| Commit message (Expand) | Author | Age | Files | Lines |
* | Add macro to test the sv_flags of any process. Change some places to test | Dmitry Chagin | 2011-01-26 | 1 | -2/+2 |
* | Mfp4 CH177924: | Bjoern A. Zeeb | 2010-12-31 | 1 | -1/+8 |
* | Don't exit kern_jail_set without freeing options when enforce_statfs | Jamie Gritton | 2010-09-10 | 1 | -5/+8 |
* | Back out r210974. Any convenience of not typing "persist" is outweighed | Jamie Gritton | 2010-08-08 | 1 | -2/+6 |
* | Implicitly make a new jail persistent if it's set not to attach. | Jamie Gritton | 2010-08-06 | 1 | -6/+2 |
* | Declare ip6 as (struct in6_addr *) instead of (struct in_addr *). This is | Colin Percival | 2010-06-04 | 1 | -1/+1 |
* | Provide groundwork for 32-bit binary compatibility on non-x86 platforms, | Nathan Whitehorn | 2010-03-11 | 1 | -4/+4 |
* | Revised revision 199201 (add interface description capability as inspired | Xin LI | 2010-01-27 | 1 | -0/+1 |
* | Add ip4.saddrsel/ip4.nosaddrsel (and equivalent for ip6) to control | Bjoern A. Zeeb | 2010-01-17 | 1 | -2/+108 |
* | Change DDB show prison: | Bjoern A. Zeeb | 2010-01-11 | 1 | -5/+6 |
* | Adjust a comment to reflect reality, as we have proper source | Bjoern A. Zeeb | 2010-01-11 | 1 | -1/+3 |
* | (S)LIST_HEAD_INITIALIZER takes a (S)LIST_HEAD as an argument. | Antoine Brodin | 2009-12-28 | 1 | -1/+1 |
* | Throughout the network stack we have a few places of | Bjoern A. Zeeb | 2009-12-13 | 1 | -1/+24 |
* | Revert revision 199201 for now as it has introduced a kernel vulnerability | Xin LI | 2009-11-12 | 1 | -1/+0 |
* | Add interface description capability as inspired by OpenBSD. | Xin LI | 2009-11-11 | 1 | -0/+1 |
* | Revert previous commit and add myself to the list of people who should | Poul-Henning Kamp | 2009-09-08 | 1 | -1/+0 |
* | Add necessary include. | Poul-Henning Kamp | 2009-09-08 | 1 | -0/+1 |
* | Allow a jail's name to be the same as its jid (which is the default if no | Jamie Gritton | 2009-09-04 | 1 | -9/+20 |
* | Fix a LOR between allprison_lock and vnode locks by releasing | Jamie Gritton | 2009-08-27 | 1 | -2/+2 |
* | When "jail -c vnet" request fails, the current code actually creates and | Marko Zec | 2009-08-24 | 1 | -1/+1 |
* | Make it possible to change the vnet sysctl variables on jails | Bjoern A. Zeeb | 2009-08-13 | 1 | -0/+23 |
* | Make the kernel compile without IP networking by moving | Bjoern A. Zeeb | 2009-08-12 | 1 | -1/+2 |
* | Merge the remainder of kern_vimage.c and vimage.h into vnet.c and | Robert Watson | 2009-08-01 | 1 | -1/+4 |
* | Make the "enforce_statfs" default 2 (most restrictive) in jail_set(2), | Jamie Gritton | 2009-07-31 | 1 | -3/+4 |
* | Remove a LOR, where the the sleepable allprison_lock was being obtained | Jamie Gritton | 2009-07-30 | 1 | -309/+187 |
* | Don't allow mixing the "vnet" and "ip4/6" jail parameters, since vnet | Jamie Gritton | 2009-07-29 | 1 | -11/+98 |
* | Change the default value of the "ip4" and "ip6" jail parameters to | Jamie Gritton | 2009-07-29 | 1 | -27/+7 |
* | Some jail parameters (in particular, "ip4" and "ip6" for IP address | Jamie Gritton | 2009-07-25 | 1 | -35/+85 |
* | Remove the interim vimage containers, struct vimage and struct procg, | Jamie Gritton | 2009-07-17 | 1 | -4/+0 |
* | Wrap a PR_VNET inside "#ifdef VIMAGE" since that the only place it applies. | Jamie Gritton | 2009-06-24 | 1 | -0/+2 |
* | In case of prisons with their own network stack, permit | Jamie Gritton | 2009-06-24 | 1 | -0/+128 |
* | Add a limit for child jails via the "children.cur" and "children.max" | Jamie Gritton | 2009-06-23 | 1 | -9/+50 |
* | Manage vnets via the jail system. If a jail is given the boolean | Jamie Gritton | 2009-06-15 | 1 | -0/+29 |
* | Rename the host-related prison fields to be the same as the host.* | Jamie Gritton | 2009-06-13 | 1 | -29/+33 |
* | Add counterparts to getcredhostname: | Jamie Gritton | 2009-06-13 | 1 | -1/+32 |
* | Fix some overflow errors: a signed allocation and an insufficiant | Jamie Gritton | 2009-06-09 | 1 | -4/+12 |
* | Move "options MAC" from opt_mac.h to opt_global.h, as it's now in GENERIC | Robert Watson | 2009-06-05 | 1 | -1/+0 |
* | Place hostnames and similar information fully under the prison system. | Jamie Gritton | 2009-05-29 | 1 | -16/+155 |
* | Add hierarchical jails. A jail may further virtualize its environment | Jamie Gritton | 2009-05-27 | 1 | -559/+1658 |
* | Delay an error message until the variable it uses gets initialized. | Jamie Gritton | 2009-05-23 | 1 | -8/+6 |
* | Introduce a new virtualization container, provisionally named vprocg, to hold | Marko Zec | 2009-05-08 | 1 | -0/+4 |
* | Move the per-prison Linux MIB from a private one-off pointer to the new | Jamie Gritton | 2009-05-07 | 1 | -1/+0 |
* | Introduce the extensible jail framework, using the same "name=value" | Jamie Gritton | 2009-04-29 | 1 | -463/+1532 |
* | Some non-functional changes: whitespace, KASSERT strings, declaration order. | Jamie Gritton | 2009-04-29 | 1 | -5/+5 |
* | Whitespace/spelling fixes in advance of upcoming functional changes. | Jamie Gritton | 2009-03-27 | 1 | -12/+12 |
* | Don't allow creating a socket with a protocol family that the current | Jamie Gritton | 2009-02-05 | 1 | -0/+42 |
* | Standardize the various prison_foo_ip[46] functions and prison_if to | Jamie Gritton | 2009-02-05 | 1 | -70/+74 |
* | Mark most often used sysctl's as MPSAFE. | Ed Schouten | 2009-01-28 | 1 | -4/+6 |
* | For consistency with prison_{local,remote,check}_ipN rename | Bjoern A. Zeeb | 2009-01-25 | 1 | -2/+2 |
* | Back out r186615; the sanitizing of the pointers in the error case | Bjoern A. Zeeb | 2009-01-04 | 1 | -2/+0 |