| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Comment describing the semantics of mac_late. | rwatson | 2002-10-25 | 8 | -8/+48 |
| * | Provide a simple sample labeled access control policy, mac_partition. | rwatson | 2002-10-23 | 2 | -0/+337 |
| * | Style fix: space between 'switch' and '('. | rwatson | 2002-10-22 | 2 | -2/+2 |
| * | s/mls/biba/ in a copy+paste error for a printf. | rwatson | 2002-10-22 | 1 | -1/+1 |
| * | Remove the mac_te policy bits from 'struct oldmac' -- we're not going | rwatson | 2002-10-22 | 1 | -6/+0 |
| * | Don't enforce MAC Biba policy for socket visibility if Biba is not | rwatson | 2002-10-22 | 1 | -0/+3 |
| * | Introduce MAC_CHECK_VNODE_SWAPON, which permits MAC policies to | rwatson | 2002-10-22 | 10 | -0/+180 |
| * | Missed in previous merge: export sizeof(struct oldmac) rather than | rwatson | 2002-10-22 | 8 | -8/+8 |
| * | Adapt MAC policies for the new user API changes; teach policies how | rwatson | 2002-10-22 | 7 | -94/+691 |
| * | Support the new MAC user API in kernel: modify existing system calls | rwatson | 2002-10-22 | 8 | -1352/+7336 |
| * | Revised APIs for user process label management; the existing APIs relied | rwatson | 2002-10-22 | 2 | -97/+108 |
| * | mac_none is a stub policy without any functional implementation. | rwatson | 2002-10-21 | 2 | -14/+14 |
| * | Introduce mac_biba_copy() and mac_mls_copy(), which conditionally | rwatson | 2002-10-21 | 2 | -17/+49 |
| * | Add compartment support to Biba and MLS policies. The logic of the | rwatson | 2002-10-21 | 5 | -32/+140 |
| * | More in the way of minor consistency improvements: trim 'mac_mls_' | rwatson | 2002-10-21 | 1 | -8/+7 |
| * | Demote sockets to single-label objects rather than maintaining a | rwatson | 2002-10-21 | 2 | -32/+0 |
| * | Synchonize variable spelling with the MAC tree: we shortened some of | rwatson | 2002-10-21 | 1 | -9/+8 |
| * | White space nit the crept in during merge. | rwatson | 2002-10-21 | 1 | -1/+1 |
| * | Since the Biba and MLS access checks are identical to the open checks, | rwatson | 2002-10-21 | 2 | -24/+2 |
| * | Cleanup of relabel authorization checks -- almost identical logic, | rwatson | 2002-10-21 | 2 | -116/+409 |
| * | Add a twiddle to create PTY's with a biba/equal or mls/equal label | rwatson | 2002-10-21 | 2 | -0/+18 |
| * | Use if_printf(ifp, "blah") instead of | brooks | 2002-10-21 | 8 | -16/+8 |
| * | If MAC_MAX_POLICIES isn't defined, don't try to define it, just let the | rwatson | 2002-10-20 | 8 | -24/+8 |
| * | Make sure to clear the 'registered' flag for MAC policies when they | rwatson | 2002-10-19 | 8 | -0/+8 |
| * | Regularize the vop_stdlock'ing protocol across all the filesystems | mckusick | 2002-10-14 | 1 | -4/+4 |
| * | Integrate mac_check_socket_send() and mac_check_socket_receive() | rwatson | 2002-10-06 | 10 | -0/+280 |
| * | Trim accidentally introduced trailing whitespace. | rwatson | 2002-10-06 | 1 | -1/+1 |
| * | Sync from MAC tree: break out the single mmap entry point into | rwatson | 2002-10-06 | 15 | -200/+647 |
| * | Modify label allocation semantics for sockets: pass in soalloc's malloc | rwatson | 2002-10-05 | 15 | -120/+570 |
| * | Implement mac_create_devfs_symlink() for policies that interact with | rwatson | 2002-10-05 | 5 | -0/+55 |
| * | Integrate a devfs/MAC fix from the MAC tree: avoid a race condition during | rwatson | 2002-10-05 | 10 | -0/+110 |
| * | Merge implementation of mpo_check_vnode_link() for various appropriate | rwatson | 2002-10-05 | 6 | -0/+113 |
| * | Merge support for mac_check_vnode_link(), a MAC framework/policy entry | rwatson | 2002-10-05 | 10 | -0/+246 |
| * | While the MAC API has supported the ability to handle M_NOWAIT passed | rwatson | 2002-10-05 | 8 | -24/+88 |
| * | Rearrange object and label init/destroy functions to match the | rwatson | 2002-10-05 | 8 | -808/+808 |
| * | Sync to MAC tree: use 'flag' instead of 'how' for mac_init_mbuf(); | rwatson | 2002-10-05 | 8 | -24/+24 |
| * | Another big diff, little functional change: move label internalization, | rwatson | 2002-10-05 | 8 | -520/+520 |
| * | Move all object label init/destroy routines to the head of the | rwatson | 2002-10-05 | 8 | -2280/+2280 |
| * | Synch from TrustedBSD MAC tree: | rwatson | 2002-10-05 | 8 | -24/+200 |
| * | Cosmetic line wrap synchronization. | rwatson | 2002-10-05 | 8 | -16/+32 |
| * | Push the debugging obect label counters into security.mac.debug.counters | rwatson | 2002-10-05 | 8 | -88/+128 |
| * | Begin another merge from the TrustedBSD MAC branch: | rwatson | 2002-10-05 | 14 | -1422/+1107 |
| * | Add a new MAC entry point, mac_thread_userret(td), which permits policy | rwatson | 2002-10-02 | 10 | -0/+92 |
| * | Remember to include "opt_devfs.h" so we get any relevant changes | phk | 2002-10-01 | 8 | -0/+8 |
| * | Improve locking of pipe mutexes in the context of MAC: | rwatson | 2002-10-01 | 8 | -0/+272 |
| * | Push 'security.mac.debug_label_fallback' behind options MAC_DEBUG. | rwatson | 2002-10-01 | 8 | -80/+112 |
| * | Add tunables for the existing sysctl twiddles for pipe and vm | rwatson | 2002-09-30 | 8 | -0/+16 |
| * | - Use vrefcnt() instead of v_usecount. | jeff | 2002-09-25 | 1 | -4/+4 |
| * | Remove another missed trailing space. | rwatson | 2002-09-21 | 1 | -1/+1 |
| * | Trim trailing whitespace from the ends of lines. | rwatson | 2002-09-21 | 2 | -23/+23 |
