d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
freebsd-skq/lib
History
pjd 7e73da14eb Add security.jail.mount_allowed sysctl, which allows to mount and 
unmount jail-friendly file systems from within a jail.
Precisely it grants PRIV_VFS_MOUNT, PRIV_VFS_UNMOUNT and
PRIV_VFS_MOUNT_NONUSER privileges for a jailed super-user.
It is turned off by default.

A jail-friendly file system is a file system which driver registers
itself with VFCF_JAIL flag via VFS_SET(9) API.
The lsvfs(1) command can be used to see which file systems are
jail-friendly ones.

There currently no jail-friendly file systems, ZFS will be the first one.
In the future we may consider marking file systems like nullfs as
jail-friendly.

Reviewed by:	rwatson
2007-04-05 21:03:05 +00:00
..
bind
Update generated files for BIND 9.3.4
2007-01-29 18:33:18 +00:00
csu
Fix TLS on sparc64 for statically and dynamically linked binaries
2006-10-08 02:50:34 +00:00
libalias
Fix a regression: let natd load libalias modules before /usr is mounted
2006-10-08 14:02:00 +00:00
libarchive
Move archive_read_data_into_buffer into archive_read.c, simplify its
2007-04-05 15:51:19 +00:00
libatm
First argument of MD5Final is an array of unsigned characters.
2007-04-04 03:24:01 +00:00
libautofs
libbegemot
libbluetooth
libbsm
Hook up additional OpenBSM man page aliases following OpenBSM 1.0 alpha 12
2006-09-25 11:53:58 +00:00
libbsnmp
libbz2
libc
Add security.jail.mount_allowed sysctl, which allows to mount and
2007-04-05 21:03:05 +00:00
libc_r
Remove 3rd clause, renumber, ok per email
2007-01-12 07:26:21 +00:00
libcalendar
libcam
2nd and final commit that moves us to CAM_NEW_TRAN_CODE
2006-11-02 00:54:38 +00:00
libcom_err
libcompat
Remove California Regent's clause 3, per letter
2007-01-09 01:02:06 +00:00
libcrypt
cipher(3) is gone.
2007-04-04 14:04:55 +00:00
libdevinfo
Markup fixes.
2006-09-17 21:27:35 +00:00
libdevstat
libdisk
unbreak build for sparc64 etc.
2006-10-09 05:12:54 +00:00
libedit
Merge the following changes from NetBSD:
2007-03-11 21:47:40 +00:00
libelf
Describe the contents of the "ar_name" and "ar_rawname" fields of
2007-03-27 04:47:50 +00:00
libexpat
libfetch
Respect MK_INET6_SUPPORT.
2006-07-27 04:54:03 +00:00
libftpio
Respect MK_INET6_SUPPORT.
2006-07-27 04:54:03 +00:00
libgeom
libgpib
Apply style.Makefile(5) here.
2006-04-13 08:12:31 +00:00
libgssapi
Add include directives for string.h and stdlib.h to get proper function
2007-04-04 02:40:59 +00:00
libipsec
Markup fixes.
2006-09-17 21:27:35 +00:00
libipx
Remove California Regent's clause 3, per letter
2007-01-09 01:02:06 +00:00
libkiconv
libkse
Oops, fix a typo in the last commit :-/
2007-03-05 19:00:49 +00:00
libkvm
- Move 'struct swdevt' back into swap_pager.h and expose it to userland.
2007-02-07 17:43:11 +00:00
libmagic
Update for the 'file' 4.17 import.
2006-06-19 08:10:23 +00:00
libmd
libmemstat
Fix a comment in memstat.h: errors are associated with memory type lists,
2007-03-15 10:44:18 +00:00
libmilter
libmp
Pass BN_CTX to internal functions instead of allocating it internally.
2006-07-30 19:29:26 +00:00
libncp
Mark data structures used on the wire with IPX SAP as __packed so that
2007-02-26 12:07:08 +00:00
libnetgraph
Include sys/socket.h to know about sa_family_t.
2006-10-17 16:56:29 +00:00
libngatm
libopie
libpam
In account management, verify whether the account has been locked
2007-03-27 09:59:15 +00:00
libpcap
Place shared libpcap library under /lib, currently needed by
2006-04-13 07:25:02 +00:00
libpmc
Clarify memory management rules for pmc_cpuinfo().
2007-03-26 17:33:41 +00:00
libpthread
Oops, fix a typo in the last commit :-/
2007-03-05 19:00:49 +00:00
libradius
Use correct u_int and socklen_t types for parameters if function is
2007-04-04 02:59:54 +00:00
librpcsvc
librt
Account for recent changes in namespace.h. Use _pthread_create
2006-03-29 04:20:53 +00:00
libsbuf
libsdp
- Add new service class definitions and a new attribute identifier definition
2006-08-26 23:16:35 +00:00
libsm
Add new libsm file from sendmail 8.13.6
2006-03-22 16:58:15 +00:00
libsmb
libsmdb
libsmutil
libstand
Cast away const qualifier to squash GCC warning.
2007-04-04 03:29:02 +00:00
libtacplus
o Fix function name.
2006-10-28 10:53:39 +00:00
libtelnet
Stop enforcing dependencies between MK_* options at Makefile level.
2006-07-31 13:29:36 +00:00
libthr
If a thread who's name is being set is not the current thread, use macros
2007-04-05 07:20:31 +00:00
libthread_db
remove libc_r remanent.
2006-10-20 14:15:42 +00:00
libufs
The ufs_disk_fillout(3) can take special device name (with or without /dev/
2007-03-16 03:13:28 +00:00
libugidfw
Add some new options to mac_bsdestended. We can now match on:
2006-04-23 17:06:18 +00:00
libusbhid
libutil
Remove California Regent's clause 3, per letter
2007-01-09 01:02:06 +00:00
libvgl
o Fix typo.
2006-10-21 15:12:36 +00:00
libwrap
Remove a (harmless) stray backslash.
2007-02-27 16:13:19 +00:00
liby
Remove California Regent's clause 3, per letter
2007-01-09 01:02:06 +00:00
libypclnt
Back out my previous commit to this area, there are differences between
2007-03-30 06:12:45 +00:00
libz
Resolve conflicts.
2006-03-23 14:09:21 +00:00
msun
Remove California Regent's clause 3, per letter
2007-01-09 01:02:06 +00:00
ncurses
Enable ncurses wide character support
2007-03-09 12:11:58 +00:00
Makefile
Switch to new ncurses build glue
2007-01-20 07:48:10 +00:00
Makefile.inc