d/freebsd-nq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
9162f64b58
freebsd-nq/sys
History
Robert Watson 9162f64b58 Rather than having MAC policies explicitly declare what object types 
they label, derive that information implicitly from the set of label
initializers in their policy operations set.  This avoids a possible
class of programmer errors, while retaining the structure that
allows us to avoid allocating labels for objects that don't need
them.  As before, we regenerate a global mask of labeled objects
each time a policy is loaded or unloaded, stored in mac_labeled.

Discussed with:   csjp
Suggested by:     Jacques Vidrine <nectar at apple.com>
Obtained from:    TrustedBSD Project
Sponsored by:     Apple, Inc.
2009-01-10 10:58:41 +00:00
..
amd64 Add Centaur/IDT/VIA vendor ID for Nano family, which has long mode support. 2009-01-05 21:51:49 +00:00
arm Check PCIE link status before accessing the bus. 2009-01-09 12:38:41 +00:00
boot This patch introduces a number of simplifications to the Forth 2009-01-05 20:09:54 +00:00
bsm Merge OpenBSM alpha 4 from OpenBSM vendor branch to head, both 2008-12-31 11:12:24 +00:00
cam Make "kldunload atapicam" return EBUSY instead of deadlocking when a device 2009-01-08 17:26:51 +00:00
cddl Put the MIPS support back in after it was removed in r185029. 2008-12-04 16:31:08 +00:00
compat Push down Giant inside sysctl. Also add some more assertions to the code. 2008-12-29 12:58:45 +00:00
conf Implement a new IP option (not compiled/enabled by default) to allow 2009-01-09 16:02:19 +00:00
contrib Check for ipprotosw.h more precisely. 2008-12-23 16:49:07 +00:00
crypto Avoid 256 integer divisions per rc4_init() call. Replace it with using 2008-12-16 13:58:37 +00:00
ddb Collect N identical (or near identical) mkdumpheader() implementations into 2008-10-01 22:08:53 +00:00
dev Readd the Alcor Transcend device which is referenced in usb2/storage/umass2.c, 2009-01-09 04:38:22 +00:00
fs Fix a deadlock which can occur due to a pseudofs vnode not getting unlocked. 2009-01-09 22:06:48 +00:00
gdb
geom - Don't enforce an upper-bound to the number of sectors or heads, 2009-01-06 14:10:10 +00:00
gnu Do not incorrectly add the low 5 bits of the offset to the resulting 2009-01-04 15:56:49 +00:00
i386 Add a reference to the "env" kernel config option in the GENERIC file, 2009-01-06 15:10:26 +00:00
ia64 AT_DEBUG and AT_BRK were OBE like 10 years ago, so retire them. 2008-12-17 06:56:58 +00:00
isa Allow device hints to wire the unit numbers of devices. 2008-11-18 21:01:54 +00:00
kern Do not call namei() while having another user-controlled vnode 2009-01-08 12:47:30 +00:00
kgssapi Call svc_freereq() before returning from the service proc. 2008-11-12 15:31:05 +00:00
libkern Add simple locking for the in-kernel iconv code. Translation operations 2008-12-05 21:19:24 +00:00
mips First pass at 64-bit elf support 2008-12-31 07:38:04 +00:00
modules remove license ack requirement; this was never needed 2009-01-09 22:35:25 +00:00
net Rather than using the cred from curthread, take it from the thread 2009-01-09 23:57:59 +00:00
net80211 TDMA support for long distance point-to-point links using ath devices: 2009-01-08 17:12:47 +00:00
netatalk Retire the MALLOC and FREE macros. They are an abomination unto style(9). 2008-10-23 15:53:51 +00:00
netgraph Mark ng_vjc node as FORCE_WRITER to protect slcompress state. 2009-01-08 17:51:15 +00:00
netinet Restrict arp, ndp and theoretically the FIB listing (if not 2009-01-09 21:57:49 +00:00
netinet6 Restrict arp, ndp and theoretically the FIB listing (if not 2009-01-09 21:57:49 +00:00
netipsec Switch the last protosw* structs to C99 initializers. 2009-01-05 20:29:01 +00:00
netipx Add missing "goto set_head" for SO_IPX_CHECKSUM; otherwise we fall through 2008-12-11 10:29:35 +00:00
netnatm Retire the MALLOC and FREE macros. They are an abomination unto style(9). 2008-10-23 15:53:51 +00:00
netncp Retire the MALLOC and FREE macros. They are an abomination unto style(9). 2008-10-23 15:53:51 +00:00
netsmb Implement device cloning for /dev/nsmb, the netsmb control pseudo-device. 2008-11-03 14:23:15 +00:00
nfs
nfs4client Introduce accmode_t. This is required for NFSv4 ACLs - it will be neccessary 2008-10-28 13:44:11 +00:00
nfsclient Rather than using hidden includes (with cicular dependencies), 2008-12-02 21:37:28 +00:00
nfsserver Handle VFS_VGET() failing with an error other than EOPNOTSUPP in addition 2008-12-16 04:34:09 +00:00
nlm Don't call svc_freereq() before svc_freeargs(). 2008-11-12 15:30:30 +00:00
opencrypto Don't hang if encrypting/decrypting using struct iovecs where one of the 2008-10-30 16:11:07 +00:00
pc98 Replace syscons terminal renderer by a new renderer that uses libteken. 2009-01-01 13:26:53 +00:00
pccard
pci Since we don't request reset for rlphy(4), the link state 'UP' 2008-12-22 00:53:47 +00:00
powerpc Add a new quirk type so that the MacIO driver will assign memory resources 2009-01-06 01:54:57 +00:00
rpc Add a missing call to mtx_destroy(). 2008-11-12 12:21:18 +00:00
security Rather than having MAC policies explicitly declare what object types 2009-01-10 10:58:41 +00:00
sparc64 - Currently the PMAP code is laid out to let the kernel TSB cover the 2009-01-01 14:01:21 +00:00
sun4v Missed the sun4v update to ofw_machdep.h in the OFW modularization commit. 2008-12-20 15:11:00 +00:00
sys Add some new oss_sysinfo structure fields from OSSv4. 2009-01-07 21:12:33 +00:00
tools Remove some unused and broken code that attempted to not invoke locking 2008-11-03 19:57:40 +00:00
ufs Lock the uepm_lock around the autostart of extattrs. 2009-01-08 12:49:55 +00:00
vm Extend the struct vm_page wire_count to u_int to avoid the overflow 2009-01-03 13:24:08 +00:00
xdr Use the remote address for access control, not the local address. This fixes 2008-11-13 14:36:52 +00:00
xen merge 186535, 186537, and 186538 from releng_7_xen 2008-12-29 06:31:03 +00:00
Makefile