| Commit message (Expand) | Author | Age | Files | Lines |
* | - Lock proctree_lock instead of pgrpsess_lock. | jhb | 2002-04-16 | 1 | -35/+20 |
* | - Change the algorithms of the syscalls to modify process credentials to | jhb | 2002-04-13 | 1 | -83/+137 |
* | - Axe a stale comment. We haven't allowed the ucred pointer passed to | jhb | 2002-04-03 | 1 | -9/+2 |
* | Change the suser() API to take advantage of td_ucred as well as do a | jhb | 2002-04-01 | 1 | -53/+32 |
* | Whitespace only change: use ANSI function declarations instead of K&R. | jhb | 2002-04-01 | 1 | -130/+46 |
* | Fix style bug in previous commit. | jhb | 2002-04-01 | 1 | -1/+1 |
* | Compromise for critical*()/cpu_critical*() recommit. Cleanup the interrupt | dillon | 2002-03-27 | 1 | -12/+11 |
* | Use td_ucred in several trivial syscalls and remove Giant locking as | jhb | 2002-03-22 | 1 | -32/+16 |
* | Use explicit Giant locks and unlocks for rather than instrumented ones for | jhb | 2002-03-22 | 1 | -6/+5 |
* | Merge from TrustedBSD MAC branch: | rwatson | 2002-03-22 | 1 | -0/+23 |
* | Since cred never appears to be passed into the securelevel calls as | rwatson | 2002-03-22 | 1 | -2/+2 |
* | Break out the "see_other_uids" policy check from the various | rwatson | 2002-03-22 | 1 | -4/+28 |
* | - Push down Giant into crfree() in the case that we actually free a ucred. | jhb | 2002-03-20 | 1 | -0/+15 |
* | Stop abusing the pgrpsess_lock. | tanimura | 2002-03-11 | 1 | -2/+0 |
* | Temporarily lock Giant while we update td_ucred. The proc lock doesn't | jhb | 2002-02-27 | 1 | -6/+6 |
* | Return ESRCH if the target process is not inferior to the curproc. | tanimura | 2002-02-27 | 1 | -0/+2 |
* | Introduce a version field to `struct xucred' in place of one of the | dd | 2002-02-27 | 1 | -0/+16 |
* | Lock struct pgrp, session and sigio. | tanimura | 2002-02-23 | 1 | -38/+124 |
* | replace the embedded cr_mtx in the ucred structure with cr_mtxp (a mutex | dillon | 2002-02-17 | 1 | -9/+11 |
* | If the credential on an incoming thread is correct, don't bother | julian | 2002-02-17 | 1 | -0/+21 |
* | - Attempt to help declutter kern. sysctl by moving security out from | arr | 2002-01-16 | 1 | -8/+7 |
* | - Push much of the logic for p_cansignal() behind cr_cansignal, which | rwatson | 2002-01-06 | 1 | -30/+45 |
* | o A few more minor whitespace and other style fixes. | rwatson | 2001-12-06 | 1 | -6/+7 |
* | o Remove unnecessary inclusion of opt_global.h. | rwatson | 2001-12-06 | 1 | -1/+0 |
* | o Make kern.security.bsd.suser_enabled TUNABLE. | rwatson | 2001-12-05 | 1 | -0/+1 |
* | o Update an instance of 'unprivileged_procdebug_permitted' missed | rwatson | 2001-12-03 | 1 | -6/+6 |
* | o Introduce pr_mtx into struct prison, providing protection for the | rwatson | 2001-12-03 | 1 | -2/+8 |
* | o Uniformly copy uap arguments into local variables before grabbing | rwatson | 2001-12-02 | 1 | -3/+1 |
* | o Remove KSE race in setuid() in which oldcred was preserved before giant | rwatson | 2001-12-02 | 1 | -1/+1 |
* | o General style, formatting, etc, improvements: | rwatson | 2001-12-02 | 1 | -167/+107 |
* | o Further sysctl name simplification, generally stripping 'permitted', | rwatson | 2001-11-30 | 1 | -9/+9 |
* | o Move current inhabitants of kern.security to kern.security.bsd, so | rwatson | 2001-11-30 | 1 | -14/+16 |
* | Clean up breakage in inferior() I introduced in 1.92 of kern_proc.c: | jhb | 2001-11-12 | 1 | -0/+3 |
* | o Introduce group subset test, which limits the ability of a process to | rwatson | 2001-11-02 | 1 | -8/+36 |
* | o Add a comment to p_candebug() noting that the P_INEXEC check should | rwatson | 2001-11-02 | 1 | -1/+6 |
* | o Capabilities cap_check() interface revised to remove _xxx, so rename | rwatson | 2001-11-02 | 1 | -1/+1 |
* | Add a P_INEXEC flag that indicates that the process has called execve() and | des | 2001-10-27 | 1 | -0/+4 |
* | Add mtx_lock_giant() and mtx_unlock_giant() wrappers for sysctl management | dillon | 2001-10-26 | 1 | -6/+9 |
* | Change the kernel's ucred API as follows: | jhb | 2001-10-11 | 1 | -22/+29 |
* | Whitespace fixes. | jhb | 2001-10-11 | 1 | -2/+2 |
* | Rework some code to be a bit simpler by inverting a few tests and using | jhb | 2001-10-11 | 1 | -22/+12 |
* | Add a temporary hack that will go away with the ucred API update to bzero | jhb | 2001-10-10 | 1 | -0/+1 |
* | - Combine kern.ps_showallprocs and kern.ipc.showallsockets into | rwatson | 2001-10-09 | 1 | -2/+12 |
* | o Recent addition of (p1==p2) exception in p_candebug() permitted | rwatson | 2001-10-09 | 1 | -2/+9 |
* | Always succeed if the target process is the same as the requesting process. | des | 2001-10-07 | 1 | -0/+3 |
* | o When performing a securelevel check as part of securelevel_ge() or | rwatson | 2001-09-26 | 1 | -8/+15 |
* | o So, when <dd> e-mailed me and said that the comment was inverted | rwatson | 2001-09-25 | 1 | -6/+6 |
* | o Rename u_cansee() to cr_cansee(), making the name more comprehensible | rwatson | 2001-09-20 | 1 | -3/+3 |
* | o Clarification of securelevel_{ge,gt} comment. | rwatson | 2001-09-19 | 1 | -2/+2 |
* | o Introduce two new calls, securelevel_gt() and securelevel_ge(), which | rwatson | 2001-09-18 | 1 | -3/+57 |