freebsd-nq/sys at 4a58340e982f2b25ef02b9e8551820dddbf7a51d - freebsd-nq - Quacker.org Git Repositories

d/freebsd-nq

History

Robert Watson 4a58340e98 Introduce support for Mandatory Access Control and extensible

kernel access control

Invoke appropriate MAC framework entry points to authorize a number
of vnode operations, including read, write, stat, poll.  This permits
MAC policies to revoke access to files following label changes,
and to limit information spread about the file to user processes.

Note: currently the file cached credential is used for some of
these authorization check.  We will need to expand some of the
MAC entry point APIs to permit multiple creds to be passed to
the access control check to allow diverse policy behavior.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, NAI Labs

2002-08-01 17:23:22 +00:00

..

Fix the link to the Handbook

2002-08-01 17:21:18 +00:00

Fix the link to the Handbook

2002-08-01 17:21:18 +00:00

Create a new header <machine/_stdint.h> for storing MD parts of

2002-07-29 17:41:23 +00:00

Stash various networking paramters in the environment for the kernel

2002-07-31 20:17:06 +00:00

…

…

Regenerate

2002-07-20 02:56:34 +00:00

Remove duplicate 'modules-tags' rule

2002-08-01 03:13:10 +00:00

Resolve conflicts arising from the ACPI CA 20020725 import.

2002-07-30 19:35:32 +00:00

Fix some really pedantic GCC warnings.

2002-07-15 13:45:15 +00:00

Part 1 of KSE-III

2002-06-29 17:26:22 +00:00

Don't set the IFF_PROMISC bit when in hostap mode like the previous

2002-08-01 07:37:52 +00:00

Introduce support for Mandatory Access Control and extensible

2002-08-01 02:03:21 +00:00

Don't use the static thread.. it is going away.

2002-06-29 07:47:20 +00:00

Use hashdestroy() now that it exists.

2002-06-30 03:01:44 +00:00

…

Fix the link to the Handbook

2002-08-01 17:21:18 +00:00

Resolve conflicts arising from the ACPI CA 20020725 import.

2002-07-30 19:35:32 +00:00

…

…

Introduce support for Mandatory Access Control and extensible

2002-08-01 17:23:22 +00:00

Convert GNU variadic macros to the ISO 9X variety.

2002-07-15 13:34:50 +00:00

Introduce support for Mandatory Access Control and extensible

2002-08-01 02:03:21 +00:00

Introduce support for Mandatory Access Control and extensible

2002-07-31 16:23:42 +00:00

…

…

…

Document the undocumented assumption that at least one of the PCB

2002-08-01 03:54:43 +00:00

correct comment for setsockopt arg size.

2002-07-25 20:40:09 +00:00

Make spxnames a const char * to quieten some warnings in netstat.

2002-07-27 23:15:08 +00:00

- fixed the order of searching SA table for packets.

2002-07-10 16:39:38 +00:00

…

Wire the sysctl output buffer before grabbing any locks to prevent

2002-07-28 19:59:31 +00:00

…

Wire the sysctl output buffer before grabbing any locks to prevent

2002-07-28 19:59:31 +00:00

…

o Lock page queue accesses in nfs_getpages().

2002-07-21 20:01:32 +00:00

Oops, another unused arg to nfssvc_nfsd(). *blush*

2002-07-24 23:10:34 +00:00

Fix the link to the Handbook

2002-08-01 17:21:18 +00:00

Add 16-bit before bus to keep the words card and bus apart.

2002-07-31 20:01:11 +00:00

Make sure to set both sets of registers which control the RX and TX buffer

2002-07-31 19:58:36 +00:00

Part 1 of KSE-III

2002-06-29 17:26:22 +00:00

Fix the link to the Handbook

2002-08-01 17:21:18 +00:00

…

Introduce support for Mandatory Access Control and extensible

2002-07-31 18:07:45 +00:00

Fix the link to the Handbook

2002-08-01 17:21:18 +00:00

Add pathconf/fpathconf entries from POSIX.1e indicating support for

2002-07-31 15:54:03 +00:00

- Add automatic post vop debug checks. These work in both the success and

2002-07-30 08:52:00 +00:00

Introduce support for Mandatory Access Control and extensible

2002-07-31 16:05:30 +00:00

o Setting PG_MAPPED and PG_WRITEABLE on pages that are mapped and unmapped

2002-07-31 18:46:47 +00:00

Makefile

…