freebsd-nq/sys/security
Robert Watson 18717f69b1 Allow MAC policy modules to control access to audit configuration system
calls.  Add MAC Framework entry points and MAC policy entry points for
audit(), auditctl(), auditon(), setaudit(), aud setauid().

MAC Framework entry points are only added for audit system calls where
additional argument context may be useful for policy decision-making; other
audit system calls without arguments may be controlled via the priv(9)
entry points.

Update various policy modules to implement audit-related checks, and in
some cases, other missing system-related checks.

Obtained from:	TrustedBSD Project
Sponsored by:	SPARTA, Inc.
2007-04-21 22:08:48 +00:00
..
audit Allow MAC policy modules to control access to audit configuration system 2007-04-21 22:08:48 +00:00
mac Allow MAC policy modules to control access to audit configuration system 2007-04-21 22:08:48 +00:00
mac_biba Allow MAC policy modules to control access to audit configuration system 2007-04-21 22:08:48 +00:00
mac_bsdextended Allow MAC policy modules to control access to audit configuration system 2007-04-21 22:08:48 +00:00
mac_ifoff More unnecessary include reduction. 2007-02-23 14:39:04 +00:00
mac_lomac Allow MAC policy modules to control access to audit configuration system 2007-04-21 22:08:48 +00:00
mac_mls Allow MAC policy modules to control access to audit configuration system 2007-04-21 22:08:48 +00:00
mac_none Remove many unneeded includes, update copyright. 2007-02-23 11:21:26 +00:00
mac_partition More unnecessary include reduction. 2007-02-23 14:39:04 +00:00
mac_portacl More unnecessary include reduction. 2007-02-23 14:39:04 +00:00
mac_seeotheruids More unnecessary include reduction. 2007-02-23 14:39:04 +00:00
mac_stub Allow MAC policy modules to control access to audit configuration system 2007-04-21 22:08:48 +00:00
mac_test Allow MAC policy modules to control access to audit configuration system 2007-04-21 22:08:48 +00:00