d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
171,313 Commits 4 Branches 49 Tags 2 GiB
c76a6fe732
Commit Graph

18 Commits

Author SHA1 Message Date
Jamie Gritton
cee9d6cc1d The fix in r235291 re-broke the "allow.nomount" case. Re-fix it 
by testing for the right parameter name.
 2012-05-22 18:30:32 +00:00
Jamie Gritton
fb8d1d4f19 The linker isn't consistent in the ordering of dynamic sysctls, so don't 
assume that the unnamed final component of "security.jail.param.foo." is
one less than the "foo" component.  It might be one greater instead.
 2012-05-11 21:22:52 +00:00
Jamie Gritton
699f40077b Handle the case where a boolean parameter is also a node. 
PR:		bin/165515
MFC after:	2 weeks
 2012-03-01 15:09:41 +00:00
Matthew D Fleming
cbc134ad03 Introduce signed and unsigned version of CTLTYPE_QUAD, renaming 
existing uses.  Rename sysctl_handle_quad() to sysctl_handle_64().
 2011-01-19 23:00:25 +00:00
Jamie Gritton
b81422ef7f Find a jail's type as part of jailparam_init rather than waiting until 
it's absolutely necessary.

MFC after:	1 week
 2010-10-27 21:01:53 +00:00
Ulrich Spörlein
7558f6b4f3 mdoc: fix manlint warnings by unbreaking mdoc syntax 2010-10-08 12:39:49 +00:00
Jamie Gritton
881f6af44b Whitespace and comment fixes. 
MFC after:	3 days
 2010-08-31 23:14:03 +00:00
Jamie Gritton
4d02a3e762 Don't over-allocate array values in jailparam_export. 
Fix a little comment typo.

MFC after:	3 days
 2010-08-31 21:50:09 +00:00
Jamie Gritton
fa04d5d393 Make it clear in the example that jailparam_export's return value 
should be freed.

MFC after:	3 days
 2010-08-31 21:48:45 +00:00
Jamie Gritton
fba36ac4de Don't copy and return a potentially unset buffer when jail_get fails. 2010-07-15 19:21:33 +00:00
Jamie Gritton
c26c472cc8 Don't import parameter values in jail_getv, except for the search key. 
Remove the internal jailparam_vlist, in favor of using variants of its
 logic separately in jail_setv and jail_getv.
Free the temporary parameter list and exported values in jail_setv
 and jail_getv.

Noted by:	Stanislav Uzunchev
MFC after:	3 days
 2010-07-15 19:21:07 +00:00
Ruslan Ermilov
f2ee2e68d2 realloc() with a proper amount of memory. 
MFC after:	3 days
 2010-02-17 16:45:03 +00:00
Ed Schouten
daaf575910 Build lib/ with WARNS=6 by default. 
Similar to libexec/, do the same with lib/. Make WARNS=6 the norm and
lower it when needed.

I'm setting WARNS?=0 for secure/. It seems secure/ includes the
Makefile.inc provided by lib/. I'm not going to touch that directory.
Most of the code there is contributed anyway.
 2010-01-02 09:58:07 +00:00
Jamie Gritton
1574e5ddd9 Add a null pointer check so "name" can be used as a key parameter in 
jailparam_get.

PR:		bin/141692
Submitted by:	delphij
MFC after:	3 days
 2009-12-17 05:06:56 +00:00
Ruslan Ermilov
bd03af3607 Fixed markup (mostly) errors. 2009-09-21 08:30:52 +00:00
Jamie Gritton
7cbf72137f Some jail parameters (in particular, "ip4" and "ip6" for IP address 
restrictions) were found to be inadequately described by a boolean.
Define a new parameter type with three values (disable, new, inherit)
to handle these and future cases.

Approved by:	re (kib), bz (mentor)
Discussed with:	rwatson
 2009-07-25 14:48:57 +00:00
Jamie Gritton
69ea521eba Fix dynamic (re)allocation logic in jailparam_set and jailparam_get. 
Touch up jailparam_import a bit while I'm at it.

Approved by:	bz (mentor)
 2009-06-25 22:42:19 +00:00
Jamie Gritton
de6f37045c Add libjail, a (somewhat) simpler interface to the jail_set and jail_get 
system calls and the security.jail.param sysctls.

Approved by:	bz (mentor)
 2009-06-24 18:18:35 +00:00