| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| ... | |
| * | Whitespace fixes. | jhb | 2001-10-11 | 1 | -2/+2 |
| * | Rework some code to be a bit simpler by inverting a few tests and using | jhb | 2001-10-11 | 1 | -22/+12 |
| * | Add a temporary hack that will go away with the ucred API update to bzero | jhb | 2001-10-10 | 1 | -0/+1 |
| * | - Combine kern.ps_showallprocs and kern.ipc.showallsockets into | rwatson | 2001-10-09 | 1 | -2/+12 |
| * | o Recent addition of (p1==p2) exception in p_candebug() permitted | rwatson | 2001-10-09 | 1 | -2/+9 |
| * | Always succeed if the target process is the same as the requesting process. | des | 2001-10-07 | 1 | -0/+3 |
| * | o When performing a securelevel check as part of securelevel_ge() or | rwatson | 2001-09-26 | 1 | -8/+15 |
| * | o So, when <dd> e-mailed me and said that the comment was inverted | rwatson | 2001-09-25 | 1 | -6/+6 |
| * | o Rename u_cansee() to cr_cansee(), making the name more comprehensible | rwatson | 2001-09-20 | 1 | -3/+3 |
| * | o Clarification of securelevel_{ge,gt} comment. | rwatson | 2001-09-19 | 1 | -2/+2 |
| * | o Introduce two new calls, securelevel_gt() and securelevel_ge(), which | rwatson | 2001-09-18 | 1 | -3/+57 |
| * | KSE Milestone 2 | julian | 2001-09-12 | 1 | -75/+124 |
| * | Giant Pushdown. Saved the worst P4 tree breakage for last. | dillon | 2001-09-01 | 1 | -80/+271 |
| * | o Screw over users of the kern.{security.,}suser_permitted sysctl again, | rwatson | 2001-08-31 | 1 | -5/+5 |
| * | o Improve the style of a number of routines and comments in kern_prot.c, | rwatson | 2001-08-28 | 1 | -66/+62 |
| * | Fix typos in recent comments. | rwatson | 2001-08-28 | 1 | -2/+2 |
| * | Generally improve documentation of kern_prot.c: | rwatson | 2001-08-27 | 1 | -10/+65 |
| * | o Modify p_candebug() such that there is no longer automatic acceptance | rwatson | 2001-07-31 | 1 | -3/+0 |
| * | o Introduce new kern.security sysctl tree for kernel security policy | rwatson | 2001-07-31 | 1 | -3/+11 |
| * | o Replace calls to p_can(..., P_CAN_xxx) with calls to p_canxxx(). | rwatson | 2001-07-05 | 1 | -51/+12 |
| * | Unbreak setregid(2). | ru | 2001-06-06 | 1 | -0/+2 |
| * | o uifree() the cr_ruidinfo in crfree() as well as cr_uidinfo now that the rea... | rwatson | 2001-05-27 | 1 | -0/+2 |
| * | o Merge contents of struct pcred into struct ucred. Specifically, add the | rwatson | 2001-05-25 | 1 | -180/+271 |
| * | o Modify access control checks in p_candebug() such that the policy is as | rwatson | 2001-05-17 | 1 | -3/+3 |
| * | Undo part of the tangle of having sys/lock.h and sys/mutex.h included in | markm | 2001-05-01 | 1 | -2/+3 |
| * | o Remove the disabled p_cansched() test cases that permitted users to | rwatson | 2001-04-27 | 1 | -11/+0 |
| * | Change the pfind() and zpfind() functions to lock the process that they | jhb | 2001-04-24 | 1 | -25/+47 |
| * | o Remove comment indicating policy permits loop-back debugging, but | rwatson | 2001-04-21 | 1 | -1/+0 |
| * | Add a sanity check on ucred refcount. | alfred | 2001-04-17 | 1 | -0/+1 |
| * | o Since uid checks in p_cansignal() are now identical between P_SUGID | rwatson | 2001-04-13 | 1 | -28/+14 |
| * | o Disallow two "allow this" exceptions in p_cansignal() restricting | rwatson | 2001-04-13 | 1 | -5/+3 |
| * | o Disable two "allow this" exceptions in p_cansched()m retricting the | rwatson | 2001-04-12 | 1 | -1/+4 |
| * | o Reduce information leakage into jails by adding invocations of | rwatson | 2001-04-12 | 1 | -0/+9 |
| * | o Replace p_cankill() with p_cansignal(), remove wrappage of p_can() | rwatson | 2001-04-12 | 1 | -32/+71 |
| * | o Introduce a new system call, __setsugid(), which allows a process to | rwatson | 2001-04-11 | 1 | -0/+23 |
| * | o Restructure privilege check associated with process visibility for | rwatson | 2001-03-29 | 1 | -3/+1 |
| * | o introduce u_cansee(), which performs access control checks between | rwatson | 2001-03-28 | 1 | -14/+26 |
| * | Just use the proc lock to protect read accesses to p_pptr rather than the | jhb | 2001-03-24 | 1 | -4/+4 |
| * | o Move per-process jail pointer (p->pr_prison) to inside of the subject | rwatson | 2001-02-21 | 1 | -18/+29 |
| * | o Fix spellign in a comment: s/referernce/reference/ | rwatson | 2001-02-14 | 1 | -1/+1 |
| * | Change and clean the mutex lock interface. | bmilekic | 2001-02-09 | 1 | -7/+7 |
| * | Fix typo: compatability -> compatibility. | asmodai | 2001-02-06 | 1 | -3/+3 |
| * | Fix getsid() to use "=" instead of "==". | ben | 2001-01-13 | 1 | -1/+1 |
| * | Protect proc.p_pptr and proc.p_children/p_sibling with the | jake | 2000-12-23 | 1 | -1/+11 |
| * | make crfree into a function rather than a macro to avoid bloat because of | alfred | 2000-11-30 | 1 | -0/+14 |
| * | ucred system overhaul: | alfred | 2000-11-27 | 1 | -8/+15 |
| * | o Fix a mis-transcription of sef's -STABLE protection fixes--only root | rwatson | 2000-11-10 | 1 | -1/+1 |
| * | o Tighten up rules for which processes can't debug which other processes | rwatson | 2000-10-30 | 1 | -2/+4 |
| * | Nuke a bit of dead code. | truckman | 2000-10-29 | 1 | -5/+0 |
| * | unstaticize change_ruid() because it is needed by osf1_setuid() | gallatin | 2000-10-26 | 1 | -3/+1 |
