summaryrefslogtreecommitdiffstats
path: root/sys/security
Commit message (Collapse)AuthorAgeFilesLines
* Get rid of warnings, there's no need to do preprocessor concatination ofalfred2002-06-011-2/+2
| | | | things with commas and equal signs.
* Back out my lats commit of locking down a socket, it conflicts with hsu's work.tanimura2002-05-312-57/+16
| | | | Requested by: hsu
* Check for defined(__i386__) instead of just defined(i386) since the compileralfred2002-05-301-1/+1
| | | | will be updated to only define(__i386__) for ANSI cleanliness.
* Lock down a socket, milestone 1.tanimura2002-05-202-16/+57
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | o Add a mutex (sb_mtx) to struct sockbuf. This protects the data in a socket buffer. The mutex in the receive buffer also protects the data in struct socket. o Determine the lock strategy for each members in struct socket. o Lock down the following members: - so_count - so_options - so_linger - so_state o Remove *_locked() socket APIs. Make the following socket APIs touching the members above now require a locked socket: - sodisconnect() - soisconnected() - soisconnecting() - soisdisconnected() - soisdisconnecting() - sofree() - soref() - sorele() - sorwakeup() - sotryfree() - sowakeup() - sowwakeup() Reviewed by: alfred
* Change p_can{debug,see,sched,signal}()'s first argument to be a threadjhb2002-05-191-4/+2
| | | | | | | pointer instead of a proc pointer and require the process pointed to by the second argument to be locked. We now use the thread ucred reference for the credential checks in p_can*() as a result. p_canfoo() should now no longer need Giant.
* More s/file system/filesystem/gtrhodes2002-05-162-4/+4
|
* Use the proc lock to protect p_ucred while we read a few items from it.jhb2002-04-111-3/+10
|
* Change the suser() API to take advantage of td_ucred as well as do ajhb2002-04-012-3/+3
| | | | | | | | | | | | general cleanup of the API. The entire API now consists of two functions similar to the pre-KSE API. The suser() function takes a thread pointer as its only argument. The td_ucred member of this thread must be valid so the only valid thread pointers are curthread and a few kernel threads such as thread0. The suser_cred() function takes a pointer to a struct ucred as its first argument and an integer flag as its second argument. The flag is currently only used for the PRISON_ROOT flag. Discussed on: smp@
* DBA update: pick the right DBA for various LOMAC copyrights.rwatson2002-03-1327-27/+27
|
* Simple p_ucred -> td_ucred changes to start using the per-thread ucredjhb2002-02-273-6/+5
| | | | reference.
* Introduce a version field to `struct xucred' in place of one of thedd2002-02-271-5/+1
| | | | | | | | | | | | spares (the size of the field was changed from u_short to u_int to reflect what it really ends up being). Accordingly, change users of xucred to set and check this field as appropriate. In the kernel, this is being done inside the new cru2x() routine which takes a `struct ucred' and fills out a `struct xucred' according to the former. This also has the pleasant sideaffect of removing some duplicate code. Reviewed by: rwatson
* Part I: Update extended attribute API and ABI:rwatson2002-02-101-1/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | o Modify the system call syntax for extattr_{get,set}_{fd,file}() so as not to use the scatter gather API (which appeared not to be used by any consumers, and be less portable), rather, accepts 'data' and 'nbytes' in the style of other simple read/write interfaces. This changes the API and ABI. o Modify system call semantics so that extattr_get_{fd,file}() return a size_t. When performing a read, the number of bytes read will be returned, unless the data pointer is NULL, in which case the number of bytes of data are returned. This changes the API only. o Modify the VOP_GETEXTATTR() vnode operation to accept a *size_t argument so as to return the size, if desirable. If set to NULL, the size will not be returned. o Update various filesystems (pseodofs, ufs) to DTRT. These changes should make extended attributes more useful and more portable. More commits to rebuild the system call files, as well as update userland utilities to follow. Obtained from: TrustedBSD Project Sponsored by: DARPA, NAI Labs
* Replace a few more lines of code orphaned by MFREE going away.mjacob2002-02-071-2/+2
| | | | MFC after: 1 day
* Pre-KSE/M3 commit.julian2002-02-071-1/+1
| | | | | | | | | | this is a low-functionality change that changes the kernel to access the main thread of a process via the linked list of threads rather than assuming that it is embedded in the process. It IS still embeded there but remove all teh code that assumes that in preparation for the next commit which will actually move it out. Reviewed by: peter@freebsd.org, gallatin@cs.duke.edu, benno rice,
* s/sonewconn3/sonewconn/ forgotten by the modifier.green2001-12-261-1/+1
|
* Split out NAI Labs license and BSD license to prevent the accidentalgreen2001-12-032-9/+80
| | | | violation of either.
* Return a POSIX-compliant error for write(2) failure.green2001-11-281-1/+1
|
* Import LOMAC preliminary release 2.0.0 in src/sys/security. These files maygreen2001-11-1927-0/+6714
be modified and do not have to remain on the vendor branch. http://opensource.nailabs.com/lomac/index.html Sponsored by: DARPA, NAI Labs (CBOSS project)
OpenPOWER on IntegriCloud