summaryrefslogtreecommitdiff
path: root/sys/kern/kern_tame.c
AgeCommit message (Expand)Author
2015-10-07Split out routing sysctl's from tame "inet", and put them into theTheo de Raadt
2015-10-07Add the tame "exec" request. This allows processes which requestTheo de Raadt
2015-10-06A process should be able to do sigpending for itselfTheo de Raadt
2015-10-06For TAME_PROC, allow setrlimit()Theo de Raadt
2015-10-06When "proc" is requested, allow setpgid() and sigsuspend().Theo de Raadt
2015-10-06Add new "tty" request, which allows TIOCGETA, TIOCGPGRP, TIOCGWINSZ,Theo de Raadt
2015-10-06Rework the tame cmsg handler to make it work both ways. While on recv oneClaudio Jeker
2015-10-06oops, namei was never allowing through valid CPATH operationsTheo de Raadt
2015-10-06Add getrusage() to the TAME_SELF catagory.Theo de Raadt
2015-10-06Enable ioctl() in the "rw" request, to support FIONREAD/FIONBIO easierTheo de Raadt
2015-10-04Move getcwd to a seperate area, with a hand-waving explanation for whyTheo de Raadt
2015-10-04Allow sysctl read of vm.vm_psstrings, as setproctitle() uses this toTheo de Raadt
2015-10-04spellingTheo de Raadt
2015-10-03Add ktracing of tame()'s arguments' valuesPhilip Guenther
2015-10-02I see no evidence that lstat() is being done for /etc/resolv.conf, norTheo de Raadt
2015-10-02kern_tame.cTheo de Raadt
2015-10-02Actually, open of /etc/spwd.db must be handled by returning EPERM, notTheo de Raadt
2015-10-02mention these pathname calls are checked in nameiTheo de Raadt
2015-10-02remove some debug printf no longer neededTheo de Raadt
2015-10-02changed my mind; block spwd.db, force drop-through to pwd.db for processes un...Theo de Raadt
2015-10-01Fix tame(2) setsockopt check for TCP level.Doug Hogan
2015-10-01add IPv6 equivalents for the permitted IPv4 setsockopts, noticed by doug@,Stuart Henderson
2015-09-30implement new "prot_exec" tame(2) request:Sebastien Marie
2015-09-29Reluctantly classify statfs and fstatfs as RPATH for now, because theyTheo de Raadt
2015-09-28make using tame path "/" work.Sebastien Marie
2015-09-19In the internal conversion of _TM_* to TAME_*, some bits were lost forSebastien Marie
2015-09-13Rename __sysctl syscall to just sysctl, as the userland wrapper is no longerPhilip Guenther
2015-09-11Convert _TM_ flags to TAME_ flags, collapsing the entire mappingTheo de Raadt
2015-09-11Only include <sys/tame.h> in the .c files that need itPhilip Guenther
2015-09-09Move to next tame() API. The flags are now passed as a very simple string,Theo de Raadt
2015-09-01the special check logic for /usr/share/nls/../libc.cat became failureTheo de Raadt
2015-09-01Corrects a use-after-free in tame_namei().Sebastien Marie
2015-08-31Consider getfsstat() a RPATH, even though it has no path in it. We mayTheo de Raadt
2015-08-31spaces snuck inTheo de Raadt
2015-08-26use ENAMETOOLONG instead of EINVAL for errno when string overflow occurs.Sebastien Marie
2015-08-26After a report from jsg about a memory leak (or was it a double free?),Theo de Raadt
2015-08-26Add TIOCGETA to the tame list for TAME_IOCTL.Doug Hogan
2015-08-26Convert paths argument of tame(2) to const char **.Doug Hogan
2015-08-25remove duplicate SYS_utimes entryJonathan Gray
2015-08-24corrects two potential double-free on `cwdpath'. The variable will be free'edSebastien Marie
2015-08-24Initialize cwdpath so free() is properly handled.Doug Hogan
2015-08-23fix /tmp handling of unlink(); from Caspar SchutijserTheo de Raadt
2015-08-23Perform maximum one cwd lookup in tame(), also make namei version look theTheo de Raadt
2015-08-23Canonicalize non-rooted paths after cwd prepend.Theo de Raadt
2015-08-23check correct offset for terminator; with semarieTheo de Raadt
2015-08-23recompute len when the path is absolute as canonpath could have shrink itSebastien Marie
2015-08-22Move to tame(int flags, char *paths[]) API/ABI.Theo de Raadt
2015-08-21Whitelist TIOCGPGRP (for tcgetpgrp()) in TAME_IOCTL.Doug Hogan
2015-08-20reactivate tame()Theo de Raadt
2015-07-29Neuter tame(2) with ENOSYS for upcoming release cycle, in a fairlyTheo de Raadt
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-12 20:19:09 +0000