| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Remove unused argument to priv_check_cred. | Mateusz Guzik | 2018-12-11 | 1 | -6/+5 |
| * | Correct bitwise test in mac_bsdextended ugidfw_rule_valid() | Ed Maste | 2017-06-13 | 1 | -1/+1 |
| * | Pull in r267961 and r267973 again. Fix for issues reported will follow. | Hans Petter Selasky | 2014-06-28 | 1 | -2/+1 |
| * | Revert r267961, r267973: | Glen Barber | 2014-06-27 | 1 | -1/+2 |
| * | Extend the meaning of the CTLFLAG_TUN flag to automatically check if | Hans Petter Selasky | 2014-06-27 | 1 | -2/+1 |
| * | Mark all SYSCTL_NODEs static that have no corresponding SYSCTL_DECLs. | Ed Schouten | 2011-11-07 | 1 | -2/+2 |
| * | Mark MALLOC_DEFINEs static that have no corresponding MALLOC_DECLAREs. | Ed Schouten | 2011-11-07 | 1 | -1/+2 |
| * | Add hierarchical jails. A jail may further virtualize its environment | Jamie Gritton | 2009-05-27 | 1 | -2/+2 |
| * | Get rid of VSTAT and replace it with VSTAT_PERMS, which is somewhat | Edward Tomasz Napierala | 2009-03-29 | 1 | -2/+2 |
| * | Mark the bsdextended rules sysctl as being mpsafe. | Christian S.J. Peron | 2009-03-09 | 1 | -2/+2 |
| * | Remove 'uio' argument from MAC Framework and MAC policy entry points for | Robert Watson | 2009-03-08 | 2 | -8/+4 |
| * | Rather than having MAC policies explicitly declare what object types | Robert Watson | 2009-01-10 | 1 | -1/+1 |
| * | MFp4: | Bjoern A. Zeeb | 2008-11-29 | 1 | -0/+1 |
| * | The V* flags passed using an accmode_t to the access() and open() | Robert Watson | 2008-10-30 | 3 | -12/+26 |
| * | Introduce accmode_t. This is required for NFSv4 ACLs - it will be neccessary | Edward Tomasz Napierala | 2008-10-28 | 2 | -6/+14 |
| * | When the mac_bsdextended policy is unloaded, free rule memory. | Robert Watson | 2008-10-27 | 1 | -0/+5 |
| * | Add TrustedBSD credit to new ugidfw_internal.h file. | Robert Watson | 2008-10-27 | 1 | -0/+2 |
| * | Break mac_bsdextended.c out into multiple .c files, with the base access | Robert Watson | 2008-10-27 | 4 | -1451/+149 |
| * | Copy mac_bsdextended.c to two object-specific files as a prototype for how | Robert Watson | 2008-10-27 | 2 | -0/+1536 |
| * | Fix a number of style issues in the MALLOC / FREE commit. I've tried to | Dag-Erling Smørgrav | 2008-10-23 | 1 | -1/+2 |
| * | Retire the MALLOC and FREE macros. They are an abomination unto style(9). | Dag-Erling Smørgrav | 2008-10-23 | 1 | -3/+2 |
| * | Remove the suser(9) interface from the kernel. It has been replaced from | Attilio Rao | 2008-09-17 | 1 | -8/+24 |
| * | Remove VSVTX, VSGID and VSUID. This should be a no-op, | Edward Tomasz Napierala | 2008-09-10 | 1 | -2/+3 |
| * | Decontextualize the couplet VOP_GETATTR / VOP_SETATTR as the passed thread | Attilio Rao | 2008-08-28 | 1 | -1/+1 |
| * | Introduce two related changes to the TrustedBSD MAC Framework: | Robert Watson | 2008-08-23 | 1 | -1/+1 |
| * | In mac_bsdextended's auditctl and acct policy access control checks, | Robert Watson | 2008-07-31 | 1 | -11/+8 |
| * | Resort TrustedBSD MAC Framework policy entry point implementations and | Robert Watson | 2007-10-29 | 1 | -0/+4 |
| * | Consistently name functions for mac_<policy> as <policy>_whatever rather | Robert Watson | 2007-10-25 | 1 | -133/+131 |
| * | Merge first in a series of TrustedBSD MAC Framework KPI changes | Robert Watson | 2007-10-24 | 1 | -58/+62 |
| * | Rename mac_check_vnode_delete() MAC Framework and MAC Policy entry | Robert Watson | 2007-09-10 | 1 | -14/+14 |
| * | In preparation for 7.0 privilege cleanup, clean up style: | Robert Watson | 2007-07-05 | 2 | -87/+32 |
| * | Include priv.h to pick up suser(9) definitions, missed in an earlier | Robert Watson | 2007-06-13 | 1 | -0/+1 |
| * | Apply variable name normalization to MAC policies: adopt global conventions | Robert Watson | 2007-04-23 | 1 | -32/+35 |
| * | Allow MAC policy modules to control access to audit configuration system | Robert Watson | 2007-04-21 | 1 | -0/+27 |
| * | More unnecessary include reduction. | Robert Watson | 2007-02-23 | 1 | -17/+2 |
| * | Move mapping of MBI_APPEND to MBI_WRITE from inside the rule loop in | Robert Watson | 2007-02-20 | 1 | -9/+8 |
| * | Continue 7-CURRENT MAC Framework rearrangement and cleanup: | Robert Watson | 2007-02-06 | 1 | -1/+0 |
| * | Move src/sys/sys/mac_policy.h, the kernel interface between the MAC | Robert Watson | 2006-12-22 | 1 | -2/+1 |
| * | Sweep kernel replacing suser(9) calls with priv(9) calls, assigning | Robert Watson | 2006-11-06 | 1 | -0/+3 |
| * | Add some new options to mac_bsdestended. We can now match on: | David Malone | 2006-04-23 | 2 | -35/+210 |
| * | Create a mac_bsdextended_check_vp function that takes a cred, a | David Malone | 2006-03-04 | 1 | -280/+43 |
| * | Fix potential overrun of static stack allocated array which stores | Christian S.J. Peron | 2006-01-15 | 1 | -1/+1 |
| * | If a "hole" opens up in the ruleset (i.e.: remove 5), do not return | Tom Rhodes | 2005-07-28 | 1 | -5/+2 |
| * | Add locking support to mac_bsdextended: | Tom Rhodes | 2005-04-22 | 1 | -37/+67 |
| * | Minor white space synchronization and line wrapping. | Robert Watson | 2004-10-22 | 1 | -0/+1 |
| * | Bump copyright dates for NETA on these files. | Robert Watson | 2004-10-21 | 2 | -2/+2 |
| * | Modify mac_bsdextended policy so that it defines its own vnode access | Robert Watson | 2004-10-21 | 2 | -33/+74 |
| * | Remove the debugging tunable, it was not being used. | Tom Rhodes | 2004-09-10 | 1 | -10/+1 |
| * | Allow mac_bsdextended(4) to log failed attempts to syslog's AUTHPRIV | Tom Rhodes | 2004-08-21 | 1 | -5/+19 |
| * | Give the mac_bsdextended(4) policy the ability to match and apply on a first | Tom Rhodes | 2004-08-21 | 1 | -2/+21 |
