index
:
src
main
releng/1
releng/10.0
releng/10.1
releng/10.2
releng/10.3
releng/10.4
releng/11.0
releng/11.1
releng/11.2
releng/11.3
releng/11.4
releng/12.0
releng/12.1
releng/12.2
releng/12.3
releng/12.4
releng/13.0
releng/13.1
releng/13.2
releng/13.3
releng/13.4
releng/14.0
releng/14.1
releng/2.0
releng/2.0.5
releng/4.10
releng/4.11
releng/4.3
releng/4.4
releng/4.5
releng/4.6
releng/4.7
releng/4.8
releng/4.9
releng/5.0
releng/5.1
releng/5.2
releng/5.3
releng/5.4
releng/5.5
releng/6.0
releng/6.1
releng/6.2
releng/6.3
releng/6.4
releng/7.0
releng/7.1
releng/7.2
releng/7.3
releng/7.4
releng/8.0
releng/8.1
releng/8.2
releng/8.3
releng/8.4
releng/9.0
releng/9.1
releng/9.2
releng/9.3
stable/10
stable/11
stable/12
stable/13
stable/14
stable/2.1
stable/2.2
stable/3
stable/4
stable/5
stable/6
stable/7
stable/8
stable/9
vendor/CSRG
vendor/Juniper/libxo
vendor/Linux/ath-common
vendor/Linux/ath10k
vendor/Linux/ath11k
vendor/Linux/ath12k
vendor/Linux/iwlwifi
vendor/Linux/mt76
vendor/Linux/rtw88
vendor/Linux/rtw89
vendor/NetBSD/blacklist
vendor/NetBSD/bmake
vendor/NetBSD/libc-pwcache
vendor/NetBSD/libc-vis
vendor/NetBSD/libedit
vendor/NetBSD/libexecinfo
vendor/NetBSD/lukemftp
vendor/NetBSD/lukemftpd
vendor/NetBSD/misc
vendor/NetBSD/mknod
vendor/NetBSD/mtree
vendor/NetBSD/softfloat
vendor/NetBSD/sort
vendor/NetBSD/tests
vendor/NetBSD/unvis
vendor/NetBSD/vis
vendor/NetBSD/xlint
vendor/OpenBSD
vendor/SGI
vendor/acpica
vendor/alpine-hal
vendor/alsa
vendor/altq
vendor/amd
vendor/apr
vendor/apr-util
vendor/arm-optimized-routines
vendor/atf
vendor/ath
vendor/bc
vendor/bearssl
vendor/bind
vendor/bind4
vendor/bind9
vendor/bind9-9.3
vendor/bind9-9.4
vendor/bind9-9.6
vendor/bind9-9.8
vendor/binutils
vendor/bionic-x86_64-string
vendor/blocklist
vendor/bsddialog
vendor/bsnmp
vendor/byacc
vendor/bzip2
vendor/ck
vendor/clang
vendor/clang-60
vendor/clang-70
vendor/clang-80
vendor/clang-90
vendor/com_err
vendor/compiler-rt
vendor/compiler-rt-60
vendor/compiler-rt-70
vendor/compiler-rt-80
vendor/compiler-rt-90
vendor/cortex-strings
vendor/csup
vendor/ctfdump
vendor/device-tree
vendor/dhcpcd
vendor/dialog
vendor/dma
vendor/dtc
vendor/dtracetoolkit
vendor/edk2
vendor/ee
vendor/elftoolchain
vendor/ena-com
vendor/expat
vendor/ext2fs
vendor/ficl
vendor/file
vendor/flex
vendor/gcc
vendor/gdb
vendor/gdtoa
vendor/global
vendor/google/capsicum-test
vendor/google/googletest
vendor/got/diff
vendor/gperf
vendor/groff
vendor/heimdal
vendor/heirloom-doctools
vendor/hostapd
vendor/hyperv
vendor/illumos
vendor/ipfilter
vendor/ipfilter-sys
vendor/ipfilter-sys-old
vendor/isc-dhcp
vendor/kerberosIV
vendor/krb5
vendor/kyua
vendor/ldns
vendor/ldns-host
vendor/less
vendor/lib9p
vendor/libarchive
vendor/libbegemot
vendor/libc++
vendor/libc++-60
vendor/libc++-70
vendor/libc++-80
vendor/libc++-90
vendor/libcbor
vendor/libcxxrt
vendor/libdes
vendor/libdivsufsort
vendor/libevent
vendor/libfdt
vendor/libfido2
vendor/libgmp
vendor/libpam
vendor/libpcap
vendor/libreadline
vendor/libregex
vendor/libucl
vendor/libuwx
vendor/libyaml
vendor/lld
vendor/lld-60
vendor/lld-70
vendor/lld-80
vendor/lld-90
vendor/lldb
vendor/lldb-60
vendor/lldb-70
vendor/lldb-80
vendor/lldb-90
vendor/llvm
vendor/llvm-60
vendor/llvm-70
vendor/llvm-80
vendor/llvm-90
vendor/llvm-libunwind
vendor/llvm-libunwind-80
vendor/llvm-libunwind-90
vendor/llvm-openmp
vendor/llvm-openmp-80
vendor/llvm-openmp-90
vendor/llvm-project/main
vendor/llvm-project/master
vendor/llvm-project/release-10.x
vendor/llvm-project/release-11.x
vendor/llvm-project/release-12.x
vendor/llvm-project/release-13.x
vendor/llvm-project/release-14.x
vendor/llvm-project/release-15.x
vendor/llvm-project/release-16.x
vendor/llvm-project/release-17.x
vendor/llvm-project/release-18.x
vendor/llvm-project/release-19.x
vendor/llvm-project/release-8.x
vendor/llvm-project/release-9.x
vendor/lomac
vendor/lua
vendor/lutok
vendor/mandoc
vendor/misc-GNU/awk
vendor/misc-GNU/bc
vendor/misc-GNU/bison
vendor/misc-GNU/cpio
vendor/misc-GNU/cvs
vendor/misc-GNU/diff
vendor/misc-GNU/grep
vendor/misc-GNU/misc
vendor/misc-GNU/patch
vendor/misc-GNU/sort
vendor/misc-GNU/texinfo
vendor/mrouted
vendor/ncftp
vendor/ncurses
vendor/netcat
vendor/ngatm
vendor/ntp
vendor/ntpd
vendor/nve
vendor/nvi
vendor/octeon-sdk
vendor/one-true-awk
vendor/openbsm
vendor/opencsd
vendor/openpam
vendor/openresolv
vendor/opensolaris
vendor/openssh
vendor/openssl
vendor/openssl-0.9.8
vendor/openssl-1.0.1
vendor/openssl-1.0.2
vendor/openssl-1.1.1
vendor/openssl-3.0
vendor/openzfs/legacy
vendor/openzfs/master
vendor/openzfs/zfs-2.1-release
vendor/openzfs/zfs-2.2-release
vendor/opie
vendor/pam_modules
vendor/pcg-c
vendor/pciids
vendor/perl5
vendor/pf
vendor/pf-sys
vendor/pjdfstest
vendor/pnglite
vendor/pppd
vendor/qcamain_open_hal
vendor/rarpd
vendor/resolver
vendor/rpcgen
vendor/sendmail
vendor/serf
vendor/skein
vendor/smbfs
vendor/softdep
vendor/softupdates
vendor/spleen
vendor/sqlite3
vendor/ssleay
vendor/stallion
vendor/subversion
vendor/sym
vendor/tcl
vendor/tcp_wrappers
vendor/tcpdump
vendor/tcsh
vendor/terminus
vendor/testfloat
vendor/tnftp
vendor/top
vendor/traceroute
vendor/tre
vendor/tzcode
vendor/tzdata
vendor/tzdb
vendor/unbound
vendor/unifdef
vendor/v4l
vendor/voxware
vendor/wireguard-tools
vendor/wpa
vendor/wpa_supplicant
vendor/x86emu
vendor/xe
vendor/xz
vendor/xz-embedded
vendor/zlib
vendor/zstd
FreeBSD source tree
about
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
sys
/
security
Commit message (
Expand
)
Author
Age
Files
Lines
*
mac: cheaper check for ifnet_create_mbuf and ifnet_check_transmit
Mateusz Guzik
2021-07-05
3
-10
/
+40
*
close_range: add audit support
Alex Richardson
2021-03-17
1
-0
/
+15
*
Convert remaining cap_rights_init users to cap_rights_init_one
Mateusz Guzik
2021-01-12
2
-4
/
+6
*
mac: cheaper check for mac_vnode_check_readlink
Mateusz Guzik
2021-01-08
3
-2
/
+20
*
cache: combine fast path enabled status into one flag
Mateusz Guzik
2021-01-06
1
-0
/
+3
*
audit: rework AUDIT_SYSCLOSE
Mateusz Guzik
2020-12-17
2
-8
/
+4
*
pipe: allow for lockless pipe_stat
Mateusz Guzik
2020-11-19
3
-3
/
+30
*
mac_framework.h: fix build with DEBUG_VFS_LOCKS and !MAC
Andriy Gapon
2020-09-03
1
-1
/
+1
*
security: clean up empty lines in .c and .h files
Mateusz Guzik
2020-09-01
13
-22
/
+4
*
cache: drop the always curthread argument from reverse lookup routines
Mateusz Guzik
2020-08-24
1
-1
/
+1
*
vfs: add VOP_STAT
Mateusz Guzik
2020-08-07
1
-1
/
+1
*
mac: even up all entry points to the same scheme
Mateusz Guzik
2020-08-06
1
-7
/
+38
*
vfs: add a cheaper entry for mac_vnode_check_access
Mateusz Guzik
2020-08-05
3
-2
/
+17
*
Fix tinderbox build after r363714
Mateusz Guzik
2020-07-30
1
-0
/
+8
*
vfs: elide MAC-induced locking on rename if there are no relevant hoooks
Mateusz Guzik
2020-07-29
2
-0
/
+7
*
vfs: add the infrastructure for lockless lookup
Mateusz Guzik
2020-07-25
1
-1
/
+2
*
vfs: fix vn_poll performance with either MAC or AUDIT
Mateusz Guzik
2020-07-16
2
-1
/
+16
*
vfs: fix MAC/AUDIT mismatch in vn_poll
Mateusz Guzik
2020-07-16
1
-0
/
+10
*
audit: provide AUDITING_TD for !AUDIT case
Mateusz Guzik
2020-07-04
1
-0
/
+2
*
mac_veriexec_fingerprint_check_vnode: v_writecount > 0 means active writers
Simon J. Gerraty
2020-06-12
1
-1
/
+1
*
Deduplicate fsid comparisons
Ryan Moeller
2020-05-21
2
-4
/
+3
*
Add BSM record conversion for a number of syscalls:
Christian S.J. Peron
2020-05-16
1
-0
/
+34
*
audit_canon_path_vp: don't panic if cdir == NULL
Kyle Evans
2020-04-17
1
-2
/
+7
*
mac_policy: Remove mac_policy_sx
Jason A. Harmening
2020-04-04
1
-8
/
+3
*
Make sure we convert internal audit records for thr_new
Christian S.J. Peron
2020-03-30
1
-0
/
+3
*
In r358471, we interrupted the case block that would eventually lead
Christian S.J. Peron
2020-03-03
1
-9
/
+10
*
fd: move vnodes out of filedesc into a dedicated structure
Mateusz Guzik
2020-03-01
1
-15
/
+12
*
Currently kernel audit events for jail_set(2), jail_get(2), jail_attach(2),
Christian S.J. Peron
2020-02-29
1
-0
/
+16
*
Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many)
Pawel Biernacki
2020-02-26
15
-19
/
+36
*
audit: provide audit_canon_path variant which accepts vnodes
Mateusz Guzik
2020-02-21
4
-23
/
+103
*
audit: simplify path resolving logic
Mateusz Guzik
2020-02-21
1
-49
/
+26
*
audit: rely on use count instead of hold count in audit_canon_path
Mateusz Guzik
2020-02-21
1
-9
/
+6
*
vfs: add realpathat syscall
Mateusz Guzik
2020-02-20
1
-0
/
+1
*
Merge audit and systrace checks
Mateusz Guzik
2020-02-14
1
-3
/
+6
*
Annotate branches in the syscall path
Mateusz Guzik
2020-02-14
1
-1
/
+1
*
vfs: use mac fastpath for lookup, open, read, write, mmap
Mateusz Guzik
2020-02-13
3
-15
/
+124
*
mac: implement fast path for checks
Mateusz Guzik
2020-02-13
3
-4
/
+118
*
vfs: eliminate v_tag from struct vnode
Mateusz Guzik
2020-01-07
1
-9
/
+22
*
vfs: drop the mostly unused flags argument from VOP_UNLOCK
Mateusz Guzik
2020-01-03
7
-13
/
+13
*
mac: use a sleepable rmlock instead of an sx lock
Mateusz Guzik
2019-12-27
1
-2
/
+6
*
Instead of looking up a predecessor or successor to the current map
Doug Moore
2019-11-20
1
-4
/
+5
*
Jail and capability mode for shm_rename; add audit support for shm_rename
David Bright
2019-11-18
1
-0
/
+10
*
Define wrapper functions vm_map_entry_{succ,pred} to act as wrappers
Doug Moore
2019-11-13
1
-1
/
+2
*
Define macro VM_MAP_ENTRY_FOREACH for enumerating the entries in a vm_map.
Doug Moore
2019-10-08
1
-1
/
+1
*
vm_map_simplify_entry considers merging an entry with its two
Doug Moore
2019-08-25
1
-1
/
+1
*
Fix mac_veriexec_parser build after r347938
Marcin Wojtas
2019-08-08
1
-1
/
+3
*
Extract eventfilter declarations to sys/_eventfilter.h
Conrad Meyer
2019-05-20
2
-0
/
+3
*
Add a new ioctl for the larger params struct that includes the label.
Stephen J. Kiernan
2019-05-17
3
-53
/
+117
*
Obtain a shared lock instead of exclusive in the MAC/veriexec
Stephen J. Kiernan
2019-05-17
1
-1
/
+2
*
sysctls which should be restricted when securelevel is raised should also
Stephen J. Kiernan
2019-05-17
1
-2
/
+20
[next]