d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
freebsd-skq/sys
History
rwatson 7c21db8ed3 Define two new sysctl node flags: CTLFLAG_CAPRD and CTLFLAG_CAPRW, which 
may be jointly referenced via the mask CTLFLAG_CAPRW.  Sysctls with these
flags are available in Capsicum's capability mode; other sysctl nodes are
not.

Flag several useful sysctls as available in capability mode, such as memory
layout sysctls required by the run-time linker and malloc(3).  Also expose
access to randomness and available kernel features.

A few sysctls are enabled to support name->MIB conversion; these may leak
information to capability mode by virtue of providing resolution on names
not flagged for access in capability mode.  This is, generally, not a huge
problem, but might be something to resolve in the future.  Flag these cases
with XXX comments.

Submitted by:	jonathan
Sponsored by:	Google, Inc.
2011-07-17 23:05:24 +00:00
..
amd64
Correct cpu_monitor() and cpu_mwait() for amd64. These instructions take
2011-07-05 18:42:10 +00:00
arm
Do not call platform_gpio_init() early. It doesn't work because we do
2011-07-15 02:29:10 +00:00
boot
When building some of the boot loaders with clang, and DEBUG_FLAGS or
2011-07-17 13:50:21 +00:00
bsm
cam
cam/scsi/scsi_cd.c:
2011-06-26 01:32:46 +00:00
cddl
With retirement of cpumask_t and usage of cpuset_t for representing a
2011-07-04 12:04:52 +00:00
compat
Correct small typo in a do{}while(0) define
2011-07-17 17:12:17 +00:00
conf
Don't include mptable_pci.c in Xen kernels. It is only meant for systems
2011-07-17 01:23:50 +00:00
contrib
Update packet filter (pf) code to OpenBSD 4.5.
2011-06-28 11:57:25 +00:00
crypto
ddb
Fix making kernel dumps from the debugger by creating a command
2011-06-07 01:28:12 +00:00
dev
Revert r222135 by allowing controller reinitialization. Due to
2011-07-17 21:54:51 +00:00
fs
Revert revision 224079 as Rick pointed out that I would be calling VOP_PATHCONF
2011-07-17 03:44:05 +00:00
gdb
geom
Add some spare fields to the g_class and g_geom structures needed to implement
2011-07-17 20:35:30 +00:00
gnu
Fix typo in unused function name
2011-05-22 09:58:48 +00:00
i386
Restore binary compatibility for GIO_KEYMAP and PIO_KEYMAP.
2011-07-17 08:19:19 +00:00
ia64
Don't assume pmap_mapdev() gets called only for memory mapped I/O
2011-07-16 20:34:02 +00:00
isa
kern
Define two new sysctl node flags: CTLFLAG_CAPRD and CTLFLAG_CAPRW, which
2011-07-17 23:05:24 +00:00
kgssapi
Add a small comment about unloading the kgsappi module.
2011-07-16 08:05:49 +00:00
libkern
mips
Comment out KDB/DDB related options for N32 kernel.
2011-07-17 18:51:51 +00:00
modules
Add new USB 3G driver.
2011-07-08 10:58:56 +00:00
net
Add spares to the network stack for FreeBSD-9:
2011-07-17 21:15:20 +00:00
net80211
Fix memset sizeofs
2011-07-07 15:41:40 +00:00
netatalk
netgraph
Clear pending ifnet events, in an attempt at preventing
2011-07-16 19:11:45 +00:00
netinet
Add spares to the network stack for FreeBSD-9:
2011-07-17 21:15:20 +00:00
netinet6
The socket API only specifies SCTP for SOCK_SEQPACKET and
2011-07-12 19:29:29 +00:00
netipsec
Update packet filter (pf) code to OpenBSD 4.5.
2011-06-28 11:57:25 +00:00
netipx
netnatm
netncp
netsmb
nfs
Set proper root device name when legacy NFS client is compiled into kernel.
2011-06-29 15:17:29 +00:00
nfsclient
Fix the kgssapi so that it can be loaded as a module. Currently
2011-06-19 22:08:55 +00:00
nfsserver
Fix the kgssapi so that it can be loaded as a module. Currently
2011-06-19 22:08:55 +00:00
nlm
Add a lock flags argument to the VFS_FHTOVP() file system
2011-05-22 01:07:54 +00:00
ofed
MFC
2011-05-27 16:09:10 +00:00
opencrypto
pc98
Restore binary compatibility for GIO_KEYMAP and PIO_KEYMAP.
2011-07-17 08:19:19 +00:00
pci
powerpc
Enable PREEMPTION for PowerPC/AIM generic kernels. The last known PREEMPTION
2011-07-14 15:35:43 +00:00
rpc
Fix the kgssapi so that it can be loaded as a module. Currently
2011-06-19 22:08:55 +00:00
security
sparc64
Remove NULL assignments which are redundant for static timecounters.
2011-07-12 18:10:56 +00:00
sys
Define two new sysctl node flags: CTLFLAG_CAPRD and CTLFLAG_CAPRW, which
2011-07-17 23:05:24 +00:00
teken
Fix various whitespace inconsistencies in sys/teken.
2011-06-26 18:25:10 +00:00
tools
ufs
Add an FFS specific mount option to allow a filesystem checker
2011-07-15 16:20:33 +00:00
vm
Extract the code to translate VM error into errno, into an exported
2011-07-10 20:49:13 +00:00
x86
Fix build when NEW_PCIB is not defined.
2011-07-16 14:05:34 +00:00
xdr
xen
Monitor and emit events for XenStore changes to XenBus trees
2011-06-11 04:59:01 +00:00
Makefile
Include sys/xen in cscope tag file generation.
2011-06-10 20:51:41 +00:00