summaryrefslogtreecommitdiffstats
path: root/sys/security/mac_mls
Commit message (Expand)AuthorAgeFilesLines
* Update device-labeling logic for Biba, LOMAC, and MLS to recognize new-stylerwatson2010-03-021-0/+1
* Continue work to optimize performance of "options MAC" when no MAC policyrwatson2009-06-031-9/+38
* Get rid of VSTAT and replace it with VSTAT_PERMS, which is somewhattrasz2009-03-291-2/+2
* Remove 'uio' argument from MAC Framework and MAC policy entry points forrwatson2009-03-081-4/+2
* Rather than having MAC policies explicitly declare what object typesrwatson2009-01-101-22/+1
* Use MPC_OBJECT_IP6Q to indicate labeling of struct ip6q rather thanrwatson2009-01-101-0/+1
* Introduce accmode_t. This is required for NFSv4 ACLs - it will be neccessarytrasz2008-10-281-3/+3
* Rename three MAC entry points from _proc_ to _cred_ to reflect the factrwatson2008-10-281-38/+38
* Implement MAC policy support for IPv6 fragment reassembly queues,rwatson2008-10-261-1/+53
* Add a mac_inpcb_check_visible implementation to all MAC policiesbz2008-10-171-0/+19
* Introduce two related changes to the TrustedBSD MAC Framework:rwatson2008-08-231-1/+21
* Minor style tweaks.rwatson2008-08-021-9/+4
* Rework the lifetime management of the kernel implementation of POSIXjhb2008-06-271-6/+25
* Remove the posixsem_check_destroy() MAC check. It is semantically identicaljhb2008-06-231-1/+0
* The TrustedBSD MAC Framework named struct ipq instances 'ipq', which is therwatson2008-06-131-10/+10
* Properly return the error from mls_subject_privileged() in the ifnetrwatson2008-01-281-3/+1
* Resort TrustedBSD MAC Framework policy entry point implementations andrwatson2007-10-291-897/+904
* Garbage collect mac_mbuf_create_multicast_encap TrustedBSD MAC Frameworkrwatson2007-10-281-14/+0
* Continue to move from generic network entry points in the TrustedBSD MACrwatson2007-10-281-13/+26
* Move towards more explicit support for various network protocol stacksrwatson2007-10-281-13/+49
* Rename 'mac_mbuf_create_from_firewall' to 'mac_netinet_firewall_send' asrwatson2007-10-261-4/+4
* Normalize TCP syncache-related MAC Framework entry points to match mostrwatson2007-10-251-6/+6
* Rename mac_associate_nfsd_label() to mac_proc_associate_nfsd(), and moverwatson2007-10-251-12/+12
* Consistently name functions for mac_<policy> as <policy>_whatever ratherrwatson2007-10-251-729/+720
* Merge first in a series of TrustedBSD MAC Framework KPI changesrwatson2007-10-241-293/+298
* Canonicalize naming of local variables for struct ksem and associatedrwatson2007-10-211-9/+9
* Rename mac_check_vnode_delete() MAC Framework and MAC Policy entryrwatson2007-09-101-25/+25
* When checking labels during a vnode link operation in MLS, use the filerwatson2007-07-231-1/+1
* Rename mac*devfsdirent*() to mac*devfs*() to synchronize with SEDarwin,rwatson2007-04-231-4/+5
* Apply variable name normalization to MAC policies: adopt global conventionsrwatson2007-04-231-216/+213
* In the MAC Framework implementation, file systems have two per-mountpointrwatson2007-04-221-12/+8
* Allow MAC policy modules to control access to audit configuration systemrwatson2007-04-211-0/+40
* Introduce accessor functions mac_label_get() and mac_label_set() to replacerwatson2007-02-061-2/+2
* Continue 7-CURRENT MAC Framework rearrangement and cleanup:rwatson2007-02-061-1/+0
* Move src/sys/sys/mac_policy.h, the kernel interface between the MACrwatson2006-12-221-2/+1
* Teach the MAC policies which utilize mbuf labeling the new syncachecsjp2006-12-131-0/+25
* Merge posix4/* into normal kernel hierarchy.trhodes2006-11-111-2/+1
* Introduce a new entry point, mac_create_mbuf_from_firewall. This entry pointcsjp2006-09-121-0/+12
* Fix panic associated with file creation via RPC/NFS when the MLS policycsjp2006-08-261-0/+12
* Add #include <sys/sx.h>, devfs is going to require this shortly.phk2005-09-191-0/+1
* Remove mac_create_root_mount() and mpo_create_root_mount(), whichrwatson2005-09-191-14/+0
* When devfs cloning takes place, provide access to the credential of therwatson2005-07-141-2/+2
* Eliminate MAC entry point mac_create_mbuf_from_mbuf(), which isrwatson2005-07-051-22/+0
* Gratuitous renaming of four System V Semaphore MAC Framework entryrwatson2005-06-071-6/+6
* Introduce MAC Framework and MAC Policy entry points to label and controlrwatson2005-05-041-0/+59
* Move MAC check_vnode_mmap entry point out from being exclusive tocsjp2005-04-141-2/+3
* Remove policy references to mpo_check_vnode_mprotect(), which isrwatson2005-01-261-1/+0
* Implement MLS confidentiality protection for System V IPC objectsrwatson2005-01-221-5/+391
* Introduce SLOT_SET macro and use it in place of casts as lvalues.kan2004-07-281-3/+4
* Rename Biba and MLS _single label elements to _effective, which morerwatson2004-07-162-173/+173
OpenPOWER on IntegriCloud