o Move per-process jail pointer (p->pr_prison) to inside of the subjectrwatson2001-02-211-18/+67
* Convert more malloc+bzero to malloc+M_ZERO.dwmalone2000-12-081-2/+1
* o Deny access to System V IPC from within jail by default, as in therwatson2000-10-311-0/+5
* o Modify jail to limit creation of sockets to UNIX domain sockets,rwatson2000-06-041-1/+8
* Yet-another-update: rename ``kern.prison'' to a new sysctl root entry,rwatson2000-02-121-0/+9
* Add a version number field to the jail(2) argument so that future changesphk1999-09-191-0/+2
OpenPOWER on IntegriCloud