| Commit message (Expand) | Author | Age | Files | Lines |
* | Merge the remainder of kern_vimage.c and vimage.h into vnet.c and | rwatson | 2009-08-01 | 1 | -1/+4 |
* | Make the "enforce_statfs" default 2 (most restrictive) in jail_set(2), | jamie | 2009-07-31 | 1 | -3/+4 |
* | Remove a LOR, where the the sleepable allprison_lock was being obtained | jamie | 2009-07-30 | 1 | -309/+187 |
* | Don't allow mixing the "vnet" and "ip4/6" jail parameters, since vnet | jamie | 2009-07-29 | 1 | -11/+98 |
* | Change the default value of the "ip4" and "ip6" jail parameters to | jamie | 2009-07-29 | 1 | -27/+7 |
* | Some jail parameters (in particular, "ip4" and "ip6" for IP address | jamie | 2009-07-25 | 1 | -35/+85 |
* | Remove the interim vimage containers, struct vimage and struct procg, | jamie | 2009-07-17 | 1 | -4/+0 |
* | Wrap a PR_VNET inside "#ifdef VIMAGE" since that the only place it applies. | jamie | 2009-06-24 | 1 | -0/+2 |
* | In case of prisons with their own network stack, permit | jamie | 2009-06-24 | 1 | -0/+128 |
* | Add a limit for child jails via the "children.cur" and "children.max" | jamie | 2009-06-23 | 1 | -9/+50 |
* | Manage vnets via the jail system. If a jail is given the boolean | jamie | 2009-06-15 | 1 | -0/+29 |
* | Rename the host-related prison fields to be the same as the host.* | jamie | 2009-06-13 | 1 | -29/+33 |
* | Add counterparts to getcredhostname: | jamie | 2009-06-13 | 1 | -1/+32 |
* | Fix some overflow errors: a signed allocation and an insufficiant | jamie | 2009-06-09 | 1 | -4/+12 |
* | Move "options MAC" from opt_mac.h to opt_global.h, as it's now in GENERIC | rwatson | 2009-06-05 | 1 | -1/+0 |
* | Place hostnames and similar information fully under the prison system. | jamie | 2009-05-29 | 1 | -16/+155 |
* | Add hierarchical jails. A jail may further virtualize its environment | jamie | 2009-05-27 | 1 | -559/+1658 |
* | Delay an error message until the variable it uses gets initialized. | jamie | 2009-05-23 | 1 | -8/+6 |
* | Introduce a new virtualization container, provisionally named vprocg, to hold | zec | 2009-05-08 | 1 | -0/+4 |
* | Move the per-prison Linux MIB from a private one-off pointer to the new | jamie | 2009-05-07 | 1 | -1/+0 |
* | Introduce the extensible jail framework, using the same "name=value" | jamie | 2009-04-29 | 1 | -463/+1532 |
* | Some non-functional changes: whitespace, KASSERT strings, declaration order. | jamie | 2009-04-29 | 1 | -5/+5 |
* | Whitespace/spelling fixes in advance of upcoming functional changes. | jamie | 2009-03-27 | 1 | -12/+12 |
* | Don't allow creating a socket with a protocol family that the current | jamie | 2009-02-05 | 1 | -0/+42 |
* | Standardize the various prison_foo_ip[46] functions and prison_if to | jamie | 2009-02-05 | 1 | -70/+74 |
* | Mark most often used sysctl's as MPSAFE. | ed | 2009-01-28 | 1 | -4/+6 |
* | For consistency with prison_{local,remote,check}_ipN rename | bz | 2009-01-25 | 1 | -2/+2 |
* | Back out r186615; the sanitizing of the pointers in the error case | bz | 2009-01-04 | 1 | -2/+0 |
* | Added missing second part of cleaning j->ip[46] as requested by bz | pho | 2008-12-30 | 1 | -0/+2 |
* | Make sure that unused j->ip[46] are cleared | pho | 2008-12-30 | 1 | -2/+4 |
* | Correctly check the number of prison states to not access anything | bz | 2008-12-11 | 1 | -2/+2 |
* | Unbreak the no-networks (no INET/6) build that I broke with | bz | 2008-11-29 | 1 | -0/+2 |
* | MFp4: | bz | 2008-11-29 | 1 | -60/+848 |
* | With the permissions of phk@ change the license on kern_jail.c | bz | 2008-11-28 | 1 | -6/+22 |
* | Update ZFS from version 6 to 13 and bring some FreeBSD-specific changes. | pjd | 2008-11-17 | 1 | -234/+28 |
* | Retire the MALLOC and FREE macros. They are an abomination unto style(9). | des | 2008-10-23 | 1 | -6/+6 |
* | Step 1.5 of importing the network stack virtualization infrastructure | zec | 2008-10-02 | 1 | -0/+1 |
* | Commit step 1 of the vimage project, (network stack) | bz | 2008-08-17 | 1 | -1/+2 |
* | MFp4 144659: | bz | 2008-07-07 | 1 | -0/+4 |
* | Introduce a new lock, hostname_mtx, and use it to synchronize access | rwatson | 2008-07-05 | 1 | -1/+4 |
* | Revert rev. 178124 as requested by kris@. Having jail id not being | delphij | 2008-06-19 | 1 | -18/+24 |
* | Instead of rolling our own jail number allocation procedure, use | delphij | 2008-04-11 | 1 | -24/+18 |
* | Add the support for the AT_FDCWD and fd-relative name lookups to the | kib | 2008-03-31 | 1 | -0/+1 |
* | Replace the last susers calls in netinet6/ with privilege checks. | bz | 2008-01-24 | 1 | -0/+6 |
* | VOP_LOCK1() (and so VOP_LOCK()) and VOP_UNLOCK() are only used in | attilio | 2008-01-13 | 1 | -3/+3 |
* | vn_lock() is currently only used with the 'curthread' passed as argument. | attilio | 2008-01-10 | 1 | -1/+1 |
* | Merge first in a series of TrustedBSD MAC Framework KPI changes | rwatson | 2007-10-24 | 1 | -1/+1 |
* | Add PRIV_VFS_STAT privilege, which will allow overriding policy limits on | rwatson | 2007-10-21 | 1 | -0/+1 |
* | Fix jails and jail-friendly file systems handling: | pjd | 2007-04-13 | 1 | -0/+1 |
* | Allow PRIV_NETINET_REUSEPORT in jail. | rwatson | 2007-04-10 | 1 | -1/+3 |