Robert Watson c14d15ae3e Remove MAC Framework access control check entry points made redundant with ... the introduction of priv(9) and MAC Framework entry points for privilege checking/granting. These entry points exactly aligned with privileges and provided no additional security context: - mac_check_sysarch_ioperm() - mac_check_kld_unload() - mac_check_settime() - mac_check_system_nfsd() Add mpo_priv_check() implementations to Biba and LOMAC policies, which, for each privilege, determine if they can be granted to processes considered unprivileged by those two policies. These mostly, but not entirely, align with the set of privileges granted in jails. Obtained from: TrustedBSD Project		2007-04-22 15:31:22 +00:00
..
audit	Allow MAC policy modules to control access to audit configuration system	2007-04-21 22:08:48 +00:00
mac	Remove MAC Framework access control check entry points made redundant with	2007-04-22 15:31:22 +00:00
mac_biba	Remove MAC Framework access control check entry points made redundant with	2007-04-22 15:31:22 +00:00
mac_bsdextended	Allow MAC policy modules to control access to audit configuration system	2007-04-21 22:08:48 +00:00
mac_ifoff	More unnecessary include reduction.	2007-02-23 14:39:04 +00:00
mac_lomac	Remove MAC Framework access control check entry points made redundant with	2007-04-22 15:31:22 +00:00
mac_mls	Allow MAC policy modules to control access to audit configuration system	2007-04-21 22:08:48 +00:00
mac_none	Remove many unneeded includes, update copyright.	2007-02-23 11:21:26 +00:00
mac_partition	More unnecessary include reduction.	2007-02-23 14:39:04 +00:00
mac_portacl	More unnecessary include reduction.	2007-02-23 14:39:04 +00:00
mac_seeotheruids	More unnecessary include reduction.	2007-02-23 14:39:04 +00:00
mac_stub	Remove MAC Framework access control check entry points made redundant with	2007-04-22 15:31:22 +00:00
mac_test	Remove MAC Framework access control check entry points made redundant with	2007-04-22 15:31:22 +00:00