d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
243,691 Commits 72 Branches 135 Tags 3.2 GiB
60cdcb644d
Commit Graph

10 Commits

Author SHA1 Message Date
Mariusz Zaborski
e57d2a07c0 libcapsicum: add missing links 
Reported by:	manu
 2018-12-12 20:32:17 +00:00
Mariusz Zaborski
5a453d5f5b libcapsicum: Introduce caph_{rights,ioctls,fcntls}_limit 
The idea behind those functions is not to force consumers to remember that there
is a need to check errno on failure. We already have a caph_enter(3) function
which does the same for cap_enter(2).

MFC after:	2 weeks
 2018-11-04 17:22:58 +00:00
Eitan Adler
8a3255c288 libcapsicum: adding missing man page links 2018-06-18 04:58:48 +00:00
Mariusz Zaborski
c3eed03d15 Add man pages for Capsicum helpers. 
Reviewed by:	cem
Differential Revision:	https://reviews.freebsd.org/D8154
 2016-10-05 20:02:34 +00:00
Mariusz Zaborski
7a6e3cf83e libcapsicum: introduce Capsicum helpers 
Capsicum helpers are a set of inline functions which goal is to reduce
duplicated patterns used to Capsicumize applications.

Reviewed by:	cem, AllanJude, bapt, ed, emaste
Differential Revision:	https://reviews.freebsd.org/D8013
 2016-10-03 20:48:18 +00:00
Glen Barber
659a0a5d64 Remove lib/libcapsicum and libexec/casper, brought back as 
part of a merge mishap.

Reported by:	junovitch
Sponsored by:	The FreeBSD Foundation
 2016-04-17 02:51:04 +00:00
Glen Barber
a70cba9582 First pass through library packaging. 
Sponsored by:	The FreeBSD Foundation
 2016-02-04 21:16:35 +00:00
Baptiste Daroussin
6b129086dc Convert libraries to use LIBADD 
While here reduce a bit overlinking
 2014-11-25 11:07:26 +00:00
Pawel Jakub Dawidek
0f984a9260 Both libcasper and libcapsicum libraries have to be installed in /lib/, 
as they are used by /sbin/casperd.
 2013-12-02 17:07:22 +00:00
Pawel Jakub Dawidek
42a8595256 Please welcome casperd daemon. It (and its services) will be responsible for 
giving access to functionality that is not available in capability mode
sandbox. The functionality can be precisely restricted.

Start with the following services:
- system.dns - provides API compatible to:
	- gethostbyname(3),
	- gethostbyname2(3),
	- gethostbyaddr(3),
	- getaddrinfo(3),
	- getnameinfo(3),
- system.grp - provides getgrent(3)-compatible API,
- system.pwd - provides getpwent(3)-compatible API,
- system.random - allows to obtain entropy from /dev/random,
- system.sysctl - provides sysctlbyname(3-compatible API.

Sponsored by:	The FreeBSD Foundation
 2013-12-02 08:21:28 +00:00