| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Require that MAC label buffers be able to store a non-empty string. | Mark Johnston | 2018-08-01 | 1 | -1/+3 |
| * | fix incorrect operator in the AUDITPIPE_SET_QLIMIT bounds check | Andriy Gapon | 2018-07-23 | 1 | -1/+1 |
| * | Fix audit of chflagsat, lgetfh, and setfib | Alan Somers | 2018-07-22 | 1 | -0/+3 |
| * | Make it possible to run ntpd as a non-root user, add ntpd uid and gid. | Ian Lepore | 2018-07-19 | 1 | -0/+77 |
| * | auditon(2): fix A_SETPOLICY with 64-bit values | Alan Somers | 2018-07-15 | 1 | -1/+1 |
| * | Add mpo_vnode_check_setmode MAC method to MAC/veriexec. | Stephen J. Kiernan | 2018-07-14 | 1 | -0/+33 |
| * | Fix a typo which could cause a build breakage when building with MAC/veriexec | Stephen J. Kiernan | 2018-07-14 | 2 | -2/+1 |
| * | Remove RIPEMD-160 fingerprint modules for veriexec, since it has very | Stephen J. Kiernan | 2018-07-14 | 1 | -45/+0 |
| * | Fix build breakage in veriexec for 32-bit architectures. | Stephen J. Kiernan | 2018-06-20 | 2 | -23/+28 |
| * | MAC/veriexec implements a verified execution environment using the MAC | Stephen J. Kiernan | 2018-06-20 | 10 | -0/+2454 |
| * | audit(4): fix the definition of ARG_TERMID_ADDR | Alan Somers | 2018-06-13 | 1 | -1/+1 |
| * | #include <bsm/audit.h> in security/audit/audit_ioctl.h | Alan Somers | 2018-05-30 | 1 | -0/+2 |
| * | Fix "Bad tailq" panic when auditing auditon(A_SETCLASS, ...) | Alan Somers | 2018-05-28 | 1 | -1/+0 |
| * | Use an accessor function to access ifr_data. | Brooks Davis | 2018-03-30 | 1 | -2/+2 |
| * | audit(4): fix a typo in a comment | Alan Somers | 2018-03-17 | 1 | -1/+1 |
| * | mac_portacl(4): stop panicing INVARIANTS-enabled kernel by loading .ko | Eugene Grosbein | 2018-02-25 | 1 | -0/+1 |
| * | Reduce duplication in __mac_*_(file|link)(2) implementation. | Brooks Davis | 2018-02-15 | 1 | -97/+27 |
| * | Do pass removing some write-only variables from the kernel. | Alexander Kabaev | 2017-12-25 | 1 | -2/+0 |
| * | sys: further adoption of SPDX licensing ID tags. | Pedro F. Giffuni | 2017-11-20 | 13 | -1/+27 |
| * | Sprinkle __read_frequently on few obvious places. | Mateusz Guzik | 2017-09-06 | 1 | -1/+1 |
| * | Correct bitwise test in mac_bsdextended ugidfw_rule_valid() | Ed Maste | 2017-06-13 | 1 | -1/+1 |
| * | Commit the 64-bit inode project. | Konstantin Belousov | 2017-05-23 | 1 | -4/+4 |
| * | Break audit_bsm_klib.c into two files: one (audit_bsm_klib.c) | Robert Watson | 2017-04-03 | 2 | -271/+330 |
| * | Correct macro names and signatures for !AUDIT versions of canonical | Robert Watson | 2017-03-31 | 1 | -2/+2 |
| * | Audit arguments to POSIX message queues, semaphores, and shared memory. | Robert Watson | 2017-03-31 | 2 | -0/+56 |
| * | Audit arguments to System V IPC system calls implementing sempahores, | Robert Watson | 2017-03-30 | 1 | -0/+30 |
| * | Various BSM generation improvements when auditing AUE_ACCEPT, | Robert Watson | 2017-03-30 | 1 | -6/+68 |
| * | Don't ifdef KDTRACE_HOOKS struct, variable, and function prototype | Robert Watson | 2017-03-30 | 1 | -8/+0 |
| * | When handling msgsys(2), semsys(2), and shmsys(2) multiplex system calls, | Robert Watson | 2017-03-29 | 5 | -3/+118 |
| * | Add an experimental DTrace audit provider, which allows users of DTrace to | Robert Watson | 2017-03-29 | 5 | -15/+700 |
| * | Introduce an audit event identifier -> audit event name mapping | Robert Watson | 2017-03-27 | 4 | -1/+216 |
| * | Extend comment describing path canonicalisation in audit. | Robert Watson | 2017-03-27 | 1 | -1/+2 |
| * | Audit 'fd' and 'cmd' arguments to fcntl(2), and when generating BSM, | Robert Watson | 2016-11-22 | 1 | -4/+1 |
| * | Fix improper use of "its". | Bryan Drewery | 2016-11-08 | 1 | -1/+1 |
| * | Don't check aq64_minfree which is unsigned for negative values. | John Baldwin | 2016-09-08 | 1 | -2/+2 |
| * | Audit the accepted (or rejected) username argument to setlogin(2). | Robert Watson | 2016-08-20 | 2 | -2/+8 |
| * | Add AUE_WAIT6 handling to the BSM conversion switch statement, reusing | Robert Watson | 2016-07-11 | 1 | -0/+1 |
| * | Implement AUE_PREAD and AUE_PWRITE BSM conversion support, eliminating | Robert Watson | 2016-06-13 | 1 | -0/+2 |
| * | sys/security: minor spelling fixes. | Pedro F. Giffuni | 2016-05-06 | 7 | -7/+7 |
| * | sys: use our nitems() macro when param.h is available. | Pedro F. Giffuni | 2016-04-21 | 2 | -4/+2 |
| * | Remove slightly used const values that can be replaced with nitems(). | Pedro F. Giffuni | 2016-04-21 | 2 | -7/+4 |
| * | audit(8): leave unsigned comparison for last. | Pedro F. Giffuni | 2016-04-08 | 1 | -2/+2 |
| * | Busy the mount point which is the owner of the audit vnode, around | Konstantin Belousov | 2016-01-16 | 1 | -15/+45 |
| * | Move the funsetown(9) call from audit_pipe_close() to cdevpriv | Konstantin Belousov | 2016-01-13 | 1 | -25/+4 |
| * | Merge from contrib/openbsm to bring the kernel audit bits up to date with Ope... | Christian Brueffer | 2015-12-20 | 5 | -10/+0 |
| * | Fix style issues around existing SDT probes. | Mark Johnston | 2015-12-16 | 2 | -22/+22 |
| * | fd: make 'rights' a manadatory argument to fget* functions | Mateusz Guzik | 2015-07-05 | 1 | -1/+3 |
| * | Replace struct filedesc argument in getvnode with struct thread | Mateusz Guzik | 2015-06-16 | 1 | -1/+1 |
| * | fd: make rights a mandatory argument to fget_unlocked | Mateusz Guzik | 2015-06-16 | 1 | -1/+3 |
| * | cred: add proc_set_cred helper | Mateusz Guzik | 2015-03-16 | 3 | -6/+6 |
