| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| | |
|
| |
|
|
| |
Approved by: re
|
| |
|
|
|
|
|
| |
necessary nowadays, but is documented as "required", and may
become so again in the future.
Approved by: re
|
| |
|
|
| |
Approved by: re
|
| | |
|
| |
|
|
|
|
|
| |
manipulating file ACLs. Update the status of the implementation a bit,
update the copyright, etc.
Obtained from: TrustedBSD Project
|
| |
|
|
|
| |
Obtained from: TrustedBSD Project
Sponsored by: DARPA, Network Associates Labs
|
| |
|
|
|
|
|
| |
o Remove a (currently) no-longer-pertinent entry from errors.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, Network Associates Labs
|
| |
|
|
|
| |
Obtained from: TrustedBSD Project
Sponsored by: DARPA, Network Associates Laboratories
|
| | |
|
| |
|
|
|
| |
implementation status of these services has changed substantially
since this man page was last updated.
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
maclabel(7) instead.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, Network Associates Labs
|
| |
|
|
| |
consumption.
|
| | |
|
| |
|
|
|
|
|
|
| |
to be passed. Point this out in a warning notice, which will eventually
go away, sometime between now and -RELEASE.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
|
| |
|
|
|
| |
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
|
| |
|
|
|
| |
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
|
| |
|
|
|
|
|
|
|
|
|
|
| |
This removes a lot of complexity, since we basically just reserve
space on a retrieval of a label, and pass around strings. Two new
elements: (1) consumers of the API must now declare what label
elements they are interested in retrieving, or (2) rely on the default
provided in a new configuration file, mac.conf.
Approved by: re
Obtained from: TrustedBSD Project
Sponsored by: DARPA, Network Associates Laboratories
|
| |
|
|
|
| |
Obtained from: TrustedBSD Project
Sponsored by: DARPA, Network Associates Laboratories
|
| |
|
|
|
|
|
|
|
| |
to bring in the new MAC label management API. With the new API
revision, we have only policy-agnostic code in libc and the base
kernel.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, Network Associates Laboratories
|
| |
|
|
|
|
|
|
|
|
| |
label updates. Biba and MLS already supported this. This permits the
userland library to submit relative updates on MAC labels, rather
than submitting an entire label to replace the current label. This
also requires changes to the MAC modules, which are forthcoming.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
kernel access control.
Extensions to libc to provide basic MAC label manipulation facilities
for userland. These interface will be replaced in the next month
or two with more flexible interfaces, but provide sufficient support
to allow use of the Biba and MLS policies for user applications.
libc_r wrappers to follow.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
|
| | |
|
| |
|
|
| |
MFC after: 3 weeks
|
| |
|
|
| |
I believe have made all of libc .c's as consistent as possible.
|
| | |
|
| |
|
|
|
|
|
|
| |
- if (!var) -> if (var == NULL)
o spelling fix (althouh -> although)
Reviewed by: rwatson
Obtained from: TrustedBSD Project
|
| |
|
|
|
|
|
|
| |
- if (!var) -> if (var == NULL)
- return val; -> return (val);
Reviewed by: rwatson
Obtained from: TrustedBSD Project
|
| |
|
|
|
| |
Reviewed by: rwatson
Obtained from: TrustedBSD Project
|
| |
|
|
|
| |
Reviewed by: rwatson
Obtained from: TrustedBSD Project
|
| |
|
|
|
|
| |
- if (!var) -> if (var == NULL)
- return val; -> return (val);
o update copyright
|
| |
|
|
| |
Obtained from: TrustedBSD Project
|
| |
|
|
|
|
| |
o update copyright dates.
Reviewed by: rwatson
|
| |
|
|
|
| |
PR: 33660
Submitted by: Rich Morin <rdm@cfcl.com>, Tom Rhodes <darklogik@pittgoth.com>
|
| |
|
|
|
|
|
|
| |
o Document the following capabilities: CAP_NET_ADMIN, CAP_SYS_RAWIO,
CAP_SYS_ADMIN, and CAP_SYS_TTY_CONFIG.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
|
| |
|
|
|
|
|
|
| |
extattr namespace routines to the libc/posix1e directory. While
the extattr calls are not strictly POSIX.1e, POSIX.1e wasn't
strictly ever approved, so I think that's OK.
Obtained from: TrustedBSD Project
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
| |
o Removed whitespace at EOL
o Removed hard sentence breaks
o Added cap_size() to the NAME section
o Normalized .Nd descriptions
o Fixed the abuses of .Nm and .Va
o Fixed some DESCRIPTION texts
o Fixed the RETURN VALUES and ERRORS texts to look more traditional
Reviewed by: tmm
|
| |
|
|
|
|
| |
support.
Obtained from: TrustedBSD Project
|
| |
|
|
|
|
|
|
| |
sys/capability.h--this compiled fine on i386 where (int) and (ssize_t)
are the same, but broke on Alpha where they differ.
Submitted by: Mike Barcroft <mike@FreeBSD.org>
Obtained from: TrustedBSD Project
|
| |
|
|
|
|
|
|
| |
o Attach cap_copy_ext.3 and cap_copy_int.3 to the install, and link
cap_size.3 to cap_copy_ext.3.
Submitted by: tmm
Obtained from: TrustedBSD Project
|
| |
|
|
| |
Submitted by: yar
|
| |
|
|
|
| |
Submitted by: tmm
Obtained from: TrustedBSD Project
|
