Age | Commit message (Expand) | Author |
2016-05-15 | remove chroot(2) from allowed syscalls under pledge(2). | Sebastien Marie |
2016-04-28 | 1) Split pledge whitelist path handling out of pledge_namei() and into | Bob Beck |
2016-04-25 | simplifies the check for allowing only promises | Sebastien Marie |
2016-04-25 | removes an unneeded check on flags (used historically when tame(2) was using | Sebastien Marie |
2016-03-30 | Add getlogin_r syscall that checks and returns errors like userspace | Philip Guenther |
2016-03-25 | Silences compiler warnings, about used uninitialized variables. These lengths | Sebastien Marie |
2016-03-22 | allow fpathconf() in stdio mode, since it is an innocuous query | Theo de Raadt |
2016-03-21 | Rename the system call sendsyslog2 to sendsyslog. Keep the old one | Alexander Bluhm |
2016-03-16 | Expose new audio ioctls that do one thing only: start and stop DMA, | Alexandre Ratchov |
2016-03-15 | pledge: wl_paths: resolvpath() logic error | Sebastien Marie |
2016-03-15 | pledge: wl_paths: corrects a memory leak in error code path and an evaluation | Sebastien Marie |
2016-03-13 | keep disabled wl_paths for now. the expensiveness impact need to be better | Sebastien Marie |
2016-03-13 | reenable wl_paths (whitelisted-paths) in pledge(2) | Sebastien Marie |
2016-03-13 | pledge: replace #if 0 printf with DNPRINTF macro | Sebastien Marie |
2016-03-13 | pledge: let wl_paths works well with chroot | Sebastien Marie |
2016-03-13 | corrects on off-by-one error in pledge_namei() | Sebastien Marie |
2016-03-11 | pledge: define the meaning of passing NULL to one arguments of pledge(2) as "I | Sebastien Marie |
2016-02-17 | Return ENOTTY for TIOCFLUSH when allowed by pledge but the fd is | Todd C. Miller |
2016-01-19 | Check if the vnode type is VBAD (corresponds to disconnected | Alexandre Ratchov |
2016-01-18 | Add SYS_truncate as a "wpath" operation. Omission noticed by tb and sthen. | Theo de Raadt |
2016-01-09 | drop "abort" promise, and make it the default behaviour. | Sebastien Marie |
2016-01-08 | Add "vmm" pledge to allow restricted ioctl access to /dev/vmm. | Reyk Floeter |
2016-01-06 | turn off the whitepath code for now; we're not sure it's ready for release | Ted Unangst |
2016-01-06 | remove unnecessary casts where the incoming type is void *. | Ted Unangst |
2016-01-06 | Add pledge "drm", which allows a subset of the drm(4) ioctls. These are | Mark Kettenis |
2016-01-05 | annoying whitespace | Theo de Raadt |
2015-12-27 | Add missing #include "audio.h". Fixes sndiod pledge issue reported by | tb |
2015-12-27 | wrap "audio" pledge code in NAUDIO > 0, because there are a few | Theo de Raadt |
2015-12-23 | pledge "audio" code block must be !SMALL_KERNEL | Theo de Raadt |
2015-12-23 | If PLEDGE_AUDIO is set, allow audio(4) ioctls necessary | Alexandre Ratchov |
2015-12-06 | Change kernel internal pledge variables to 64bit (to prepare for more | Theo de Raadt |
2015-12-05 | Study of kernel code complete. Permit ioctl SIOCGIFMEDIA for pledge | Theo de Raadt |
2015-12-04 | allow utrace(2) by default. | Theo de Raadt |
2015-12-04 | remove PLEDGE_INET granting when using "getpw" in YP environnment | Sebastien Marie |
2015-12-04 | Add pledge "dpath", which provides access to mknod(2) and mkfifo(2). | Theo de Raadt |
2015-12-04 | Do not think atomicity is required here. In any case, prepare for | Theo de Raadt |
2015-12-03 | Remove the /usr/share/nls/ exception from pledge(2). The libc | Alexander Bluhm |
2015-12-03 | pledge(pf) needs to allow DIOCKILLSRCNODES, used in relayd. | Sebastian Benoit |
2015-11-29 | On a SMALL_KERNEL, pledge "pf" has to be a no-op. We cannot match | Theo de Raadt |
2015-11-29 | Add pledge "pf" which allows ioctls on pf(4). This will be used by | Sebastian Benoit |
2015-11-28 | pledge: allow getsockopt IP_IPDEFTTL with promise inet | Sebastian Benoit |
2015-11-27 | Two additional ioctls for pledge("disklabel"), needed by installboot. | Jeremie Courreges-Anglas |
2015-11-25 | permit kern.maxpartitions | Theo de Raadt |
2015-11-24 | Add sendsyslog2(), which accepts the syslog/openlog "logopt" flag | Theo de Raadt |
2015-11-23 | the "getpw" test for /dev/tty is only needed for readpassphrase(3), | Theo de Raadt |
2015-11-23 | need sys/device.h | Theo de Raadt |
2015-11-22 | For "disklabel", allow sysctl mach.chr2kblk and ioctl BIOCINQ/BIOCVOL | Theo de Raadt |
2015-11-22 | "getpw" should also allow access to /etc/netid | Theo de Raadt |
2015-11-20 | Permit msync(2) in the "stdio" set; only a few programs use it related | Theo de Raadt |
2015-11-20 | Add pledge "disklabel", which allows sysctl kern.rawpartition, a | Theo de Raadt |