d/freebsd-nq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
freebsd-nq/sys/security
History
Robert Watson 2a1c79af92 Add compartment support to Biba and MLS policies. The logic of the 
policies remains the same: subjects and objects are labeled for
integrity or sensitivity, and a dominance operator determines whether
or not subject/object accesses are permitted to limit inappropriate
information flow.  Compartments are a non-hierarchal component to
the label, so add a bitfield to the label element for each, and a
set check as part of the dominance operator.  This permits the
implementation of "need to know" elements of MLS.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, Network Associates Laboratories
2002-10-21 18:42:01 +00:00
..
lomac
Regularize the vop_stdlock'ing protocol across all the filesystems
2002-10-14 03:20:36 +00:00
mac
Add compartment support to Biba and MLS policies. The logic of the
2002-10-21 18:42:01 +00:00
mac_biba
Add compartment support to Biba and MLS policies. The logic of the
2002-10-21 18:42:01 +00:00
mac_bsdextended
Merge implementation of mpo_check_vnode_link() for various appropriate
2002-10-05 18:25:48 +00:00
mac_ifoff
Rename mac_check_socket_receive() to mac_check_socket_deliver() so that
2002-08-15 18:51:27 +00:00
mac_mls
Add compartment support to Biba and MLS policies. The logic of the
2002-10-21 18:42:01 +00:00
mac_none
Sync from MAC tree: break out the single mmap entry point into
2002-10-06 02:46:26 +00:00
mac_seeotheruids
Introduce support for Mandatory Access Control and extensible
2002-07-31 18:07:45 +00:00
mac_stub
Sync from MAC tree: break out the single mmap entry point into
2002-10-06 02:46:26 +00:00
mac_test
Sync from MAC tree: break out the single mmap entry point into
2002-10-06 02:46:26 +00:00