d/freebsd-nq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
0d74c18651
freebsd-nq/sys
History
Robert Watson 0d74c18651 Add a new sysctl/tunable to mac_portacl: 
security.mac.portacl.autoport_exempt

This sysctl exempts to bind port '0' as long as IP_PORTRANGELOW hasn't
been set on the socket.  This is quite useful as it allows applications
to use automatic binding without adding overly broad rules for the
binding of port 0.  This sysctl defaults to enabled.

This is a slight variation on the patch submitted by the contributor.

MFC after:	2 weeks
Submitted by:	Michal Mertl <mime at traveller dot cz>
2004-12-08 11:46:44 +00:00
..
alpha Change gdb_cpu_setreg() to not take the value to which to set the 2004-12-01 06:40:35 +00:00
amd64 MFi386: rev 1.12: re-allow fast interrupts to cause preemption 2004-12-06 22:56:15 +00:00
arm Include <sys/signalvar.h> for trapsignal(). 2004-12-07 17:39:42 +00:00
boot The 'start' command processes loader.conf variables, not loader.rc. 2004-12-06 05:30:31 +00:00
cam Correct another location where inquiry length as calculated from the 2004-11-18 07:24:29 +00:00
coda Convert coda to nmount. 2004-12-06 19:46:02 +00:00
compat Do not blindly pass linux filesystem specific mount data across. 2004-12-03 18:14:22 +00:00
conf Properly handle vnode_if.h dependencies, and don't forget to clean all files. 2004-12-08 07:23:12 +00:00
contrib IPv6 packets can contain headers (like options) before the TCP/UDP/ICMP6 2004-12-05 12:15:43 +00:00
crypto Initiate deorbit burn sequence for 80386 support in FreeBSD: Remove 2004-11-16 20:42:32 +00:00
ddb When printing a stack trace for a thread, also print the pid and tid. 2004-11-23 23:11:47 +00:00
dev Add support for the ITE IT8212F controller. 2004-12-08 11:17:38 +00:00
doc
fs First save from editor, *then* commit. 2004-12-07 15:25:36 +00:00
gdb Change gdb_cpu_setreg() to not take the value to which to set the 2004-12-01 06:40:35 +00:00
geom o Don't limit GPT as a rank 2 provider. Allow it to be connected 2004-12-05 06:02:21 +00:00
gnu Convert to nmount. Add omount compat code. 2004-12-06 20:34:32 +00:00
i4b Mark i4b IPR and SPPP drivers as NET_NEEDS_GIANT(), as they both 2004-10-12 09:25:52 +00:00
i386 Avoid more than two pending IPI interrupt vectors per local APIC 2004-12-07 20:15:01 +00:00
ia64 Don't obtain the HCDP address directly from the bootinfo structure. 2004-12-08 05:46:54 +00:00
isa PNP BIOS devices are fundamentally different than ISA PNP devices. 2004-12-07 05:30:02 +00:00
isofs/cd9660 First save from editor, *then* commit. 2004-12-07 15:25:36 +00:00
kern add m_append utility function to be used in forthcoming changes 2004-12-08 05:42:02 +00:00
libkern Use the RET macro. 2004-11-09 16:47:47 +00:00
modules kmod.mk knows how to create empty opt_*.h files so let it deal with the 2004-12-03 23:43:02 +00:00
net Cleanup link state change notification: 2004-12-08 05:45:59 +00:00
net80211 Add a new network interface flag, IFF_NEEDSGIANT, which will allow 2004-07-27 23:20:45 +00:00
netatalk Correct a misspelling in a comment. 2004-12-05 13:28:52 +00:00
netatm Initialize struct pr_userreqs in new/sparse style and fill in common 2004-11-08 14:44:54 +00:00
netgraph - Use ng_callout() instead of timeout(9). 2004-12-06 19:49:55 +00:00
netinet Time out routes created by redirect. 2004-12-06 22:27:22 +00:00
netinet6 Reviewed by: SUZUKI Shinsuke <suz@kame.net> 2004-11-29 03:10:35 +00:00
netipsec Initialize struct pr_userreqs in new/sparse style and fill in common 2004-11-08 14:44:54 +00:00
netipx Initialize struct pr_userreqs in new/sparse style and fill in common 2004-11-08 14:44:54 +00:00
netkey support TCP-MD5(IPv4) in KAME-IPSEC, too. 2004-11-08 18:49:51 +00:00
netnatm Initialize struct pr_userreqs in new/sparse style and fill in common 2004-11-08 14:44:54 +00:00
netncp Add missing zero flag argument. 2004-10-12 08:22:08 +00:00
netsmb Don't use vn_todev(). 2004-11-10 07:16:59 +00:00
nfs Add non-blocking versions of nfsm_dissect() and friends, for use from 2004-12-06 17:33:52 +00:00
nfs4client Rewrite of the NFS client's reply handling. We now have NFS socket 2004-12-06 21:11:15 +00:00
nfsclient Fix for a Lock Order Reversal in the nfs_flush() path, between the 2004-12-07 21:16:32 +00:00
nfsserver Correct a bug in nfsrv_create() where a call to nfsrv_access() might 2004-11-11 21:30:52 +00:00
opencrypto Push Giant down through ioctl. 2004-11-17 09:09:55 +00:00
pc98 Don't include sys/user.h merely for its side-effect of recursively 2004-11-27 06:51:39 +00:00
pccard Move PNP IDs back into oldcard files 2004-08-13 06:57:31 +00:00
pci Update the Tigon 1 and 2 driver to use the sf_buf API for implementing 2004-12-06 00:43:40 +00:00
posix4 Back when VOP_* was introduced, we did not have new-style struct 2004-12-01 23:16:38 +00:00
powerpc Create a new definition, PSL_KERNSET, which is used for setting the 2004-11-30 09:04:41 +00:00
rpc Prefer C99's __func__ over GCC's __FUNCTION__. 2004-09-23 18:25:46 +00:00
security Add a new sysctl/tunable to mac_portacl: 2004-12-08 11:46:44 +00:00
sparc64 PNP BIOS devices are fundamentally different than ISA PNP devices. 2004-12-07 05:30:02 +00:00
sys add m_append utility function to be used in forthcoming changes 2004-12-08 05:42:02 +00:00
tools Back when VOP_* was introduced, we did not have new-style struct 2004-12-01 23:16:38 +00:00
ufs Fix nfs exports (for now). The real fix is to teach mountd about 2004-12-07 15:09:30 +00:00
vm With the removal of kern/uipc_jumbo.c and sys/jumbo.h, 2004-12-08 05:01:47 +00:00
Makefile Add a NO_BOOT knob to prevent building the boot blocks and loader. 2004-08-19 09:54:28 +00:00