d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
c78cbc7b1d
freebsd-dev/lib
History
David Malone 89ddbd45e5 Add some new options to mac_bsdestended. We can now match on: 
subject: ranges of uid, ranges of gid, jail id
	objects: ranges of uid, ranges of gid, filesystem,
		object is suid, object is sgid, object matches subject uid/gid
		object type

We can also negate individual conditions. The ruleset language is
a superset of the previous language, so old rules should continue
to work.

These changes require a change to the API between libugidfw and the
mac_bsdextended module. Add a version number, so we can tell if
we're running mismatched versions.

Update man pages to reflect changes, add extra test cases to
test_ugidfw.c and add a shell script that checks that the the
module seems to do what we expect.

Suggestions from: rwatson, trhodes
Reviewed by: trhodes
MFC after: 2 months
2006-04-23 17:06:18 +00:00
..
bind Reimplementation of world/kernel build options. For details, see: 2006-03-17 18:54:44 +00:00
csu
libalias
libarchive Even if a system does not support restoring extended attributes, 2006-03-22 02:42:17 +00:00
libatm
libautofs
libbegemot
libbluetooth
libbsm
libbsnmp
libbz2
libc Oops, correct the weak reference (s/fclose/fcloseall). 2006-04-22 16:47:59 +00:00
libc_r Fix a symlink. 2006-04-12 19:51:14 +00:00
libcalendar
libcam
libcom_err
libcompat
libcrypt Provide alternate default for SHLIBDIR before bsd.own.mk does this. 2006-03-18 11:01:06 +00:00
libdevinfo
libdevstat
libdisk
libedit
libexpat
libfetch Reimplementation of world/kernel build options. For details, see: 2006-03-17 18:54:44 +00:00
libform
libftpio
libgeom
libgpib Apply style.Makefile(5) here. 2006-04-13 08:12:31 +00:00
libgssapi
libio NO_MAN is not needed here. 2006-03-16 15:18:17 +00:00
libipsec Provide alternate default for SHLIBDIR before bsd.own.mk does this. 2006-03-18 11:01:06 +00:00
libipx
libkiconv
libkse Unexpand TAILQ_FIRST(foo) == NULL to TAILQ_EMPTY. 2006-04-13 03:09:34 +00:00
libkvm Teach libkvm how to read minidumps. It turns out that minidumps are 2006-04-21 04:32:51 +00:00
libmagic
libmd
libmemstat
libmenu
libmilter Reimplementation of world/kernel build options. For details, see: 2006-03-17 18:54:44 +00:00
libmp
libncp NO_MAN is not needed here. 2006-03-16 15:18:17 +00:00
libncurses Convert NO_PROFILE and NO_LIB32 to new style. 2006-03-18 21:37:05 +00:00
libnetgraph
libngatm
libopie
libpam There is no need to pass NULL to the pam_error() as the last argument. 2006-03-20 16:56:08 +00:00
libpanel
libpcap Place shared libpcap library under /lib, currently needed by 2006-04-13 07:25:02 +00:00
libpmc MFP4: Support for profiling dynamically loaded objects. 2006-03-26 12:20:54 +00:00
libpthread Unexpand TAILQ_FIRST(foo) == NULL to TAILQ_EMPTY. 2006-04-13 03:09:34 +00:00
libradius Reimplementation of world/kernel build options. For details, see: 2006-03-17 18:54:44 +00:00
librpcsvc Reimplementation of world/kernel build options. For details, see: 2006-03-17 18:54:44 +00:00
librt Account for recent changes in namespace.h. Use _pthread_create 2006-03-29 04:20:53 +00:00
libsbuf
libsdp
libsm Add new libsm file from sendmail 8.13.6 2006-03-22 16:58:15 +00:00
libsmb NO_MAN is not needed here. 2006-03-16 15:18:17 +00:00
libsmdb
libsmutil
libstand Implement printf 'X' conversion for both libstand and kernel. 2006-03-09 22:37:34 +00:00
libtacplus
libtelnet Reimplementation of world/kernel build options. For details, see: 2006-03-17 18:54:44 +00:00
libthr Remove multiple _get_curthread() calls. 2006-04-23 11:23:37 +00:00
libthread_db Add symbol versioning. 2006-03-29 14:08:45 +00:00
libufs
libugidfw Add some new options to mac_bsdestended. We can now match on: 2006-04-23 17:06:18 +00:00
libusbhid
libutil Document how the backoff delay is calculated. 2006-04-19 17:46:27 +00:00
libvgl
libwrap Reimplementation of world/kernel build options. For details, see: 2006-03-17 18:54:44 +00:00
liby
libypclnt
libz Resolve conflicts. 2006-03-23 14:09:21 +00:00
msun Add symbol versioning to libm. 2006-03-27 23:59:45 +00:00
ncurses Convert NO_PROFILE and NO_LIB32 to new style. 2006-03-18 21:37:05 +00:00
Makefile Extend coverage of the MK_IPX build option to the following: 2006-03-20 14:24:58 +00:00
Makefile.inc