Age | Commit message (Expand) | Author |
2019-06-26 | allow more video(4) ioctls for the video pledge (required by chromium) | Robert Nagy |
2019-06-16 | SYS___realpath is legitimately PLEDGE_STDIO, because the other pledge | Theo de Raadt |
2019-05-13 | Add a kernel implementation of realpath() as __realpath(). | Bob Beck |
2019-02-14 | Allow *at variant of mkfifo and mknod, too. | Florian Obser |
2019-01-22 | #ifdef video junk as required. | Theo de Raadt |
2019-01-21 | Add "video" promise. | Landry Breuil |
2019-01-18 | delete vmm(4) in i386 | pd |
2019-01-06 | the pledge handing for access(2) of /var/run/ypbind.lock is artificially | Theo de Raadt |
2019-01-06 | fold a bunch of similar sysctl cases into a switch. | Ted Unangst |
2018-11-17 | Add new KERN_CPUSTATS sysctl(2) so we can identify offline CPUs. | cheloha |
2018-11-06 | new sysctl for userland malloc flags, kernel part. ok millert@ deraadt@ | Otto Moerbeek |
2018-09-13 | When unveil(2) was introduced one break from SYS_access case was removed | Ricardo Mestre |
2018-08-20 | Preparations for arm64 radeondrm(4) support. | Mark Kettenis |
2018-08-13 | The first panic in pledge_namei should only be for ni_pledge == 0 | Theo de Raadt |
2018-08-11 | Get rid of PLEDGE_STAT, which was a hack used for unveil. | Bob Beck |
2018-08-02 | Grammar fix in comment. | rob |
2018-07-27 | Add SIOCSIFMTU to the wroute pledge. | bket |
2018-07-15 | Restore correct behaviour to pledge for access and stat, which was broken | Bob Beck |
2018-07-13 | Unveiling unveil(2). | Bob Beck |
2018-07-12 | Add hw.ncpuonline to count the number of online CPUs. | cheloha |
2018-06-25 | Implement DRI3/prime support. This allows graphics buffers to be passed | Mark Kettenis |
2018-06-20 | Grab and/or assert for the KERNEL_LOCK() in in ktrace & pledge. | Martin Pieuchot |
2018-06-16 | Introduce "wroute" promise. | Florian Obser |
2018-06-03 | on i386, libm does sysctl to discover is the system has SSE. Whitelist | Theo de Raadt |
2018-04-28 | Remove redundant error check | kn |
2018-03-27 | Make sure that programs violating a pledge(2) promise or some memory | Martin Pieuchot |
2018-01-09 | Change `so_state' and `so_error' to unsigned int such that they can | Martin Pieuchot |
2018-01-08 | Allow TIOCUCNTL issued on a pty(4) master in promise "tty". | Martin Pieuchot |
2017-12-12 | pledge()'s 2nd argument becomes char *execpromises, which becomes the | Theo de Raadt |
2017-12-09 | More precision in pledge sysctl report | Theo de Raadt |
2017-11-17 | permit IPV6_V6ONLY in sockopt | Aaron Bieber |
2017-10-12 | Print the word pledge in the kernel log when there is a violation. | Alexander Bluhm |
2017-10-07 | In "tty", permitting TIOCSTART is fine | Theo de Raadt |
2017-10-07 | permit SYS___set_tcb, upcoming code will require this | Theo de Raadt |
2017-09-08 | If you use sys/param.h, you don't need sys/types.h | Theo de Raadt |
2017-08-29 | Remove old deactivated pledge path code. A replacement mechanism is | Theo de Raadt |
2017-08-21 | Allow SIOCGIFAFLAG_IN6 and SIOCGIFALIFETIME_IN6 ioctls with | Florian Obser |
2017-07-28 | Allow SIOCGIFDESCR with "route" promise in preparation for pledging snmpd. | rob |
2017-06-29 | Due to risks known for decades, TIOCSTI now performs no action, and simply | Theo de Raadt |
2017-06-21 | Permit TIOCSTAT on a tty. | Theo de Raadt |
2017-06-19 | Terminate pledge log(9) with newline. This fixes dmesg(8) output. | Alexander Bluhm |
2017-06-12 | Pledge is fairly done, so the kernel printf's can be converted to log() | Theo de Raadt |
2017-06-07 | Add an acct(5) flag for pledge violations. Then lastcomm(1) shows | Alexander Bluhm |
2017-06-03 | Avoid printing garbage when aborting a program that tries to use a | Theo Buehler |
2017-05-30 | getrtable() is now permitted in "stdio". It carries no risk factors. | Theo de Raadt |
2017-05-21 | Enable radeondrm(4) on loongson to get accelerated graphics | Visa Hankala |
2017-05-02 | Stricter pledge for bpf. ok deraadt | Martin Natano |
2017-04-29 | Mark futex(2) as PLEDGE_STDIO like all other thread-related syscalls. | Martin Pieuchot |
2017-04-28 | Add futex(2) syscall based on a sane subset of its Linux equivalent. | Martin Pieuchot |
2017-04-20 | only 32 bits of the pledgecode were passed up via ktrace | Theo de Raadt |