summaryrefslogtreecommitdiff
path: root/sys/kern/kern_pledge.c
AgeCommit message (Expand)Author
2016-05-15remove chroot(2) from allowed syscalls under pledge(2).Sebastien Marie
2016-04-281) Split pledge whitelist path handling out of pledge_namei() and intoBob Beck
2016-04-25simplifies the check for allowing only promisesSebastien Marie
2016-04-25removes an unneeded check on flags (used historically when tame(2) was usingSebastien Marie
2016-03-30Add getlogin_r syscall that checks and returns errors like userspacePhilip Guenther
2016-03-25Silences compiler warnings, about used uninitialized variables. These lengthsSebastien Marie
2016-03-22allow fpathconf() in stdio mode, since it is an innocuous queryTheo de Raadt
2016-03-21Rename the system call sendsyslog2 to sendsyslog. Keep the old oneAlexander Bluhm
2016-03-16Expose new audio ioctls that do one thing only: start and stop DMA,Alexandre Ratchov
2016-03-15pledge: wl_paths: resolvpath() logic errorSebastien Marie
2016-03-15pledge: wl_paths: corrects a memory leak in error code path and an evaluationSebastien Marie
2016-03-13keep disabled wl_paths for now. the expensiveness impact need to be betterSebastien Marie
2016-03-13reenable wl_paths (whitelisted-paths) in pledge(2)Sebastien Marie
2016-03-13pledge: replace #if 0 printf with DNPRINTF macroSebastien Marie
2016-03-13pledge: let wl_paths works well with chrootSebastien Marie
2016-03-13corrects on off-by-one error in pledge_namei()Sebastien Marie
2016-03-11pledge: define the meaning of passing NULL to one arguments of pledge(2) as "ISebastien Marie
2016-02-17Return ENOTTY for TIOCFLUSH when allowed by pledge but the fd isTodd C. Miller
2016-01-19Check if the vnode type is VBAD (corresponds to disconnectedAlexandre Ratchov
2016-01-18Add SYS_truncate as a "wpath" operation. Omission noticed by tb and sthen.Theo de Raadt
2016-01-09drop "abort" promise, and make it the default behaviour.Sebastien Marie
2016-01-08Add "vmm" pledge to allow restricted ioctl access to /dev/vmm.Reyk Floeter
2016-01-06turn off the whitepath code for now; we're not sure it's ready for releaseTed Unangst
2016-01-06remove unnecessary casts where the incoming type is void *.Ted Unangst
2016-01-06Add pledge "drm", which allows a subset of the drm(4) ioctls. These areMark Kettenis
2016-01-05annoying whitespaceTheo de Raadt
2015-12-27Add missing #include "audio.h". Fixes sndiod pledge issue reported bytb
2015-12-27wrap "audio" pledge code in NAUDIO > 0, because there are a fewTheo de Raadt
2015-12-23pledge "audio" code block must be !SMALL_KERNELTheo de Raadt
2015-12-23If PLEDGE_AUDIO is set, allow audio(4) ioctls necessaryAlexandre Ratchov
2015-12-06Change kernel internal pledge variables to 64bit (to prepare for moreTheo de Raadt
2015-12-05Study of kernel code complete. Permit ioctl SIOCGIFMEDIA for pledgeTheo de Raadt
2015-12-04allow utrace(2) by default.Theo de Raadt
2015-12-04remove PLEDGE_INET granting when using "getpw" in YP environnmentSebastien Marie
2015-12-04Add pledge "dpath", which provides access to mknod(2) and mkfifo(2).Theo de Raadt
2015-12-04Do not think atomicity is required here. In any case, prepare forTheo de Raadt
2015-12-03Remove the /usr/share/nls/ exception from pledge(2). The libcAlexander Bluhm
2015-12-03pledge(pf) needs to allow DIOCKILLSRCNODES, used in relayd.Sebastian Benoit
2015-11-29On a SMALL_KERNEL, pledge "pf" has to be a no-op. We cannot matchTheo de Raadt
2015-11-29Add pledge "pf" which allows ioctls on pf(4). This will be used bySebastian Benoit
2015-11-28pledge: allow getsockopt IP_IPDEFTTL with promise inetSebastian Benoit
2015-11-27Two additional ioctls for pledge("disklabel"), needed by installboot.Jeremie Courreges-Anglas
2015-11-25permit kern.maxpartitionsTheo de Raadt
2015-11-24Add sendsyslog2(), which accepts the syslog/openlog "logopt" flagTheo de Raadt
2015-11-23the "getpw" test for /dev/tty is only needed for readpassphrase(3),Theo de Raadt
2015-11-23need sys/device.hTheo de Raadt
2015-11-22For "disklabel", allow sysctl mach.chr2kblk and ioctl BIOCINQ/BIOCVOLTheo de Raadt
2015-11-22"getpw" should also allow access to /etc/netidTheo de Raadt
2015-11-20Permit msync(2) in the "stdio" set; only a few programs use it relatedTheo de Raadt
2015-11-20Add pledge "disklabel", which allows sysctl kern.rawpartition, aTheo de Raadt