summaryrefslogtreecommitdiffstats
path: root/sys/security/audit
Commit message (Expand)AuthorAgeFilesLines
...
* When auditing unmount(2), capture FSID arguments as regular text stringsrwatson2009-07-011-0/+8
* Audit the file descriptor number passed to lseek(2).rwatson2009-07-011-1/+1
* udit the 'options' argument to wait4(2).rwatson2009-07-011-0/+4
* Dynamically allocate the gidset field in audit record.sson2009-06-293-2/+13
* Replace AUDIT_ARG() with variable argument macros with a set more morerwatson2009-06-272-15/+174
* Adapt vfs kqfilter to the shared vnode lock used by zfs write vop. Usekib2009-06-101-2/+1
* Move "options MAC" from opt_mac.h to opt_global.h, as it's now in GENERICrwatson2009-06-051-2/+0
* Remove the thread argument from the FSD (File-System Dependent) parts ofattilio2009-05-111-1/+1
* Temporarily relax the constraints on argument size checking for A_GETCOND;rwatson2009-04-191-12/+6
* Merge OpenBSM 1.1 changes to the FreeBSD 8.x kernel:rwatson2009-04-197-44/+225
* Merge new kernel files from OpenBSM 1.1: audit_fcntl.h andrwatson2009-04-161-0/+290
* Remove D_NEEDGIANT from audit pipes. I'm actually not sure why this wasrwatson2009-04-161-1/+1
* Add a new thread-private flag, TDP_AUDITREC, to indicate whether orrwatson2009-03-093-5/+15
* Improve the consistency of MAC Framework and MAC policy entry pointrwatson2009-03-081-3/+3
* Merge OpenBSM 1.1 beta 1 from OpenBSM vendor branch to head, bothrwatson2009-03-022-9/+10
* Set the lower bound on queue size for an audit pipe to 1 instead of 0,rwatson2009-02-081-2/+2
* Change various routines that are responsible for transforming auditrwatson2009-02-082-8/+8
* Audit AUE_MAC_EXECVE; currently just the standard AUE_EXECVE argumentsrwatson2009-02-081-0/+1
* Audit the flag argument to the nfssvc(2) system call.rwatson2009-02-081-2/+8
* Eliminate the local variable 'ape' in audit_pipe_kqread(), as it's onlyrwatson2009-02-041-5/+0
* Update copyright, P4 version number as audit_bsm_token.c reflects changesrwatson2009-01-141-2/+2
* Merge OpenBSM alpha 5 from OpenBSM vendor branch to head, bothrwatson2009-01-144-243/+874
* Do a lockless read of the audit pipe list before grabbing the audit piperwatson2009-01-061-0/+4
* In AUDIT_SYSCALL_EXIT(), invoke audit_syscall_exit() only if an auditrwatson2009-01-061-3/+3
* Fix white space botch: use carriage returns rather than tabs.rwatson2008-12-311-1/+2
* Commit two files missed in previous commit: hook up audit_bsm_errno.crwatson2008-12-311-2/+4
* Call au_errno_to_bsm() on the errno value passed into au_to_return32()rwatson2008-12-311-1/+1
* Merge OpenBSM alpha 4 from OpenBSM vendor branch to head, bothrwatson2008-12-312-77/+767
* Merge OpenBSM 1.1 alpha 2 from the OpenBSM vendor branch to head, bothrwatson2008-12-021-75/+137
* Partially roll back a revision which changed the error code being returnedcsjp2008-11-301-1/+1
* Regularize /* FALLTHROUGH */ comments in the BSM event type switch, andrwatson2008-11-251-6/+10
* When repeatedly accessing a thread credential, cache the credentialrwatson2008-11-143-42/+48
* The audit queue limit variables are size_t, so use size_t for the auditrwatson2008-11-132-4/+4
* Move audit-internal function definitions for getting and setting auditrwatson2008-11-112-2/+6
* Minor style tweaks and change lock name string to use _'s and not spacesrwatson2008-11-111-1/+4
* Add support for extended header BSM tokens. Currently we use thecsjp2008-11-116-4/+119
* Wrap sx locking of the audit worker sleep lock in macros, update comments.rwatson2008-11-101-24/+31
* Use shared vnode locks for auditing vnode arguments as auditing onlyjhb2008-11-041-2/+2
* Don't lock the vnode around calls to vn_fullpath().jhb2008-11-041-16/+3
* Update introductory comment for audit pipes.rwatson2008-11-021-4/+4
* Remove stale comment about filtering in audit pipe ioctl routine: we dorwatson2008-11-021-3/+0
* Add comment for per-pipe stats.rwatson2008-11-011-0/+3
* We only allow a partial read of the first record in an audit piperwatson2008-11-011-15/+28
* Allow a single read(2) system call on an audit pipe to retrieve data fromrwatson2008-11-011-40/+32
* Since there is no longer the opportunity for record truncation, justrwatson2008-10-311-2/+1
* Historically, /dev/auditpipe has allows only whole records to be read viarwatson2008-10-311-58/+86
* When we drop an audit record going to and audit pipe because the auditrwatson2008-10-301-13/+9
* Break out single audit_pipe_mtx into two types of locks: a global rwlockrwatson2008-10-301-83/+127
* Protect the event->class lookup database using an rwlock instead of arwatson2008-10-301-8/+15
* Remove unit2minor() use from kernel code.ed2008-09-261-1/+1
OpenPOWER on IntegriCloud