summaryrefslogtreecommitdiff
path: root/sys/kern/kern_prot.c
AgeCommit message (Expand)Author
2025-11-27setcred(2): Fix a panic on too many groups from latest commitOlivier Certner
2025-11-24setcred(): Remove an optimization for when cr_groups[0] was the egidOlivier Certner
2025-11-24setcred: Move initial copyin of struct setcred out to per-ABI syscallJohn Baldwin
2025-11-24MAC: Use the current thread's user ABI to determine the layout of struct macJohn Baldwin
2025-11-15setcred(): Fix 32-bit compatibility copy-inOlivier Certner
2025-11-09kern: RACCT: Keep process credentials alive via referencesOlivier Certner
2025-11-09setpgid(): Fix space before TAB in herald commentOlivier Certner
2025-11-09proc_set_cred(): Allow 'newcred' to have multiple referencesOlivier Certner
2025-11-06Revert "kern: RACCT: Keep process credentials alive via references"Mark Johnston
2025-11-05kern: RACCT: Keep process credentials alive via referencesOlivier Certner
2025-11-02setcred(): Fix RACCT resource accounting on credentials changeOlivier Certner
2025-11-02kern: Fix credentials leaks on RACCT but no RCTLOlivier Certner
2025-09-17cr_canseeothergids(): Make the logic easier to graspOlivier Certner
2025-09-17cred: Restore proper checking of effective groups in some security policiesOlivier Certner
2025-09-17cred: Remove obsolete comment after getgroups() not returning the eGIDOlivier Certner
2025-09-17cred: Update some comments after 'cr_gid' is no more cr_groups[0]Olivier Certner
2025-08-15ucred groups: restore a useful commentEric van Gyzen
2025-08-15kern: fix freebsd14 getgroups(2) compatKyle Evans
2025-08-14kern: fix setgroups(2) and getgroups(2) to match other platformsKyle Evans
2025-08-07kern: disallow user scheduling/debugging/signalling of jailed procsKyle Evans
2025-08-04kern: fix a panic in crcopysafe() found by syzkallerKyle Evans
2025-07-31kern: rename crsetgroups_fallback, document it in ucred(9)Kyle Evans
2025-07-31kern: add a new ucred flag for groups having been setKyle Evans
2025-07-30kern: start tracking cr_gid outside of cr_groups[]Kyle Evans
2025-07-24kern: adopt the cr_gid macro for cr_groups[0] more widelyKyle Evans
2025-06-10kern_prot: extract code to check that active ids are superset of obj idsKonstantin Belousov
2025-03-29cred: fix struct credbatch to use long for refcountGleb Smirnoff
2024-12-16proc_set_cred(): Fix compilation of GENERIC-NODEBUGOlivier Certner
2024-12-16New setcred() system call and associated MAC hooksOlivier Certner
2024-12-16cred: proc_set_cred(), proc_unset_cred(): Update user's process countOlivier Certner
2024-12-16cred: proc_set_cred(): Remove obsolete commentsOlivier Certner
2024-12-16cred: crget(): Compute initial 'cr_agroups' with nitems()Olivier Certner
2024-11-04cred: crsetgroups(): Throw away old groups before crextend()Olivier Certner
2024-11-02cred: groupmember(): Remove tolerance for empty 'cr_groups'Olivier Certner
2024-11-02cred: New crsetgroups_fallback()Olivier Certner
2024-11-02cred: crextend(): Harden, simplifyOlivier Certner
2024-11-02cred: groupmember() and co.: Sanity check cred's groups (INVARIANTS)Olivier Certner
2024-11-02cred: crsetgroups(): Improve and factor out groups normalizationOlivier Certner
2024-11-02cred: kern_setgroups(): Internally use int as number of groups' typeOlivier Certner
2024-11-02cred: Separate constant for the number of inlined groupsOlivier Certner
2024-11-02cred: Make group_is_supplementary() public; New group_is_primary()Olivier Certner
2024-11-02cred: group_is_supplementary(): Use bsearch()Olivier Certner
2024-11-02cred: Constify signature of groupmember() and realgroupmember()Olivier Certner
2024-11-02cred: supplementary_group_member() => group_is_supplementary()Olivier Certner
2024-10-21nfsd: Fix handling of credentials with cr_ngroups == 0Rick Macklem
2024-04-15Reduce reliance on sys/sysproto.h pollutionBrooks Davis
2024-01-10cr_bsd_visible(): Style fixesOlivier Certner
2023-11-26sys: Remove ancient SCCS tags.Warner Losh
2023-11-02Open-code proc_set_cred_init()Olivier Certner
2023-09-28groupmember(), realgroupmember(): Return a bool instead of an intOlivier Certner
generated by cgit v1.2.3 (git 2.25.1) at 2026-01-19 13:58:11 +0000