upstream/opnsense-src
1
0
Fork 0
mirror of https://github.com/opnsense/src.git synced 2026-02-16 17:19:56 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
opnsense-src/sys/compat
History
Edward Tomasz Napierala db8d680ebe procctl(2): add PROC_NO_NEW_PRIVS_CTL, PROC_NO_NEW_PRIVS_STATUS 
This introduces a new, per-process flag, "NO_NEW_PRIVS", which
is inherited, preserved on exec, and cannot be cleared.  The flag,
when set, makes subsequent execs ignore any SUID and SGID bits,
instead executing those binaries as if they not set.

The main purpose of the flag is implementation of Linux
PROC_SET_NO_NEW_PRIVS prctl(2), and possibly also unpriviledged
chroot.

Reviewed By:	kib
Sponsored By:	EPSRC
Differential Revision:	https://reviews.freebsd.org/D30939
2021-07-01 09:42:07 +01:00
..
cloudabi kern_linkat: modify to accept AT_ flags instead of FOLLOW/NOFOLLOW 2021-04-25 14:13:12 +01:00
cloudabi32 regen syscall files after d51198d63b63 2021-05-13 14:09:58 -04:00
cloudabi64 regen syscall files after d51198d63b63 2021-05-13 14:09:58 -04:00
freebsd32 procctl(2): add PROC_NO_NEW_PRIVS_CTL, PROC_NO_NEW_PRIVS_STATUS 2021-07-01 09:42:07 +01:00
ia32 Add infrastructure required for Linux coredump support 2021-06-29 08:49:12 +01:00
lindebugfs Add emulation support for the Linux kcov(4) ioctl API. 2020-09-04 00:12:28 +00:00
linprocfs Use atomic loads/stores when updating td->td_state 2021-02-18 14:02:48 +00:00
linsysfs linsysfs: create /sys/bus/ and /sys/subsystem/ 2021-03-11 15:50:51 +00:00
linux linux(4): implement coredump support 2021-06-30 22:45:06 +01:00
linuxkpi/common LinuxKPI: Rename a short description of the kmalloc type. 2021-06-29 20:20:01 +03:00
x86bios Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) 2020-02-26 14:26:36 +00:00