summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Remove cam_extend.[ch] after all references to them were removed.njl2002-08-152-145/+0
| | | | | PR: kern/39809 Approved by: gibbs
* In order to better support flexible and extensible access control,rwatson2002-08-1531-106/+145
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | make a series of modifications to the credential arguments relating to file read and write operations to cliarfy which credential is used for what: - Change fo_read() and fo_write() to accept "active_cred" instead of "cred", and change the semantics of consumers of fo_read() and fo_write() to pass the active credential of the thread requesting an operation rather than the cached file cred. The cached file cred is still available in fo_read() and fo_write() consumers via fp->f_cred. These changes largely in sys_generic.c. For each implementation of fo_read() and fo_write(), update cred usage to reflect this change and maintain current semantics: - badfo_readwrite() unchanged - kqueue_read/write() unchanged pipe_read/write() now authorize MAC using active_cred rather than td->td_ucred - soo_read/write() unchanged - vn_read/write() now authorize MAC using active_cred but VOP_READ/WRITE() with fp->f_cred Modify vn_rdwr() to accept two credential arguments instead of a single credential: active_cred and file_cred. Use active_cred for MAC authorization, and select a credential for use in VOP_READ/WRITE() based on whether file_cred is NULL or not. If file_cred is provided, authorize the VOP using that cred, otherwise the active credential, matching current semantics. Modify current vn_rdwr() consumers to pass a file_cred if used in the context of a struct file, and to always pass active_cred. When vn_rdwr() is used without a file_cred, pass NOCRED. These changes should maintain current semantics for read/write, but avoid a redundant passing of fp->f_cred, as well as making it more clear what the origin of each credential is in file descriptor read/write operations. Follow-up commits will make similar changes to other file descriptor operations, and modify the MAC framework to pass both credentials to MAC policy modules so they can implement either semantic for revocation. Obtained from: TrustedBSD Project Sponsored by: DARPA, NAI Labs
* Remove usage of cam_extend.c, replace with dev->si_drv1njl2002-08-1510-244/+74
| | | | | PR: kern/39809 Approved by: gibbs
* Put each function argument on its own line to keep lines shorterrobert2002-08-151-1/+6
| | | | than 80 columns.
* Move mac.h include to match the MAC tree location. Both locationsrwatson2002-08-151-1/+1
| | | | | | | are about equally as alphabetized. Obtained from: TrustedBSD Project Sponsored by: DARPA, NAI Labs
* Introduce experimental support for MAC in the AppleTalk/EtherTalk stack.rwatson2002-08-153-0/+28
| | | | | | | | | Label link layer mbufs as they are created for transmission, check mbufs before delivering them to sockets, label mbufs as they are created from sockets, and preserve mbuf labels if mbufs are copied. Obtained from: TrustedBSD Project Sponsored by: DARPA, NAI Labs
* Use one line for each function argument to keep the linerobert2002-08-152-2/+11
| | | | | | | width smaller than 80 columns. Thanks to Ruslan for an explanation of multiple ways to achieve this.
* Rename mac_check_socket_receive() to mac_check_socket_deliver() so thatrwatson2002-08-1514-43/+43
| | | | | | | | we can use the names _receive() and _send() for the receive() and send() checks. Rename related constants, policy implementations, etc. Obtained from: TrustedBSD Project Sponsored by: DARPA, NAI Labs
* Rename mac_check_socket_receive() to mac_check_socket_deliver() so thatrwatson2002-08-159-90/+90
| | | | | | | | | | | | | we can use the names _receive() and _send() for the receive() and send() checks. Rename related constants, policy implementations, etc. PR: Submitted by: Reviewed by: Approved by: Obtained from: TrustedBSD Project Sponsored by: DARPA, NAI Labs MFC after:
* Oops, add -false to the operators list in the manual page for find(1), as addedjmallett2002-08-151-0/+1
| | | | | | in revision 1.17 of option.c. MFC after: 1 week
* Add support for -false instead of '!' cause it can be hard to use that injmallett2002-08-151-0/+1
| | | | | | | some shells, etc., and also for GNU compatability (lack of this broke the Mono CVS build for me). MFC after: 1 week
* Fix return case for negative namelen by jumping to normal exit processingrwatson2002-08-151-2/+4
| | | | | | rather than immediately returning, or we may not unlock necessary locks. Noticed by: Mike Heffner <mheffner@acm.vt.edu>
* Reset dupack count in header prediction.hsu2002-08-152-0/+2
| | | | | | Follow-on to rev 1.39. Reviewed by: jayanth, Thomas R Henderson <thomas.r.henderson@boeing.com>, silby, dillon
* Kernel support for a dummynet option:luigi2002-08-152-1/+2
| | | | | | | | | | | | | | | | When a pipe or queue has the "noerror" attribute, do not report drops to the caller (ip_output() and friends). (2 lines to implement it, 2 lines to document it.) This will let you simulate losses on the sender side as if they happened in the middle of the network, i.e. with no explicit feedback to the sender. manpage and ipfw2.c changes to follow shortly, together with other ipfw2 changes. Requested by: silby MFC after: 3 days
* On MAC check failure for readdir, use 'goto out' to use the common exitrwatson2002-08-151-1/+1
| | | | | | | | handling, rather than returning directly to prevent leaking of vnode reference/lock. Obtained from: TrustedBSD Project Sponsored by: DARPA, NAI Labs
* o Backout rev. 1.40 and rev. 1.49.maxim2002-08-151-36/+34
| | | | | | | | o Add argv[] boudary check. PR: bin/40117 Reviewed by: silence on -audit MFC after: 2 months
* It's now sufficient to rely on a nested include of _label.h to make surerwatson2002-08-151-1/+0
| | | | | | | all structures in ip_var.h are defined, so remove include of mac.h. Obtained from: TrustedBSD Project Sponsored by: DARPA, NAI Labs
* Perform a nested include of _label.h if #ifdef _KERNEL. This willrwatson2002-08-151-0/+4
| | | | | | | | satisfy consumers of ip_var.h that need a complete definition of struct ipq and don't include mac.h. Obtained from: TrustedBSD Project Sponsored by: DARPA, NAI Labs
* Add mac.h -- raw_ip.c was depending on nested inclusion of mac.h whichrwatson2002-08-151-0/+1
| | | | | | | | is no longer present. Pointed out by: bmilekic Obtained from: TrustedBSD Project Sponsored by: DARPA, NAI Labs
* Make m_flags an int instead of a short, this is consistent with thebmilekic2002-08-152-3/+3
| | | | | | | | | type of the 'flags' argument m_getcl() was using anyway; m_extadd() needed to be changed to accept an int instead of a short for 'flags.' This makes things more consistent and also gives us more bits to use for m_flags in the future (we have almost run out). Requested by: sam (Sam Leffler)
* Fix typo.mux2002-08-151-1/+1
|
* Removed duplicated MLINKS which make(1) recently started warning about.bde2002-08-151-2/+0
|
* Include <stdlib.h> to have abort() and exit() declared.robert2002-08-151-0/+1
|
* - For compliance with IEEE Std 1003.1-2001, add the 'restrict'robert2002-08-156-23/+20
| | | | | | qualifier to function prototypes and definitions where appropriate using the '__restrict' macro. - Update the manual page.
* - Introduce the 'restrict' qualifier to function prototypes androbert2002-08-156-12/+12
| | | | | definitions to comply with IEEE Std 1003.1-2001. - Update the manual pages.
* - Add the 'restrict' qualifier to the function prototypes androbert2002-08-1514-48/+24
| | | | | | | | definitions of the functions that convert strings to numbers and are defined by IEEE Std 1003-1.2001. - Use ANSI-C function definitions for all of the functions mentioned above plus strtouq and strtoq. - Update the prototypes in the manual pages.
* Document the effect of contrib/gcc/c-lex.c,v 1.2 commit.ru2002-08-151-0/+5
|
* Merge gcc.295/cccp.c,v 1.9: don't let gcc(1) hide warnings in system headers.ru2002-08-151-0/+6
| | | | | | | | Reviewed by: bde Original 2.95 change was subject to: Approved by: obrien
* mdoc(7) police: fixed indentation in synopsis.ru2002-08-152-4/+14
| | | | Submitted by: bde
* pccbb->cbbimp2002-08-153-4/+4
|
* No longer neededimp2002-08-151-243/+0
|
* pccbb -> cbbimp2002-08-152-2/+3
|
* Rename the pccbb device to cbb.imp2002-08-152-311/+318
|
* Move the symbol firmware loading routines into if_wi.imp2002-08-154-148/+161
| | | | Define some basic firmware downloading commands.
* Add regression tests for sysvipc.alfred2002-08-1510-0/+1079
| | | | | Submitted by: Hiten Pandya <hiten@uk.FreeBSD.org> Obtained from: NetBSD
* Fixed 64bit big endian bugs relating to abuse of ioctl argument passing.jake2002-08-151-4/+4
| | | | This makes truss work on sparc64.
* Fix some confusion regarding traps that use mmu globals but don't reallyjake2002-08-151-2/+4
| | | | have any reason to; force alternat globals instead, which is what we want.
* Store the number of itlb and dtlb entries separately; they may be different.jake2002-08-156-20/+29
| | | | | Find the prom node for the boot cpu earlier and store it in the per-cpu area, so that cache_init can be called earlier.
* I was too conservative with my header changes, so restore some sanitydougb2002-08-151-2/+3
| | | | | | | via bde. atatat@NetBSD.org made basically the same change in their version, so bring over their CVS Id which I neglected last time. Obtained from: bde, Andrew Brown <atatat@NetBSD.org>
* Improve handling of TX errors. Early reports indicate that thissilby2002-08-154-26/+56
| | | | | | | | | | elimiates the driver lockup problem reported by many. Concepts used were taken from Via's if_fet driver. Verification and implementation were done by Thomas Nystrom. Submitted by: Thomas Nystrom <thn@saeab.se> MFC after: 3 days
* Clean up comments that are no longer relevant.scottl2002-08-151-12/+9
|
* I missed the single_mountd_enable in rc.network.gordon2002-08-151-1/+1
| | | | Submitted by: Mike Makonnen <makonnen@pacbell.net>
* Remove an accidental double chkdepend that snuck in during the last commit.gordon2002-08-151-1/+0
| | | | Submitted by: Mike Makonnen <makonnen@pacbell.net>
* Sync to trustedbsd_mac tree: default to sigsegv rather than copy-on-writerwatson2002-08-159-9/+9
| | | | | | | | | during a label change resulting in an mmap removal. This is "fail stop" behavior, which is preferred, although it offers slightly less transparency. Obtained from: TrustedBSD Project Sponsored by: DARPA, NAI Labs
* return foo -> return (foo)alfred2002-08-151-22/+22
|
* Factor out some ugle code that's shared by udf_readdir and udf_lookup.scottl2002-08-153-246/+239
| | | | | | Significantly de-obfuscate udf_lookup Inspired By: tes@sgi.com
* - Add the 'restrict' qualifier to the function definitions androbert2002-08-144-12/+6
| | | | | | | | public prototypes of setbuf(3) and setvbuf(3) using the '__restrict' macro from <sys/cdefs.h> to be compliant with IEEE Std 1003.1-2001. - Replace the K&R with ANSI-C function definitions. - Bring the manual page up-to-date.
* - Add the 'restrict' qualifier to the function definition ofrobert2002-08-143-8/+7
| | | | | | | | | strftime(3) for IEEE Std 1003.1-2001 compliance and remove excessive usage of the 'const' qualifier that was neither present in the prototype in the publice header, nor in the local prototype just above the function definition. - Replace the K&R function definition with a ANSI-C one. - Update the prototype of strftime(3) in its manual page.
* - Add the 'restrict' qualifier to the definitions of the stringrobert2002-08-146-18/+8
| | | | | | | concatenation and copy functions using the '__restrict' macro. This is to satisfy IEEE Std 1003-1.2001. - Use ANSI-C function definitions. - Add the 'restrict' keyword to the manual pages, too.
* - Add the C99 'restrict' qualifier using the '__restrict' macro torobert2002-08-143-3/+5
| | | | | function prototype and definition of strptime(3). - Update the manual page.
OpenPOWER on IntegriCloud