|
Revision tags: release/13.4.0-p5, release/13.5.0-p1, release/14.2.0-p3, release/13.5.0, release/14.2.0-p2, release/14.1.0-p8, release/13.4.0-p4, release/14.1.0-p7, release/14.2.0-p1, release/13.4.0-p3, release/14.2.0, release/13.4.0, release/14.1.0, release/13.3.0, release/14.0.0 |
|
| #
b2c76c41 |
| 16-Aug-2023 |
Warner Losh <[email protected]> |
Remove $FreeBSD$: one-line nroff pattern
Remove /^\.\\"\s*\$FreeBSD\$$\n/
|
|
Revision tags: release/13.2.0, release/12.4.0, release/13.1.0 |
|
| #
40440830 |
| 31-Mar-2022 |
Greg Lehey <[email protected]> |
chroot.2: Correct grammar errors.
No functional change.
MFC after: 1 week
|
|
Revision tags: release/12.3.0, release/13.0.0, release/12.2.0 |
|
| #
61c4a6f3 |
| 29-Sep-2020 |
Warner Losh <[email protected]> |
Updates to chroot(2) docs
1. Note what settings give historic behavior
2. Recommend jail under security considerations.
|
| #
f045cfb8 |
| 26-Jun-2020 |
Warner Losh <[email protected]> |
Chroot actually appeared in 7th Edition Unix.
Chroot appeared during the development of 7th edition Unix. The FreeBSD jail
documents, incorrectly, that Bill Joy added this to 4.2BSD on 18 March
1982
Chroot actually appeared in 7th Edition Unix.
Chroot appeared during the development of 7th edition Unix. The FreeBSD jail
documents, incorrectly, that Bill Joy added this to 4.2BSD on 18 March
1982. That was when Bill Joy converted from a statically coded system call glue
to dynamically generated assembler. Chroot was present in 32V, 3BSD, 4.0BSD, 4.1BSD
and 4.1cBSD well in advance of this. Kirk McKusick agrees with this analysis.
See also:
V7: https://minnie.tuhs.org/cgi-bin/utree.pl?file=V7/usr/src/libc/sys/chroot.s
32V: https://minnie.tuhs.org/cgi-bin/utree.pl?file=32V/usr/src/libc/sys/chroot.s
3BSD: https://minnie.tuhs.org/cgi-bin/utree.pl?file=3BSD/usr/src/libc/sys/chroot.s
4BSD: https://minnie.tuhs.org/cgi-bin/utree.pl?file=4BSD/usr/src/libc/sys/chroot.s
4.1cBSD: https://minnie.tuhs.org/cgi-bin/utree.pl?file=4.1cBSD/usr/src/libc/sys/chroot.s
The 6th and earlier editions do not have this system call, nor do they have
anything named chroot in the trees available from TUHS.
Reviewed by: allanjude@
Differential Revision: https://reviews.freebsd.org/D25475
show more ...
|
|
Revision tags: release/11.4.0 |
|
| #
e42b0964 |
| 30-Mar-2020 |
John Baldwin <[email protected]> |
Document EINTEGRITY errors for many system calls.
EINTEGRITY was previously documented as a UFS-specific error for
mount(2). This documents EINTEGRITY as a filesystem-independent error
that may be
Document EINTEGRITY errors for many system calls.
EINTEGRITY was previously documented as a UFS-specific error for
mount(2). This documents EINTEGRITY as a filesystem-independent error
that may be reported by the backing store of a filesystem.
While here, document EIO as a filesystem-independent error for both
mount(2) and posix_fadvise(2). EIO was previously only documented for
UFS for mount(2).
Reviewed by: mckusick
Suggested by: mckusick
MFC after: 2 weeks
Sponsored by: Chelsio Communications
Differential Revision: https://reviews.freebsd.org/D24168
show more ...
|
|
Revision tags: release/12.1.0, release/11.3.0, release/12.0.0, release/11.2.0, release/10.4.0, release/11.1.0 |
|
| #
fbbd9655 |
| 28-Feb-2017 |
Warner Losh <[email protected]> |
Renumber copyright clause 4
Renumber cluase 4 to 3, per what everybody else did when BSD granted
them permission to remove clause 3. My insistance on keeping the same
numbering for legal reasons is
Renumber copyright clause 4
Renumber cluase 4 to 3, per what everybody else did when BSD granted
them permission to remove clause 3. My insistance on keeping the same
numbering for legal reasons is too pedantic, so give up on that point.
Submitted by: Jan Schaumann <[email protected]>
Pull Request: https://github.com/freebsd/freebsd/pull/96
show more ...
|
|
Revision tags: release/11.0.1, release/11.0.0, release/10.3.0, release/10.2.0, release/10.1.0, release/9.3.0, release/10.0.0, release/9.2.0, release/8.4.0 |
|
| #
69d649ba |
| 15-Jan-2013 |
Andrey Zonov <[email protected]> |
- Use standard RETURN VALUES section.
Approved by: kib (mentor)
MFC after: 1 week
|
|
Revision tags: release/9.1.0, release/8.3.0_cvs, release/8.3.0 |
|
| #
6fe5169c |
| 04-Jan-2012 |
Xin LI <[email protected]> |
Document the fact that chroot(2) is no longer part of POSIX since SUSv3
and add a SECURITY CONSIDERATIONS section for recommended practices.
|
|
Revision tags: release/9.0.0, release/7.4.0_cvs, release/8.2.0_cvs, release/7.4.0, release/8.2.0, release/8.1.0_cvs, release/8.1.0, release/7.3.0_cvs, release/7.3.0, release/8.0.0_cvs, release/8.0.0, release/7.2.0_cvs, release/7.2.0, release/7.1.0_cvs, release/7.1.0, release/6.4.0_cvs, release/6.4.0, release/7.0.0_cvs, release/7.0.0, release/6.3.0_cvs, release/6.3.0, release/6.2.0_cvs, release/6.2.0 |
|
| #
c879ae35 |
| 09-Jan-2007 |
Warner Losh <[email protected]> |
Per Regents of the University of Calfornia letter, remove advertising
clause.
# If I've done so improperly on a file, please let me know.
|
|
Revision tags: release/5.5.0_cvs, release/5.5.0, release/6.1.0_cvs, release/6.1.0, release/6.0.0_cvs, release/6.0.0, release/5.4.0_cvs, release/5.4.0, release/4.11.0_cvs, release/4.11.0, release/5.3.0_cvs, release/5.3.0 |
|
| #
1a0a9345 |
| 02-Jul-2004 |
Ruslan Ermilov <[email protected]> |
Mechanically kill hard sentence breaks.
|
|
Revision tags: release/4.10.0_cvs, release/4.10.0, release/5.2.1_cvs, release/5.2.1, release/5.2.0_cvs, release/5.2.0, release/4.9.0_cvs, release/4.9.0, release/5.1.0_cvs, release/5.1.0, release/4.8.0_cvs, release/4.8.0 |
|
| #
bd5466d6 |
| 31-Jan-2003 |
Robert Watson <[email protected]> |
Document a bug in our chroot(2) implementation: if access control
checks, including the "open directory" check or a MAC check fail,
after the working directory of the process has been changed, then
t
Document a bug in our chroot(2) implementation: if access control
checks, including the "open directory" check or a MAC check fail,
after the working directory of the process has been changed, then
the cwd of the process will be left as the target directory rather
than the original directory.
At some point, this bug might be fixable by performing the directory
change only after permission is granted for the change. In the
mean time document it (it's been there for a while).
show more ...
|
|
Revision tags: release/5.0.0_cvs, release/5.0.0 |
|
| #
2efeeba5 |
| 19-Dec-2002 |
Ruslan Ermilov <[email protected]> |
mdoc(7) police: "The .Fa argument.".
|
| #
2faeeff4 |
| 18-Dec-2002 |
Ruslan Ermilov <[email protected]> |
mdoc(7) police: Tidy up the syscall language.
Stop calling system calls "function calls".
Use "The .Fn system call" a-la "The .Nm utility".
When referring to a non-BSD implementation in
the HISTOR
mdoc(7) police: Tidy up the syscall language.
Stop calling system calls "function calls".
Use "The .Fn system call" a-la "The .Nm utility".
When referring to a non-BSD implementation in
the HISTORY section, call syscall a function,
to be safe.
show more ...
|
| #
8416165a |
| 11-Dec-2002 |
Ruslan Ermilov <[email protected]> |
Fixed the parameter's name.
PR: docs/46183
Submitted by: Dirk Gouders <[email protected]>
Approved by: re
|
|
Revision tags: release/4.7.0_cvs, release/4.6.2_cvs, release/4.6.2, release/4.6.1 |
|
| #
1f2cec10 |
| 15-Jul-2002 |
Giorgos Keramidas <[email protected]> |
The .Fn function.
|
|
Revision tags: release/4.6.0_cvs, release/4.5.0_cvs, release/4.4.0_cvs |
|
| #
432fda11 |
| 28-Dec-2001 |
Mike Pritchard <[email protected]> |
Add xref to jail(2).
PR: docs/33177
Submitted by: Tom Rhodes <[email protected]>
|
| #
32eef9ae |
| 01-Oct-2001 |
Ruslan Ermilov <[email protected]> |
mdoc(7) police: Use the new .In macro for #include statements.
|
| #
7ebcc426 |
| 15-Jul-2001 |
Dima Dorfman <[email protected]> |
Remove whitespace at EOL.
|
| #
a307d598 |
| 10-Jul-2001 |
Ruslan Ermilov <[email protected]> |
mdoc(7) police: removed HISTORY info from the .Os call.
|
|
Revision tags: release/4.3.0_cvs, release/4.3.0 |
|
| #
c23155a4 |
| 22-Nov-2000 |
Ruslan Ermilov <[email protected]> |
mdoc(7) police: Er macro usage cleanup.
|
|
Revision tags: release/4.2.0, release/4.1.1_cvs, release/4.1.0, release/3.5.0_cvs |
|
| #
4f79a411 |
| 04-May-2000 |
Alexey Zelkin <[email protected]> |
Use `Er' variable to define first column width in ERRORS section. It was
initially suggested by mdoc(7) style, but was broken over the years
|
| #
25bb73e0 |
| 21-Apr-2000 |
Alexey Zelkin <[email protected]> |
Introduce ".Lb" macro to libc manpages.
More libraries manpages updates following.
|
|
Revision tags: release/4.0.0_cvs, release/3.4.0_cvs, release/3.3.0_cvs |
|
| #
7f3dea24 |
| 28-Aug-1999 |
Peter Wemm <[email protected]> |
$Id$ -> $FreeBSD$
|
| #
fbc400a6 |
| 12-Jul-1999 |
Nik Clayton <[email protected]> |
Add $Id$, to make it simpler for members of the translation teams to
track.
The $Id$ line is normally at the bottom of the main comment block in the
man page, separated from the rest of the manpage
Add $Id$, to make it simpler for members of the translation teams to
track.
The $Id$ line is normally at the bottom of the main comment block in the
man page, separated from the rest of the manpage by an empty comment,
like so;
.\" $Id$
.\"
If the immediately preceding comment is a @(#) format ID marker than the
the $Id$ will line up underneath it with no intervening blank lines.
Otherwise, an additional blank line is inserted.
Approved by: bde
show more ...
|
|
Revision tags: release/3.2.0 |
|
| #
cc7532aa |
| 23-Mar-1999 |
Poul-Henning Kamp <[email protected]> |
Add a sysctl variable which can help stop chroot(2) escapes.
kern.chroot_allow_open_directories = 0
chroot(2) fails if there are open directories.
kern.chroot_allow_open_directories = 1 (default)
Add a sysctl variable which can help stop chroot(2) escapes.
kern.chroot_allow_open_directories = 0
chroot(2) fails if there are open directories.
kern.chroot_allow_open_directories = 1 (default)
chroot(2) fails if there are open directories and the process
is subject of a previous chroot(2).
kern.chroot_allow_open_directories = anything else
filedescriptors are not checked. (old behaviour).
I'm very interested in reports about software which breaks when
running with the default setting.
show more ...
|