hardenedbsd/HardenedBSD
1
0
Fork 0
mirror of https://git.hardenedbsd.org/hardenedbsd/HardenedBSD.git synced 2024-11-26 10:53:39 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
e99eef3d4f
HardenedBSD/sys/kern
History
Bosko Milekic 5a59cefcd1 Give jail(8) the feature to allow raw sockets from within a 
jail, which is less restrictive but allows for more flexible
jail usage (for those who are willing to make the sacrifice).
The default is off, but allowing raw sockets within jails can
now be accomplished by tuning security.jail.allow_raw_sockets
to 1.

Turning this on will allow you to use things like ping(8)
or traceroute(8) from within a jail.

The patch being committed is not identical to the patch
in the PR.  The committed version is more friendly to
APIs which pjd is working on, so it should integrate
into his work quite nicely.  This change has also been
presented and addressed on the freebsd-hackers mailing
list.

Submitted by: Christian S.J. Peron <maneo@bsdpro.com>
PR: kern/65800
2004-04-26 19:46:52 +00:00
..
bus_if.m
clock_if.m
device_if.m
genassym.sh
imgact_aout.c
imgact_elf32.c
imgact_elf64.c
imgact_elf.c Utilize sf_buf_alloc() rather than pmap_qenter() (and sometimes 2004-04-23 03:01:40 +00:00
imgact_gzip.c
imgact_shell.c
inflate.c
init_main.c
init_sysent.c
kern_acct.c
kern_acl.c
kern_alq.c
kern_clock.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
kern_condvar.c Associate a simple count of waiters with each condition variable. The 2004-04-06 19:17:46 +00:00
kern_conf.c
kern_context.c
kern_descrip.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
kern_environment.c
kern_event.c Fix filt_timer* races: Finish initializing a knote before we pass it to 2004-04-07 05:59:57 +00:00
kern_exec.c Utilize sf_buf_alloc() rather than pmap_qenter() (and sometimes 2004-04-23 03:01:40 +00:00
kern_exit.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
kern_fork.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
kern_idle.c
kern_intr.c Fixed some style bugs in previous commit (mainly an insertion sort error 2004-04-17 02:46:05 +00:00
kern_jail.c Give jail(8) the feature to allow raw sockets from within a 2004-04-26 19:46:52 +00:00
kern_kse.c
kern_kthread.c
kern_ktr.c
kern_ktrace.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
kern_linker.c Plug minor memory leak of module_t structures when unloading a file 2004-04-09 15:27:38 +00:00
kern_lock.c
kern_lockf.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
kern_mac.c
kern_malloc.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
kern_mib.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
kern_module.c
kern_mtxpool.c
kern_mutex.c Add a new kernel option MUTEX_WAKE_ALL that changes the mutex unlock code 2004-04-06 19:12:24 +00:00
kern_ntptime.c
kern_physio.c
kern_poll.c Ensure that the poll_burst <= poll_burst_max constraint really holds. 2004-04-15 07:38:44 +00:00
kern_proc.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
kern_prot.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
kern_resource.c Remove a comment that complains about the lack of %qd, to justify 2004-04-10 11:08:16 +00:00
kern_sema.c
kern_shutdown.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
kern_sig.c stop() no longer needs sched_lock held; in fact, holding sched_lock causes 2004-04-12 15:56:05 +00:00
kern_subr.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
kern_switch.c
kern_sx.c
kern_synch.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
kern_syscalls.c
kern_sysctl.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
kern_tc.c
kern_thr.c If you're trying to find out if a thread is valid and in 2004-04-19 14:20:01 +00:00
kern_thread.c
kern_time.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
kern_timeout.c The paper "Hashed Timers and Hierarchical Wheels: Data Structures for the 2004-04-25 04:10:17 +00:00
kern_umtx.c
kern_uuid.c
kern_xxx.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
ksched.c
link_elf_obj.c
link_elf.c
linker_if.m
Make.tags.inc
Makefile
makesyscalls.sh
md4c.c
md5c.c
p1003_1b.c
posix4_mib.c
sched_4bsd.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
sched_ule.c There was a thread on "unusually high load averages" when running under 2004-04-22 21:37:46 +00:00
subr_acl_posix1e.c
subr_autoconf.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
subr_blist.c
subr_bus.c
subr_clist.c
subr_clock.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
subr_devstat.c
subr_disk.c
subr_eventhandler.c
subr_hints.c
subr_kobj.c
subr_log.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
subr_mbpool.c
subr_mbuf.c At some point during the history of m_getcl(), MAC support began to 2004-04-16 14:35:11 +00:00
subr_mchain.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
subr_module.c
subr_msgbuf.c
subr_param.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
subr_pcpu.c
subr_power.c
subr_prf.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
subr_prof.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
subr_rman.c Fix off by one error, twice. 2004-04-12 23:02:21 +00:00
subr_rtc.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
subr_sbuf.c
subr_scanf.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
subr_sleepqueue.c
subr_smp.c
subr_taskqueue.c
subr_trap.c
subr_turnstile.c Rename turnstile_wakeup() to turnstile_broadcast() to make the naming 2004-04-06 19:07:21 +00:00
subr_witness.c
sys_generic.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
sys_pipe.c
sys_process.c
sys_socket.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
syscalls.c
syscalls.master
sysv_ipc.c
sysv_msg.c
sysv_sem.c
sysv_shm.c
tty_compat.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
tty_conf.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
tty_cons.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
tty_pty.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
tty_subr.c
tty_tty.c
tty.c Remove advertising clause from University of California Regent's 2004-04-07 20:46:16 +00:00
uipc_accf.c
uipc_cow.c
uipc_domain.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
uipc_jumbo.c
uipc_mbuf2.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
uipc_mbuf.c constify the last argument of m_copyback. 2004-04-18 13:01:28 +00:00
uipc_proto.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
uipc_sem.c
uipc_sockbuf.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
uipc_socket2.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
uipc_socket.c Compare pointers with NULL rather than using pointers are booleans in 2004-04-09 13:23:51 +00:00
uipc_syscalls.c Fix a regression in my change which sends headers along with data; a 2004-04-08 07:14:34 +00:00
uipc_usrreq.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
vfs_acl.c
vfs_aio.c
vfs_bio.c
vfs_cache.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
vfs_cluster.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
vfs_default.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
vfs_export.c Include <sys/mutex.h> and its prerequisite <sys/lock.h> instesd of depending 2004-04-21 12:10:30 +00:00
vfs_extattr.c Always use nd.ni_vp->v_mount as an argument for VFS_QUOTACTL(), just like 2004-04-26 15:44:42 +00:00
vfs_init.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
vfs_lookup.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
vfs_mount.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
vfs_subr.c Put deprecated sysctl code inside BURN_BRIDGES. 2004-04-11 21:09:22 +00:00
vfs_syscalls.c Always use nd.ni_vp->v_mount as an argument for VFS_QUOTACTL(), just like 2004-04-26 15:44:42 +00:00
vfs_vnops.c Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00
vnode_if.src Remove advertising clause from University of California Regent's license, 2004-04-05 21:03:37 +00:00