| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Call crextend() before copying old credentials to the new credentials | glebius | 2016-01-14 | 1 | -2/+1 |
| * | Get rid of lim_update_thread and cred_update_thread. | mjg | 2015-07-16 | 1 | -18/+0 |
| * | Generalised support for copy-on-write structures shared by threads. | mjg | 2015-06-10 | 1 | -2/+3 |
| * | cred: add proc_set_cred_init helper | mjg | 2015-03-21 | 1 | -2/+14 |
| * | cred: add proc_set_cred helper | mjg | 2015-03-16 | 1 | -9/+34 |
| * | Add procctl(2) PROC_TRACE_CTL command to enable or disable debugger | kib | 2015-01-18 | 1 | -0/+7 |
| * | Extend struct ucred with group table. | mjg | 2014-11-05 | 1 | -3/+6 |
| * | [SA-14:25] Fix kernel stack disclosure in setlogin(2) / getlogin(2). | des | 2014-11-04 | 1 | -15/+16 |
| * | Fix up an assertion in kern_setgroups, it should compare with ngroups_max + 1 | mjg | 2014-10-26 | 1 | -1/+1 |
| * | Tidy up sys_setgroups and kern_setgroups. | mjg | 2014-10-26 | 1 | -8/+8 |
| * | Use a temporary buffer in sys_setgroups for requests with <= XU_NGROUPS groups. | mjg | 2014-10-26 | 1 | -5/+12 |
| * | Eliminate unnecessary memory allocation in sys_getgroups and its ibcs2 counte... | mjg | 2014-10-21 | 1 | -33/+12 |
| * | Get rid of crshared. | mjg | 2014-10-05 | 1 | -11/+1 |
| * | Fix getppid for traced processes. | mjg | 2014-08-24 | 1 | -6/+23 |
| * | Style fix | bapt | 2012-11-14 | 1 | -1/+1 |
| * | return ERANGE if the buffer is too small to contain the login as documented in | bapt | 2012-11-14 | 1 | -0/+2 |
| * | Fix a typo. (s/nessesary/necessary/) | hrs | 2012-01-08 | 1 | -1/+1 |
| * | In order to maximize the re-usability of kernel code in user space this | kmacy | 2011-09-16 | 1 | -27/+27 |
| * | Notify racct when process credentials change. | trasz | 2011-03-31 | 1 | -0/+10 |
| * | Add two new system calls, setloginclass(2) and getloginclass(2). This makes | trasz | 2011-03-05 | 1 | -0/+4 |
| * | Add some FEATURE macros for various features (AUDIT/CAM/IPC/KTR/MAC/NFS/NTP/ | netchild | 2011-02-25 | 1 | -0/+5 |
| * | Revert r210225 - turns out I was wrong; the "/*-" is not license-only | trasz | 2010-07-18 | 1 | -16/+16 |
| * | The "/*-" comment marker is supposed to denote copyrights. Remove non-copyright | trasz | 2010-07-18 | 1 | -16/+16 |
| * | Only allocate the space we need before calling kern_getgroups instead | brooks | 2010-01-15 | 1 | -1/+7 |
| * | Replace the static NGROUPS=NGROUPS_MAX+1=1024 with a dynamic | brooks | 2010-01-12 | 1 | -6/+6 |
| * | Remove the interim vimage containers, struct vimage and struct procg, | jamie | 2009-07-17 | 1 | -15/+1 |
| * | Remove crcopy call from seteuid now that it calls crcopysafe. | jamie | 2009-07-08 | 1 | -1/+0 |
| * | Replace AUDIT_ARG() with variable argument macros with a set more more | rwatson | 2009-06-27 | 1 | -15/+15 |
| * | Change crsetgroups_locked() (called by crsetgroups()) to sort the | brooks | 2009-06-20 | 1 | -10/+45 |
| * | Rework the credential code to support larger values of NGROUPS and | brooks | 2009-06-19 | 1 | -35/+135 |
| * | Move "options MAC" from opt_mac.h to opt_global.h, as it's now in GENERIC | rwatson | 2009-06-05 | 1 | -1/+0 |
| * | Add internal 'mac_policy_count' counter to the MAC Framework, which is a | rwatson | 2009-06-02 | 1 | -2/+0 |
| * | Introduce an interm userland-kernel API for creating vnets and | zec | 2009-05-31 | 1 | -1/+5 |
| * | Add hierarchical jails. A jail may further virtualize its environment | jamie | 2009-05-27 | 1 | -19/+10 |
| * | Introduce a new virtualization container, provisionally named vprocg, to hold | zec | 2009-05-08 | 1 | -0/+10 |
| * | Improve the consistency of MAC Framework and MAC policy entry point | rwatson | 2009-03-08 | 1 | -9/+9 |
| * | The userland_sysctl() function retries sysctl_root() until returned | kib | 2008-12-12 | 1 | -1/+1 |
| * | Retire the MALLOC and FREE macros. They are an abomination unto style(9). | des | 2008-10-23 | 1 | -8/+8 |
| * | Add cr_canseeinpcb() doing checks using the cached socket | bz | 2008-10-17 | 1 | -0/+35 |
| * | Merge first in a series of TrustedBSD MAC Framework KPI changes | rwatson | 2007-10-24 | 1 | -18/+18 |
| * | Eliminate now-unused SUSER_ALLOWJAIL arguments to priv_check_cred(); in | rwatson | 2007-06-12 | 1 | -39/+20 |
| * | Move per-process audit state from a pointer in the proc structure to | rwatson | 2007-06-07 | 1 | -0/+9 |
| * | Further system call comment cleanup: | rwatson | 2007-03-05 | 1 | -6/+4 |
| * | Remove 'MPSAFE' annotations from the comments above most system calls: all | rwatson | 2007-03-04 | 1 | -97/+3 |
| * | Sort copyrights together. | rwatson | 2007-01-08 | 1 | -2/+4 |
| * | Add a new priv(9) kernel interface for checking the availability of | rwatson | 2006-11-06 | 1 | -89/+58 |
| * | Complete break-out of sys/sys/mac.h into sys/security/mac/mac_framework.h | rwatson | 2006-10-22 | 1 | -1/+1 |
| * | Declare security and security.bsd sysctl hierarchies in sysctl.h along | rwatson | 2006-09-17 | 1 | -3/+1 |
| * | Add kern_setgroups() and kern_getgroups() and use them to implement | jhb | 2006-07-06 | 1 | -25/+42 |
| * | Audit the arguments (user/group IDs) for the system calls that set these IDs. | wsalamon | 2006-02-06 | 1 | -0/+17 |
