Age | Commit message (Expand) | Author |
2017-10-07 | In "tty", permitting TIOCSTART is fine | Theo de Raadt |
2017-10-07 | permit SYS___set_tcb, upcoming code will require this | Theo de Raadt |
2017-09-08 | If you use sys/param.h, you don't need sys/types.h | Theo de Raadt |
2017-08-29 | Remove old deactivated pledge path code. A replacement mechanism is | Theo de Raadt |
2017-08-21 | Allow SIOCGIFAFLAG_IN6 and SIOCGIFALIFETIME_IN6 ioctls with | Florian Obser |
2017-07-28 | Allow SIOCGIFDESCR with "route" promise in preparation for pledging snmpd. | rob |
2017-06-29 | Due to risks known for decades, TIOCSTI now performs no action, and simply | Theo de Raadt |
2017-06-21 | Permit TIOCSTAT on a tty. | Theo de Raadt |
2017-06-19 | Terminate pledge log(9) with newline. This fixes dmesg(8) output. | Alexander Bluhm |
2017-06-12 | Pledge is fairly done, so the kernel printf's can be converted to log() | Theo de Raadt |
2017-06-07 | Add an acct(5) flag for pledge violations. Then lastcomm(1) shows | Alexander Bluhm |
2017-06-03 | Avoid printing garbage when aborting a program that tries to use a | Theo Buehler |
2017-05-30 | getrtable() is now permitted in "stdio". It carries no risk factors. | Theo de Raadt |
2017-05-21 | Enable radeondrm(4) on loongson to get accelerated graphics | Visa Hankala |
2017-05-02 | Stricter pledge for bpf. ok deraadt | Martin Natano |
2017-04-29 | Mark futex(2) as PLEDGE_STDIO like all other thread-related syscalls. | Martin Pieuchot |
2017-04-28 | Add futex(2) syscall based on a sane subset of its Linux equivalent. | Martin Pieuchot |
2017-04-20 | only 32 bits of the pledgecode were passed up via ktrace | Theo de Raadt |
2017-04-17 | matthieu@ observes % pax (without any arguments) hits pledge violation, | Theo de Raadt |
2017-04-13 | Delete the getlogin59 syscall, which was last used one year, two releases, | Philip Guenther |
2017-04-11 | Add SIOCATMARK to allow pledge("inet") programs to call sockatmark(3). | Alexander Bluhm |
2017-03-30 | correct NBPFILTER #ifdef's | Theo de Raadt |
2017-03-28 | Allow the multicast ttl/hops and loop options with the mcast pledge. | Alexander Bluhm |
2017-03-27 | wrap bpf pledge code in #if BPFFILTER | Theo de Raadt |
2017-03-26 | Inside pledge_ioctl, wrap #if's around the complete sub-blocks. | Theo de Raadt |
2017-03-26 | For the tape ioctls, recognize that block devices don't exist anymore. | Theo de Raadt |
2017-03-18 | The "ioctl" pledge which was had functionality split out into "tape", | Theo de Raadt |
2017-03-14 | Allow SIOCGIFXFLAGS in pledge("route") along side SIOCGIFFLAGS, needed | Florian Obser |
2017-03-11 | pax conversion was missed; give this another week | Theo de Raadt |
2017-03-11 | remove pledge "ioctl" backwards compat | Theo de Raadt |
2017-01-23 | Backwards compat for pledge "ioctl" for about a week | Theo de Raadt |
2017-01-23 | Split pledge "ioctl" into "tape" and "bpf", and allow SIOCGIFGROUP only | Theo de Raadt |
2017-01-23 | whitespace | Theo de Raadt |
2017-01-21 | p_comm is the process's command and isn't per thread, so move it from | Philip Guenther |
2016-11-13 | Fix typo in comment: it's vm.loadavg, not kern.loadavg. | Theo Buehler |
2016-10-27 | For consistency, allow symlinkat(2) in the same way as symlink(2); | Ingo Schwarze |
2016-10-21 | pledge changes needed to support pledging vmd(8) on i386, forthcoming. | Mike Larkin |
2016-10-06 | In pledge_namei_wlpath() if resolvpath() errors out early it will not | Jonathan Gray |
2016-10-05 | Display the process's PID with p->p_p->ps_pid, not p->p_pid. | Philip Guenther |
2016-09-17 | NPF > 0 is a better test than SMALL for presence of pf. | Ted Unangst |
2016-09-04 | Remove sys_o58_kill since OpenBSD 6.0 has been tagged/released. | Joel Sing |
2016-08-31 | Delete unused ioctls and associated macros. Move macros that are still | Alexandre Ratchov |
2016-07-28 | Revert previous commit | Mike Belopuhov |
2016-07-28 | Convert ifq_deq_{begin,rollback,commit} dance to a single ifq_dequeue | Mike Belopuhov |
2016-07-12 | remove more noisy messages in "sendfd" and "recvfd" | Theo de Raadt |
2016-07-11 | be less noisy on console in case of "recvfd" refusal | Theo de Raadt |
2016-07-10 | pledge: use uint64_t instead of int for temporary storing a 64bit integer | Sebastien Marie |
2016-07-10 | Paranoia: check KTRPOINT() before calling ktrpledge() to guarantee we | Philip Guenther |
2016-07-03 | introduces new promise "chown" to allow changing owner/group with *chown(2) f... | Sebastien Marie |
2016-06-28 | in pledgereq (the array for doing correspondance between textual promise as i... | Sebastien Marie |