d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
a98a0090b2
freebsd-dev/sys/netinet
History
Shivank Garg 215bab7924 mac_ipacl: new MAC policy module to limit jail/vnet IP configuration 
The mac_ipacl policy module enables fine-grained control over IP address
configuration within VNET jails from the base system.
It allows the root user to define rules governing IP addresses for
jails and their interfaces using the sysctl interface.

Requested by:	multiple
Sponsored by:	Google, Inc. (GSoC 2019)
MFC after:	2 months
Reviewed by:	bz, dch (both earlier versions)
Differential Revision: https://reviews.freebsd.org/D20967
2023-07-26 00:07:57 +00:00
..
cc tcp: Add and update cubic module variable names 2023-06-06 23:09:28 +02:00
khelp spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
libalias Update various sys/netinet source files to conform with the style(9) 2023-06-20 23:23:19 +02:00
netdump
tcp_stacks tcp: fix TCP MD5 computation for the BBR and RACK stack 2023-06-21 22:54:33 +02:00
accf_data.c spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
accf_dns.c spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
accf_http.c spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
dccp.h spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
icmp6.h
icmp_var.h
if_ether.c
if_ether.h
igmp_var.h
igmp.c
igmp.h
in_cksum.c
in_debug.c spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
in_fib_algo.c spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
in_fib_dxr.c spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
in_fib.c
in_fib.h
in_gif.c
in_jail.c
in_kdtrace.c spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
in_kdtrace.h spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
in_mcast.c
in_pcb_var.h inpcb: Avoid inp_cred dereferences in SMR-protected lookup 2023-04-20 12:13:06 -04:00
in_pcb.c inpcb: Restore missing validation of local addresses for jailed sockets 2023-05-30 15:15:48 -04:00
in_pcb.h tcp: move HPTS/LRO flags out of inpcb to tcpcb 2023-04-25 12:19:48 -07:00
in_prot.c
in_proto.c
in_rmx.c
in_rss.c
in_rss.h
in_systm.h
in_var.h netinet[6]: make in[6]_control use ucred instead of td. 2023-07-01 06:52:24 +00:00
in.c mac_ipacl: new MAC policy module to limit jail/vnet IP configuration 2023-07-26 00:07:57 +00:00
in.h
ip6.h netinet6: make IPv6 fragment TTL per-VNET configurable. 2023-06-01 12:04:49 +00:00
ip_carp_nl.h carp: allow commands to use interface name rather than index 2023-03-31 11:29:58 +02:00
ip_carp.c carp: fix unicast link-local 2023-05-18 17:47:03 +02:00
ip_carp.h
ip_divert.c
ip_divert.h
ip_dummynet.h spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
ip_ecn.c
ip_ecn.h
ip_encap.c
ip_encap.h
ip_fastfwd.c
ip_fw.h spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
ip_gre.c spdx: The BSD-2-Clause-NetBSD identifier is obsolete, drop -NetBSD 2023-05-12 10:44:04 -06:00
ip_icmp.c
ip_icmp.h
ip_id.c spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
ip_input.c netinet*: Fix redirects for connections from localhost 2023-05-31 11:11:05 +01:00
ip_mroute.c ip_mroute: Delete unreachable code 2023-04-23 12:47:57 +08:00
ip_mroute.h
ip_options.c
ip_options.h
ip_output.c ip output: ensure that mbufs are mapped if ipsec is enabled 2023-07-21 21:51:13 +03:00
ip_reass.c
ip_var.h netinet*: Fix redirects for connections from localhost 2023-05-31 11:11:05 +01:00
ip.h
pim_var.h
pim.h
raw_ip.c inpcb: Split PCB hash tables 2023-04-20 12:13:06 -04:00
sctp_asconf.c
sctp_asconf.h
sctp_auth.c
sctp_auth.h
sctp_bsd_addr.c
sctp_bsd_addr.h
sctp_cc_functions.c
sctp_constants.h
sctp_crc32.c
sctp_crc32.h
sctp_header.h sctp: update zero checksum support 2023-07-23 06:41:32 +02:00
sctp_indata.c
sctp_indata.h
sctp_input.c sctp: update zero checksum support 2023-07-23 06:41:32 +02:00
sctp_input.h
sctp_kdtrace.c
sctp_kdtrace.h
sctp_lock_bsd.h
sctp_module.c spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
sctp_os_bsd.h
sctp_os.h
sctp_output.c sctp: update zero checksum support 2023-07-23 06:41:32 +02:00
sctp_output.h
sctp_pcb.c sctp: update zero checksum support 2023-07-23 06:41:32 +02:00
sctp_pcb.h sctp: update zero checksum support 2023-07-23 06:41:32 +02:00
sctp_peeloff.c
sctp_peeloff.h
sctp_ss_functions.c spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
sctp_structs.h sctp: update zero checksum support 2023-07-23 06:41:32 +02:00
sctp_syscalls.c
sctp_sysctl.c
sctp_sysctl.h
sctp_timer.c
sctp_timer.h
sctp_uio.h sctp: update zero checksum support 2023-07-23 06:41:32 +02:00
sctp_usrreq.c sctp: update zero checksum support 2023-07-23 06:41:32 +02:00
sctp_var.h
sctp.h sctp: use constants from RFC 8260 to improve compliance 2023-04-23 17:48:05 +02:00
sctputil.c sctp: update zero checksum support 2023-07-23 06:41:32 +02:00
sctputil.h
siftr.c dtrace: improve siftr probe 2023-07-02 03:08:51 +02:00
tcp_accounting.h
tcp_ecn.c Update various sys/netinet source files to conform with the style(9) 2023-06-20 23:23:19 +02:00
tcp_ecn.h
tcp_fastopen.c
tcp_fastopen.h
tcp_fsm.h
tcp_hostcache.c
tcp_hpts.c tcp: move HPTS/LRO flags out of inpcb to tcpcb 2023-04-25 12:19:48 -07:00
tcp_hpts.h tcp: add missing static keywords 2023-06-14 14:21:28 -07:00
tcp_input.c Under RSS, assign a TCP flow's inp_flowid anyway. 2023-05-18 11:11:53 -04:00
tcp_log_buf.c Update various sys/netinet source files to conform with the style(9) 2023-06-20 23:23:19 +02:00
tcp_log_buf.h tcp: request tracking is not http specific. 2023-05-24 06:35:36 -04:00
tcp_lro.c inline_fls - HAVE_INLINE_FLSLL is always true 2023-07-06 15:27:31 -05:00
tcp_lro.h spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
tcp_offload.c spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
tcp_offload.h spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
tcp_output.c tcp: make the maximum number of retransmissions tunable per VNET 2023-06-06 22:58:54 +02:00
tcp_pcap.c
tcp_pcap.h
tcp_ratelimit.c
tcp_ratelimit.h
tcp_reass.c
tcp_sack.c tcp: send SACK rescue retransmission also mid-stream 2023-03-28 04:47:01 +02:00
tcp_seq.h
tcp_stats.c
tcp_subr.c tcp: improve sending of TTL/hoplimit and DSCP 2023-06-05 18:43:06 +02:00
tcp_syncache.c spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
tcp_syncache.h
tcp_timer.c tcp: make the maximum number of retransmissions tunable per VNET 2023-06-06 22:58:54 +02:00
tcp_timer.h
tcp_timewait.c tcp_hpts: move HPTS related fields from inpcb to tcpcb 2023-04-25 12:18:33 -07:00
tcp_usrreq.c tcp: Disallow connecting a disconnected socket 2023-06-23 10:00:52 -04:00
tcp_var.h tcp: improve layout of struct tcpcb 2023-07-19 14:47:36 +02:00
tcp.h tcp: expose AccECN mode and TCP FastOpen (TFO) in TCPI 2023-06-20 23:48:56 +02:00
tcpip.h
toecore.c spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
toecore.h spdx: The BSD-2-Clause-FreeBSD identifier is obsolete, drop -FreeBSD 2023-05-12 10:44:03 -06:00
udp_usrreq.c
udp_var.h
udp.h
udplite.h