From owner-cvs-src-old@FreeBSD.ORG Tue Mar 1 13:28:42 2011 Return-Path: Delivered-To: cvs-src-old@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5287F1065675 for ; Tue, 1 Mar 2011 13:28:42 +0000 (UTC) (envelope-from rwatson@FreeBSD.org) Received: from repoman.freebsd.org (repoman.freebsd.org [IPv6:2001:4f8:fff6::29]) by mx1.freebsd.org (Postfix) with ESMTP id 3F3BD8FC25 for ; Tue, 1 Mar 2011 13:28:42 +0000 (UTC) Received: from repoman.freebsd.org (localhost [127.0.0.1]) by repoman.freebsd.org (8.14.4/8.14.4) with ESMTP id p21DSgbR033022 for ; Tue, 1 Mar 2011 13:28:42 GMT (envelope-from rwatson@repoman.freebsd.org) Received: (from svn2cvs@localhost) by repoman.freebsd.org (8.14.4/8.14.4/Submit) id p21DSgA2033021 for cvs-src-old@freebsd.org; Tue, 1 Mar 2011 13:28:42 GMT (envelope-from rwatson@repoman.freebsd.org) Message-Id: <201103011328.p21DSgA2033021@repoman.freebsd.org> X-Authentication-Warning: repoman.freebsd.org: svn2cvs set sender to rwatson@repoman.freebsd.org using -f From: Robert Watson Date: Tue, 1 Mar 2011 13:28:27 +0000 (UTC) To: cvs-src-old@freebsd.org X-FreeBSD-CVS-Branch: HEAD Subject: cvs commit: src/sys/kern Makefile capabilities.conf makesyscalls.sh src/sys/sys sysent.h X-BeenThere: cvs-src-old@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: **OBSOLETE** CVS commit messages for the src tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 01 Mar 2011 13:28:42 -0000 rwatson 2011-03-01 13:28:27 UTC FreeBSD src repository Modified files: sys/kern Makefile makesyscalls.sh sys/sys sysent.h Added files: sys/kern capabilities.conf Log: SVN rev 219131 on 2011-03-01 13:28:27Z by rwatson Continue to introduce Capsicum Capability Mode support: Add a new system call flag, SYF_CAPENABLED, which indicates that a particular system call is available in capability mode. Add a new configuration file, kern/capabilities.conf (similar files may be introduced for other ABIs in the future), which enumerates system calls that are available in capability mode. When a new system call is added to syscalls.master, it will also need to be added here (if needed). Teach sysent parts to use this file to set values for SYF_CAPENABLED for the native ABI. Reviewed by: anderson Discussed with: benl, kris, pjd Obtained from: Capsicum Project MFC after: 3 months Revision Changes Path 1.20 +2 -1 src/sys/kern/Makefile 1.1 +756 -0 src/sys/kern/capabilities.conf (new) 1.80 +23 -1 src/sys/kern/makesyscalls.sh 1.73 +5 -0 src/sys/sys/sysent.h