system/freebsd-src
system/freebsd-src
1
0
Fork 0
mirror of https://github.com/freebsd/freebsd-src synced 2024-10-03 23:28:58 +00:00
Code Issues Packages Projects Releases Wiki Activity
freebsd-src/sbin
History
Cy Schubert 831c6b8edd ipfilter: Support only jails in VNET 
Jails without VNET have complete access to the ipfilter rules, NAT,
pools and logs. This is insecure. Only allow jails to manipulate
ipfilter rules, NAT tables and ippools if the jail has its own VNET.
Otherwise a jail can affect the global system.

This patch brings ipfilter in line with ipfw's support of VNET jails and
non-support of non-VNET jails.

(cherry picked from commit c47db49ba4)
2022-07-14 06:54:22 -07:00
..
adjkerntz
bectl bectl: push space-in-name check down into libbe 2022-04-05 22:37:07 -05:00
bsdlabel *: Do not use the no-op -r flag for bsdlabel(8) 2022-03-31 09:37:03 +02:00
camcontrol camcontrol fwdownload minor improvements 2022-03-09 13:52:23 -07:00
ccdconfig GEOM: Introduce gctl_add_param() API. 2022-04-05 22:07:40 -04:00
clri
comcontrol Remove sio(4). 2019-11-21 01:24:49 +00:00
conscontrol Remove sio(4). 2019-11-21 01:24:49 +00:00
ddb ddb: use 'textdump dump' instead of 'call doadump' 2019-10-18 12:32:01 +00:00
decryptcore decryptcore: preload OpenSSL error strings; seed PRNG 2020-12-11 14:32:42 +00:00
devd pkgbase: move devd's hyperv.conf to hyperv-tools package 2022-05-16 17:25:23 +02:00
devfs devfs.rules: Do not expose "log" in the default devfs rules. 2022-06-06 20:29:58 -04:00
devmatch devmatch(8): Fix section ordering 2020-11-20 16:34:01 +00:00
dhclient dhclient(8): Fix a typo in a source code comment 2022-04-14 08:08:13 +02:00
dmesg
dump Correct assert added to dump program. 2021-05-20 15:57:37 -07:00
dumpfs dumpfs(8): add option to only print superblock information 2022-02-23 09:27:27 -09:00
dumpon dumpon: warn if the configured netdump link is down 2022-05-27 13:22:48 -03:00
etherswitchcfg
fdisk Remove deprecated GEOM classes 2019-08-13 20:06:55 +00:00
ffsinfo ffsinfo: Update example to avoid to-be-deprecated vinum 2021-04-09 21:26:23 -04:00
fsck fsck(8): Fix typo 2022-01-15 20:34:18 +08:00
fsck_ffs fsck_ffs(8): Fix a typo in a source code comment 2022-04-14 08:16:23 +02:00
fsck_msdosfs Use %ju and cast to (uintmax_t) to avoid using PRI* macros. 2020-09-28 04:30:31 +00:00
fsdb Update fsdb(8) to reflect new structure of fsck_ffs(8). 2022-02-26 13:38:48 -08:00
fsirand Filesystem utilities that modify the filesystem (growfs(8), tunefs(8), 2020-10-25 01:36:33 +00:00
gbde
geom GEOM: Introduce partial confxml API 2022-05-10 21:20:25 -04:00
ggate ggatec: Use ANSI C definition for init_initial_buffer_size. 2022-05-10 17:04:10 -07:00
growfs Correctly update fs_dsize in growfs(8) 2022-07-08 14:46:16 -07:00
gvinum GEOM: Introduce gctl_add_param() API. 2022-04-05 22:07:40 -04:00
hastctl
hastd hastd(8): Fix a typo in a source code comment 2022-04-14 08:12:19 +02:00
ifconfig ifconfig.8: Document -g all and -G all 2022-06-29 10:17:59 +02:00
init init: execute /etc/rc.final after all user processes have terminated 2021-08-26 01:42:00 -05:00
ipf ipfilter: Support only jails in VNET 2022-07-14 06:54:22 -07:00
ipfw ipfw: add support radix tables and table lookup for MAC addresses 2022-07-14 16:04:22 +03:00
iscontrol Update old iSCSI initiator man pages for removal from 14 and later 2021-10-26 16:23:41 -04:00
kldconfig kldconfig(8): Add EXAMPLES to the man page 2020-09-29 17:52:15 +00:00
kldload kldload: Bring functionality in line with manual page 2022-07-01 17:16:22 +02:00
kldstat kldstat(8): style(9) fixes. 2022-01-07 14:23:09 +01:00
kldunload
ldconfig ldconfig: remove two symbols 2022-01-15 02:51:14 +02:00
md5 md5(1): Fix a typo in the manual page 2021-08-19 09:29:01 +02:00
mdconfig mdconfig: Add a regression test for mediasize rounding 2021-09-07 09:36:18 -04:00
mdmfs mdmfs(8): Fix an issue reported by mandoc 2020-10-03 18:47:50 +00:00
mknod
mksnap_ffs Deduplicate fsid comparisons 2020-05-21 01:55:35 +00:00
mount mount: Don't pass a NULL format string to xo_err(). 2022-05-10 15:51:49 -07:00
mount_cd9660
mount_fusefs fusefs: use the fsname mount option if set 2022-05-23 13:11:11 -06:00
mount_msdosfs Fix a few mandoc issues 2020-10-09 14:03:45 +00:00
mount_nfs mount_nfs: Only create a mounttab file entry is nmount(2) succeeds 2022-06-11 12:50:33 -07:00
mount_nullfs mount_nullfs: rename a local variable 2021-04-08 02:15:00 +00:00
mount_udf
mount_unionfs
natd natd: Remove uneeded in_cksum.h includes 2021-12-01 07:42:13 -05:00
newfs *: Do not use the no-op -r flag for bsdlabel(8) 2022-03-31 09:37:03 +02:00
newfs_msdos newfs_msdos: Fix warnings that arise when compiled for makefs 2022-05-24 09:51:27 -04:00
nfsiod pkgbase: Add nfsiod to the FreeBSD-nfs package 2021-08-16 18:15:47 +02:00
nos-tun pkgbase: Create a FreeBSD-utilities package and make it the default one 2019-09-05 14:15:47 +00:00
nvmecontrol nvmecontrol(8): Fix a typo in an error message 2022-06-10 14:27:21 +02:00
pfctl pfctl: fix recursive printing of rules 2022-05-04 08:20:58 +02:00
pfilctl Do a sweep and remove most WARNS=6 settings 2020-10-01 01:10:51 +00:00
pflogd
ping ping: add missing test files to Makefile 2022-05-27 07:12:04 -05:00
ping6 Merge ping6 to ping 2020-11-26 04:29:30 +00:00
quotacheck
rcorder [rcorder] [crunch] Fix C function declarations to include void 2020-09-21 17:59:45 +00:00
reboot Cross-reference nextboot(8) and freebsd-update(8) 2022-04-05 16:08:43 +02:00
recoverdisk Do a sweep and remove most WARNS=6 settings 2020-10-01 01:10:51 +00:00
resolvconf
restore Clean up global variable declarations in the dump and restore 2020-04-04 00:56:56 +00:00
route route: remove write-only struct hostent from getaddr() 2022-01-26 19:35:40 -05:00
routed routed(8): Remove a double word in a source code comment 2022-04-14 07:58:53 +02:00
rtsol Update Makefile.depend files 2019-12-11 17:37:53 +00:00
savecore savecore: add an option to save a live minidump 2022-06-27 16:32:06 -03:00
sconfig pkgbase: Put sconfig in FreeBSD-utilities 2022-01-05 18:23:51 +01:00
setkey setkey(8): Clarify language around AEAD ciphers. 2022-05-19 17:35:34 -07:00
shutdown shutdown.8: Fix typo 2020-07-05 13:08:17 +00:00
spppcontrol pkgbase: Move spppcontrol to FreeBSD-ppp 2022-01-05 18:23:49 +01:00
swapon swapon(8): adapt to the new swapoff(2) interface 2021-12-20 02:29:11 +02:00
sysctl sysctl.8: Reference sysctl(9) 2022-07-07 11:56:18 +02:00
tests
tunefs Filesystem utilities that modify the filesystem (growfs(8), tunefs(8), 2020-10-25 01:36:33 +00:00
umount umount(8): Remove a double word in a source code comment 2022-04-14 08:06:55 +02:00
veriexec veriexec(8): Bugfix for an issue reported by mandoc 2020-10-03 18:46:42 +00:00
zfsbootcfg loader: zfs should support bootonce an nextboot 2020-09-21 09:01:10 +00:00
Makefile sbin: build ping if at least one of INET & INET6 is enabled 2021-12-12 20:28:58 -05:00
Makefile.amd64
Makefile.arm
Makefile.i386
Makefile.inc build: provide a default WARNS for all in-tree builds 2020-09-18 17:17:46 +00:00
Makefile.mips
Makefile.powerpc64