summaryrefslogtreecommitdiffstats
path: root/lib/libc/posix1e
Commit message (Collapse)AuthorAgeFilesLines
...
* -Add a note that currently two syntax styles for label element declarationcsjp2004-11-181-3/+16
| | | | | | | | | is supported. -Document the new more preferred syntax -Add examples for the new syntax -Add a note that the old syntax will be deprecated in the future. Reviewed by: rwatson
* Fix the NAME section making whatis(1) happy in particular.ru2004-07-051-1/+1
|
* Eliminate double whitespace.ru2004-07-031-1/+1
|
* Mechanically kill hard sentence breaks.ru2004-07-0215-43/+87
|
* Markup, grammar, and spelling fixes.ru2004-06-302-3/+5
|
* Add reference to mac_get_link() in man page, which was omitted whenrwatson2004-06-172-1/+10
| | | | mac_get_link() and mac_set_link() were added.
* Adjust for brain outage that affected the previous commit.nectar2004-01-061-1/+1
| | | | Submitted by: Stefan Farfeleder <stefan@fafoe.narf.at>
* Avoid undefined behavior:nectar2004-01-061-2/+2
| | | | foo[i] = bar[++i]; /* Which operator [] will be evaluated first? */
* Remove unused variables and function declarations. Add missing headers.nectar2004-01-061-1/+2
|
* Staticize label_default_head to prevent it from leaking out of mac.c.rwatson2003-11-171-1/+1
| | | | | Obtained from: TrustedBSD Project Sponsored by: DARPA, Network Associates Laboratories
* Update mac_set.3 to account for new behavior of mac_set_fd() in therwatson2003-11-161-5/+7
| | | | | | | | context of sockets, and document EINVAL as a possible failure mode based on the object selected, not just the label provided. Obtained from: TrustedBSD Project Sponsored by: DARPA, Network Associates Laboratories
* Implement mac_get_peer(3) using getsockopt() with SOL_SOCKET andrwatson2003-11-162-26/+43
| | | | | | | | | | | | | | | | | | SO_PEERLABEL. This provides an interface to query the label of a socket peer without embedding implementation details of mac_t in the application. Previously, sizeof(*mac_t) had to be specified by an application when performing getsockopt(). Document mac_get_peer(3), and expand documentation of the other mac_get(3) functions. Note that it's possible to get EINVAL back from mac_get_fd(3) when pointing it at an inappropriate object. NOTE: mac_get_fd() and mac_set_fd() support for sockets will follow shortly, so the documentation is slightly ahead of the code. Obtained from: TrustedBSD Project Sponsored by: DARPA, Network Associates Laboratories
* Memory allocated by mac_to_text() must be freed using free(3) notrwatson2003-11-161-2/+15
| | | | | | | | mac_free(3), which is used only for variables of type mac_t in the FreeBSD implementation. Obtained from: TrustedBSD Project Sponsored by: DARPA, Network Associates Laboratories
* Remove debugging printf that crept into the last commit.rwatson2003-11-151-1/+0
|
* /etc/mac.conf is implicitly read and parsed when the MAC configurationrwatson2003-11-151-20/+6
| | | | | | | | | | | is accessed for the first time as a result of an application looking up label configuration information. Previously, the check and read were kicked off by mac_prepare_(typename)() functions; since mac_prepare_type() may now be directly employed by a user process, push the check and initialization into that function. Obtained from: TrustedBSD Project Sponsored by: DARPA, Network Associates Laboratories
* When printing ACLs, truncate user and group names if they're too long,rwatson2003-11-031-3/+5
| | | | | | | | | rather than generating an error. This is consistent with other tools printing user and group names, and means you can read the ACL using our tools rather than being up a creek. PR: 56991 Submitted by: Michael Bretterklieber <mbretter@a-quadrat.at>
* mdoc(7): Fix common mistakes made in the SEE ALSO section.ru2003-09-121-1/+1
|
* Return (-1) not (ENOENT) for mac_prepare_type(), and set errno torwatson2003-08-301-1/+2
| | | | | | | ENOENT instead. Reported by: "Kenneth D. Merry" <ken@kdm.org> Submitted by: Bryan Liesner <bleez@comcast.net>
* Add HISTORY sections to the remaining MAC library man pages.rwatson2003-08-226-0/+36
| | | | | Obtained from: TrustedBSD Project Sponsored by: DARPA, Network Associates Laboratories
* Update the mac_prepare(3) man page to reflect changes to therwatson2003-08-221-8/+43
| | | | | | | | | mac_prepare() APIs. Add a HISTORY section. Obtained from: TrustedBSD Project Sponsored by: DARPA, Network Associates Laboratories
* Make the elements argument to mac_prepare() be const.rwatson2003-08-221-1/+1
| | | | | Obtained from: TrustedBSD Project Sponsored by: DARPA, Network Associates Laboratories
* As new objects begin to support new labels, start to generalizerwatson2003-08-221-86/+192
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | the default label support in /etc/mac.conf. Rather than maintain each default label type in an explicit global variable in mac.c, keep a list of defaults loaded from the configuration file. Generalize the parsing so that we support both the older: default_file_labels foo default_ifnet_labels foo default_process_labels foo And also a new: default_labels file foo default_labels ifnet foo default_labels process foo We now accept arbitrary object classes in the first argument. If the same object is specified more than once, we discard the earlier definition in favor of the later one. Add a new API, mac_prepare_type(), which accepts a mac_t to prepare, as well as an object name in the second argument, which will pull a default label set for the object out of the configuration loaded by mac_init_internal(). This permits the libc to adapt to new objects known about by applications but not by libc at compile-time. Also liberalize the error handling a bit: if we're using implicit initialization (i.e., the application didn't explicitly initialize the MAC code), ignore syntax errors and only use valid lines. In the future, we may want to add explicit warnings and do this a bit more consistently. While here, add support for a MAC_CONFFILE environmental variable, which may be used to specify an alternative mac.conf configuration file if the application isn't running with modified privilege (issetugid()). Obtained from: TrustedBSD Project Sponsored by: DARPA, Network Associates Laboratories
* Print group name in getfacl output when calculating an effectiverwatson2003-07-241-2/+3
| | | | | | permission set based on a more restrictive mask. Submitted by: Glen Gibb <grg@ridley.unimelb.edu.au>
* mdoc(7) fixes.ru2003-05-241-6/+5
| | | | Approved by: re (blanket)
* Assorted mdoc(7) fixes.ru2003-05-221-1/+1
| | | | Approved by: re (blanket)
* Add some strategic whitespace.rwatson2003-04-261-0/+1
|
* Add FILES section to mac.3 and mac.conf.5. Properly Xref mac.conf.5rwatson2003-04-203-1/+22
| | | | | | | from mac.3; likewise, mac.conf.5 from mac_prepare.3. Obtained from: TrustedBSD Project Sponsored by: DARPA, Network Associates Laboratories
* Add a man page for the mac.conf MAC library configuration file.rwatson2003-04-202-0/+105
| | | | | Obtained from: TrustedBSD Project Sponsored by: DARPA, Network Associates Laboratories
* Add the mac_prepare{,_*}() functions to the high-level function listrwatson2003-04-201-0/+11
| | | | | | | | in the mac.3 library man page. They were already cross-referenced at the end of the man page, just not explicitly listed here. Obtained from: TrustedBSD Project Sponsored by: DARPA, Network Associates Laboratories
* Clarify the relationship between the MAC library APIs and POSIX.1e:rwatson2003-04-161-2/+6
| | | | | | | | they resemble one another, but POSIX.1e interfaces were not sufficiently expressive to do what we needed. Obtained from: TrustedBSD Project Sponsored by: DARPA, Network Associates Laboratories
* Eliminate 19 warnings in libc (at level WARNS=2) of thenectar2003-02-271-0/+5
| | | | `implicit declaration of function' variety.
* mdoc(7) police: Scheduled sweep.ru2003-02-241-11/+14
|
* mdoc(7) police: kill self-xref.ru2003-02-231-1/+0
|
* Punctuation.ru2003-02-231-1/+1
|
* Typo.ru2003-02-231-1/+1
|
* Grammar.ru2003-02-231-0/+1
|
* Whack 28 unused variables.nectar2003-02-181-8/+1
|
* Eliminate 61 warnings emitted at WARNS=2 (leaving 53 to go).nectar2003-02-162-0/+9
| | | | | | | Only warnings that could be fixed without changing the generated object code and without restructuring the source code have been handled. Reviewed by: /sbin/md5
* The .Fn functioncharnier2003-02-063-6/+11
|
* Actually add mac_prepare.3.chris2003-01-151-0/+85
| | | | Sponsored by: DARPA, Network Associates Laboratories
* Cross-reference mac(4)chris2003-01-155-0/+5
| | | | Sponsored by: DARPA, Network Associates Laboratories
* s/SEE_ALSO/SEE ALSO/chris2003-01-152-2/+5
| | | | | | Cross-reference mac(4) and mac(9) Sponsored by: DARPA, Network Associates Laboratories
* o Document mac_prepare() and associated functionschris2003-01-158-33/+61
| | | | | | | | | | o Link mac_get_pid.3 to mac_get.3 o Update SEE ALSO to refer to mac_prepare, and added missing references o Remove clause #3 on my work o Update mac_get.3 for the updated MAC API Sponsored by: DARPA, Network Associates Laboratories Obtained from: TrustedBSD Project
* o Remove clause #3chris2003-01-141-5/+9
| | | | | | o Document mac_set_link(). Sponsored by: DARPA, Network Associates Labs
* Remove BUGS section indicating that these calls are unimplemented.rwatson2002-12-295-15/+15
| | | | | | Update copyrights. Obtained from: TrustedBSD Project
* Update acl_set.3, missed in last round:rwatson2002-12-291-11/+19
| | | | | | | | - Update BUGS: this stuff is implemented. - Update last modified date. - Document acl_set_link_np() call. Obtained from: TrustedBSD Project
* Update libc POSIX.1e code and documentation to reflect:rwatson2002-12-298-44/+164
| | | | | | | | | | - Updated copyrights, modified dates - Remove "BUGS" entry indicating that ACLs are unimplemented - Implement acl_*_link() library wrapper variants for get, set, delete, aclvalid. - Document acl_*_link() calls. Obtained from: TrustedBSD Project
* english(4) police.schweikh2002-12-274-4/+4
|
* mdoc(7) police: "The .Fa argument.".ru2002-12-191-0/+4
|
* mdoc(7) police: "The .Fn function".ru2002-12-1819-0/+40
|
OpenPOWER on IntegriCloud