Age | Commit message (Expand) | Author |
2019-06-21 | Make resource limit access MP-safe. So far, the copy-on-write sharing | Visa Hankala |
2019-06-01 | Revert to using the SCHED_LOCK() to protect time accounting. | Martin Pieuchot |
2019-05-31 | Use a per-process mutex to protect time accounting instead of SCHED_LOCK(). | Martin Pieuchot |
2019-02-08 | Fix stack info leak in execve(2). There are 2x4 bytes of padding | Alexander Bluhm |
2018-10-30 | If we execute a #!shell binary, the shell is an integral part of the | Theo de Raadt |
2018-08-05 | Decouple unveil from the pledge flags, by adding dedicated unveil flags | Bob Beck |
2018-07-20 | Remove a few leftovers from the days of emulation, which could result in | Theo de Raadt |
2018-07-13 | Unveiling unveil(2). | Bob Beck |
2018-06-18 | Put file descriptors on shared data structures when they are completely | Martin Pieuchot |
2018-06-05 | Revert introduction of fdinsert(), a sanitify check triggers when | Martin Pieuchot |
2018-06-02 | Put file descriptors on shared data structures when they are completely | Martin Pieuchot |
2018-04-28 | Clean up the parameters of VOP_LOCK() and VOP_UNLOCK(). It is always | Visa Hankala |
2018-04-27 | Move FREF() inside fd_getfile(). | Martin Pieuchot |
2018-01-02 | Stop assuming <sys/file.h> will pull in fcntl.h when _KERNEL is defined. | Philip Guenther |
2018-01-01 | free(9) sizes for sys_execve. | Florian Obser |
2017-12-19 | Remove unused ps_stackgap from process struct | Stefan Kempf |
2017-12-12 | pledge()'s 2nd argument becomes char *execpromises, which becomes the | Theo de Raadt |
2017-08-29 | Remove old deactivated pledge path code. A replacement mechanism is | Theo de Raadt |
2017-04-13 | Provide mips64 with kernel-facing TCB_{GET,SET} macros that store it | Philip Guenther |
2017-02-11 | Add a flags argument to falloc() that lets it optionally set the | Philip Guenther |
2017-02-08 | Delete the obsolete fork/exec/exit emulation hooks. | Philip Guenther |
2017-01-21 | p_comm is the process's command and isn't per thread, so move it from | Philip Guenther |
2016-10-22 | Delete dead copy of pr->ps_vmspace; uvmspace_exec() can change it anyway | Philip Guenther |
2016-09-03 | Reset PS_WXNEEDED in execve(2). | Jeremie Courreges-Anglas |
2016-06-11 | Cleanup some systrace leftovers. | Mark Kettenis |
2016-05-30 | Identify W^X labelled binaries at execve() time based upon WX_OPENBSD_WXNEEDED | Theo de Raadt |
2016-05-30 | backout to insert correct commit message | Theo de Raadt |
2016-05-30 | *** empty log message *** | Theo de Raadt |
2016-05-23 | Place a cpu-dependent trap/illegal instruction over the remainder of the | Theo de Raadt |
2016-05-10 | SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie | Theo de Raadt |
2016-04-25 | boom goes the dynamite | Ted Unangst |
2016-03-19 | Remove the unused flags argument from VOP_UNLOCK(). | natano |
2016-03-06 | No more compat emulations, so remove ktrace EMUL records and the baggage | Philip Guenther |
2015-12-05 | remove stale lint annotations | Ted Unangst |
2015-11-02 | move the pledgenote annotation from `struct proc' to `struct nameidata' | Sebastien Marie |
2015-10-28 | move p_pledgenote setting next to NDINIT() | Theo de Raadt |
2015-10-25 | Fold "malloc" into "stdio" and -- recognizing that no program so far has | Theo de Raadt |
2015-10-10 | I forgot execve would go through the namei codepath, so a program marked | Theo de Raadt |
2015-10-09 | Rename tame() to pledge(). This fairly interface has evolved to be more | Theo de Raadt |
2015-10-07 | Add the tame "exec" request. This allows processes which request | Theo de Raadt |
2015-10-02 | missing ) in COMPAT_LINUX block | Theo de Raadt |
2015-10-02 | Add ktracing of argv and envp to execve(2), with envp not traced by default | Philip Guenther |
2015-09-28 | Track size of an opaque allocation to pass to free() later | Theo de Raadt |
2015-07-22 | memory leak in execve with systrace, plus some unreachable code | Theo de Raadt |
2015-07-20 | Add kbind, a syscall for ld.so to use to securely and efficiently update | Philip Guenther |
2015-03-14 | Remove some includes include-what-you-use claims don't | Jonathan Gray |
2015-02-09 | Change the way stackgap_random is applied. Instead of applying it within the | Miod Vallat |
2015-02-09 | Stop using USRSTACK as the edge of the stack, but rather use the vmspace | Miod Vallat |
2015-02-07 | forbid execve() with argc == 0. prompted by a millert email. | Ted Unangst |
2015-01-26 | Move the "stackgap" from the stack into its own page at a random address. | Mark Kettenis |