summaryrefslogtreecommitdiffstats
path: root/sys/sys/pledge.h (follow)
Commit message (Expand)AuthorAgeFilesLines
* Declare pledgenames[] as const.visa2020-04-051-3/+3
* the pledge STATLIE code is no longer needed, as discussed with beck.deraadt2019-06-191-2/+1
* Add "video" promise.landry2019-01-211-1/+3
* Get rid of PLEDGE_STAT, which was a hack used for unveil.beck2018-08-111-2/+1
* Unveiling unveil(2).beck2018-07-131-1/+5
* Introduce "wroute" promise.florian2018-06-161-1/+3
* prot_exec is the correct name; spotted by landryderaadt2018-04-261-2/+2
* Change `so_state' and `so_error' to unsigned int such that they canmpi2018-01-091-2/+2
* pledge()'s 2nd argument becomes char *execpromises, which becomes thederaadt2017-12-121-1/+3
* Remove old deactivated pledge path code. A replacement mechanism isderaadt2017-08-291-15/+1
* only 32 bits of the pledgecode were passed up via ktracederaadt2017-04-201-2/+2
* Split pledge "ioctl" into "tape" and "bpf", and allow SIOCGIFGROUP onlyderaadt2017-01-231-3/+5
* introduces new promise "chown" to allow changing owner/group with *chown(2) familysemarie2016-07-031-1/+4
* 1) Split pledge whitelist path handling out of pledge_namei() and intobeck2016-04-281-1/+2
* drop "abort" promise, and make it the default behaviour.semarie2016-01-091-3/+1
* Add "vmm" pledge to allow restricted ioctl access to /dev/vmm.reyk2016-01-081-1/+4
* Add pledge "drm", which allows a subset of the drm(4) ioctls. These arekettenis2016-01-061-1/+4
* Change kernel internal pledge variables to 64bit (to prepare for morederaadt2015-12-061-39/+43
* Add pledge "dpath", which provides access to mknod(2) and mkfifo(2).deraadt2015-12-041-2/+6
* Add pledge "pf" which allows ioctls on pf(4). This will be used bybenno2015-11-291-1/+3
* Add pledge "disklabel", which allows sysctl kern.rawpartition, aderaadt2015-11-201-1/+3
* remove pledge_aftersyscall() prototype as the function was been removed.semarie2015-11-181-4/+3
* check domain and state of socket against pledge promise.semarie2015-11-181-2/+2
* pledge_ioctl only takes files, adjust prototype. ok semarietedu2015-11-041-2/+2
* move the pledgenote annotation from `struct proc' to `struct nameidata'semarie2015-11-021-2/+3
* refactor pledge_*_check and pledge_fail functionssemarie2015-11-011-15/+16
* uniformize "always allowed syscalls" with pledgesemarie2015-11-011-1/+2
* Prevent F_SETOWN, unless a "proc" pledge was made.deraadt2015-10-281-1/+2
* make pledge_check(), used for syscall check with pledge, returns an error andsemarie2015-10-261-2/+2
* Fold "malloc" into "stdio" and -- recognizing that no program so far hasderaadt2015-10-251-18/+51
* pledge_sockopt_check is shared between setsockopt/getsockopt. nicmderaadt2015-10-251-2/+2
* Add 3 new pledge requests. "ps" exposes enough sysctl information forderaadt2015-10-231-1/+5
* At guenther's suggestion replace dnssocket() with a SOCK_DNS flag onderaadt2015-10-201-3/+2
* Always allow the setsockopt & getsockopt system calls... however, in thederaadt2015-10-201-2/+2
* Instead of fragile CMSG parsing, control pledge "sendfd" and "recvfd"deraadt2015-10-181-3/+3
* Add two new system calls: dnssocket() and dnsconnect(). This creates aderaadt2015-10-181-6/+4
* Add pledge "id" support. This request permits setuid/seteuid/setresuid,deraadt2015-10-171-2/+2
* delete pledge_bind_check() function and remove pledge_bind_check() call from sys_bind().semarie2015-10-161-2/+1
* Implement real "flock" request and add it to userland programs thatmillert2015-10-161-1/+3
* When pledged with "fattr", allow chown to supplimentary groups. Thisderaadt2015-10-141-1/+2
* Rename tame() to pledge(). This fairly interface has evolved to be morederaadt2015-10-091-0/+92
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.