| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| ... | |
| * | Fix jail name checking that disallowed anything that starts with '0'. | Jamie Gritton | 2015-12-15 | 1 | -3/+6 |
| * | Speed up rctl operation with large rulesets, by holding the lock | Edward Tomasz Napierala | 2015-11-15 | 1 | -1/+6 |
| * | Add support to the jail framework to be able to mount linsysfs(5) and | Marcelo Araujo | 2015-07-19 | 1 | -0/+16 |
| * | Move chdir/chroot-related fdp manipulation to kern_descrip.c | Mateusz Guzik | 2015-07-11 | 1 | -1/+1 |
| * | Initialise pr_enforce_statfs from the "default" sysctl value and | Bjoern A. Zeeb | 2015-06-17 | 1 | -1/+1 |
| * | Add kern.racct.enable tunable and RACCT_DISABLED config option. | Edward Tomasz Napierala | 2015-04-29 | 1 | -4/+18 |
| * | Do not include if_var.h and in6_var.h into kern_jail.c. It is now possible | Gleb Smirnoff | 2015-03-24 | 1 | -4/+0 |
| * | cred: add proc_set_cred helper | Mateusz Guzik | 2015-03-16 | 1 | -1/+1 |
| * | Format the line properly (wrap before column 80). | Ian Lepore | 2015-02-28 | 1 | -1/+2 |
| * | Export the new osreldate and osrelease jail parms in jail_get(2). | Ian Lepore | 2015-02-28 | 1 | -0/+6 |
| * | Allow the kern.osrelease and kern.osreldate sysctl values to be set in a | Ian Lepore | 2015-02-27 | 1 | -2/+69 |
| * | Add allow.mount.fdescfs jail flag. | Jamie Gritton | 2015-01-28 | 1 | -0/+8 |
| * | Remove the prison flags PR_IP4_DISABLE and PR_IP6_DISABLE, which have been | Jamie Gritton | 2015-01-14 | 1 | -18/+10 |
| * | Don't set prison's pr_ip4s or pr_ip6s to -1. | Jamie Gritton | 2015-01-14 | 1 | -2/+2 |
| * | Avoid unlocking unlocked mutex in RCTL jail code. Specific test case | Edward Tomasz Napierala | 2014-09-09 | 1 | -2/+4 |
| * | Remove AppleTalk support. | Gleb Smirnoff | 2014-03-14 | 1 | -5/+0 |
| * | Remove IPX support. | Gleb Smirnoff | 2014-03-14 | 1 | -6/+0 |
| * | Back out r261266 pending security buy-in. | Jamie Gritton | 2014-01-31 | 1 | -25/+0 |
| * | Add a jail parameter, allow.kmem, which lets jailed processes access | Jamie Gritton | 2014-01-29 | 1 | -0/+25 |
| * | Fix copy/paste typo. | Andrey V. Elsukov | 2013-12-17 | 1 | -1/+1 |
| * | jail_v0.ip_number was always in host byte order. This was handled | Peter Wemm | 2013-11-28 | 1 | -1/+1 |
| * | prison_check_ip4() can take const arguments. | Gleb Smirnoff | 2013-11-01 | 1 | -3/+3 |
| * | The r48589 promised to remove implicit inclusion of if_var.h soon. Prepare | Gleb Smirnoff | 2013-10-26 | 1 | -0/+1 |
| * | Keep PRIV_KMEM_READ permitted inside jails as it is on the outside. | Jamie Gritton | 2013-09-06 | 1 | -0/+7 |
| * | Allow tmpfs be mounted inside jail. | Xin LI | 2013-08-23 | 1 | -0/+8 |
| * | Refine the "nojail" rc keyword, adding "nojailvnet" for files that don't | Jamie Gritton | 2013-05-19 | 1 | -0/+20 |
| * | prison_racct_detach can be called for not fully initialized jail, so make it ... | Mateusz Guzik | 2012-12-18 | 1 | -0/+2 |
| * | Remove the support for using non-mpsafe filesystem modules. | Konstantin Belousov | 2012-10-22 | 1 | -21/+6 |
| * | Fix use-after-free in kern_jail_set() triggered e.g. by attempts | Edward Tomasz Napierala | 2012-05-22 | 1 | -6/+10 |
| * | Don't leak locks in prison_racct_modify(). | Edward Tomasz Napierala | 2012-05-22 | 1 | -1/+4 |
| * | Make racct and rctl correctly handle jail renaming. Previously | Edward Tomasz Napierala | 2012-03-06 | 1 | -8/+71 |
| * | Add procfs to jail-mountable filesystems. | Martin Matuska | 2012-02-29 | 1 | -0/+8 |
| * | Analogous to r232059, add a parameter for the ZFS file system: | Martin Matuska | 2012-02-26 | 1 | -4/+12 |
| * | To improve control over the use of mount(8) inside a jail(8), introduce | Martin Matuska | 2012-02-23 | 1 | -11/+26 |
| * | Add support for mounting devfs inside jails. | Martin Matuska | 2012-02-09 | 1 | -2/+55 |
| * | Use separate buffer for global path to avoid overflow of path buffer. | Martin Matuska | 2012-01-21 | 1 | -3/+11 |
| * | Fix missing in r230129: | Martin Matuska | 2012-01-15 | 1 | -0/+1 |
| * | Introduce vn_path_to_global_path() | Martin Matuska | 2012-01-15 | 1 | -19/+31 |
| * | Mark all SYSCTL_NODEs static that have no corresponding SYSCTL_DECLs. | Ed Schouten | 2011-11-07 | 1 | -1/+1 |
| * | Mark MALLOC_DEFINEs static that have no corresponding MALLOC_DECLAREs. | Ed Schouten | 2011-11-07 | 1 | -1/+1 |
| * | In order to maximize the re-usability of kernel code in user space this | Kip Macy | 2011-09-16 | 1 | -6/+6 |
| * | Delay the recursive decrement of pr_uref when jails are made invisible | Jamie Gritton | 2011-08-26 | 1 | -26/+5 |
| * | Always disable mount and unmount for jails with enforce_statfs==2. | Martin Matuska | 2011-08-02 | 1 | -1/+2 |
| * | This update changes the mnt_flag field in the mount structure from | Kirk McKusick | 2011-07-24 | 1 | -2/+2 |
| * | Add infrastructure to allow all frames/packets received on an interface | Bjoern A. Zeeb | 2011-07-03 | 1 | -0/+1 |
| * | Change the way rctl interfaces with jails by introducing prison_racct | Edward Tomasz Napierala | 2011-05-03 | 1 | -9/+107 |
| * | Add rctl. It's used by racct to take user-configurable actions based | Edward Tomasz Napierala | 2011-03-30 | 1 | -0/+4 |
| * | Add racct. It's an API to keep per-process, per-jail, per-loginclass | Edward Tomasz Napierala | 2011-03-29 | 1 | -0/+17 |
| * | - Merge changes to the base system to support OFED. These include | Jeff Roberson | 2011-03-21 | 1 | -1/+1 |
| * | Add two new system calls, setloginclass(2) and getloginclass(2). This makes | Edward Tomasz Napierala | 2011-03-05 | 1 | -0/+6 |
