d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
4b3b785fc8
freebsd-dev/sys/security/audit
History
Robert Watson 06edd2f1e8 Merge OpenBSM 1.1 beta 1 from OpenBSM vendor branch to head, both 
contrib/openbsm (svn merge) and src/sys/{bsm,security/audit} (manual
merge).

OpenBSM history for imported revision below for reference.

MFC after:      1 month
Sponsored by:   Apple, Inc.
Obtained from:  TrustedBSD Project

OpenBSM 1.1 beta 1

- The filesz parameter in audit_control(5) now accepts suffixes: 'B' for
  Bytes, 'K' for Kilobytes, 'M' for Megabytes, and 'G' for Gigabytes.
  For legacy support no suffix defaults to bytes.
- Audit trail log expiration support added.  It is configured in
  audit_control(5) with the expire-after parameter.  If there is no
  expire-after parameter in audit_control(5), the default, then the audit
  trail files are not expired and removed.  See audit_control(5) for
  more information.
- Change defaults in audit_control: warn at 5% rather than 20% free for audit
  partitions, rotate automatically at 2mb, and set the default policy to
  cnt,argv rather than cnt so that execve(2) arguments are captured if
  AUE_EXECVE events are audited.  These may provide more usable defaults for
  many users.
- Use au_domain_to_bsm(3) and au_socket_type_to_bsm(3) to convert
  au_to_socket_ex(3) arguments to BSM format.
- Fix error encoding AUT_IPC_PERM tokens.
2009-03-02 13:29:18 +00:00
..
audit_arg.c When repeatedly accessing a thread credential, cache the credential 2008-11-14 01:24:52 +00:00
audit_bsm_domain.c Merge OpenBSM alpha 5 from OpenBSM vendor branch to head, both 2009-01-14 10:44:16 +00:00
audit_bsm_errno.c Merge OpenBSM 1.1 beta 1 from OpenBSM vendor branch to head, both 2009-03-02 13:29:18 +00:00
audit_bsm_klib.c Change various routines that are responsible for transforming audit 2009-02-08 14:39:35 +00:00
audit_bsm_socket_type.c Merge OpenBSM alpha 5 from OpenBSM vendor branch to head, both 2009-01-14 10:44:16 +00:00
audit_bsm_token.c Merge OpenBSM 1.1 beta 1 from OpenBSM vendor branch to head, both 2009-03-02 13:29:18 +00:00
audit_bsm.c Audit AUE_MAC_EXECVE; currently just the standard AUE_EXECVE arguments 2009-02-08 14:24:35 +00:00
audit_ioctl.h Don't expose #ifdef NOTYET parts to userspace via audit_ioctl.h, just 2007-04-29 16:20:32 +00:00
audit_pipe.c Set the lower bound on queue size for an audit pipe to 1 instead of 0, 2009-02-08 15:38:31 +00:00
audit_private.h Change various routines that are responsible for transforming audit 2009-02-08 14:39:35 +00:00
audit_syscalls.c Partially roll back a revision which changed the error code being returned 2008-11-30 19:58:03 +00:00
audit_trigger.c Generally avoid <space><tab> as a white space anomoly. 2008-07-22 16:44:48 +00:00
audit_worker.c Wrap sx locking of the audit worker sleep lock in macros, update comments. 2008-11-10 22:06:24 +00:00
audit.c When repeatedly accessing a thread credential, cache the credential 2008-11-14 01:24:52 +00:00
audit.h In AUDIT_SYSCALL_EXIT(), invoke audit_syscall_exit() only if an audit 2009-01-06 13:59:59 +00:00