summaryrefslogtreecommitdiffstats
path: root/sys/security
Commit message (Expand)AuthorAgeFilesLines
* Set the lower bound on queue size for an audit pipe to 1 instead of 0,rwatson2009-02-081-2/+2
* Change various routines that are responsible for transforming auditrwatson2009-02-082-8/+8
* Audit AUE_MAC_EXECVE; currently just the standard AUE_EXECVE argumentsrwatson2009-02-081-0/+1
* Audit the flag argument to the nfssvc(2) system call.rwatson2009-02-081-2/+8
* Eliminate the local variable 'ape' in audit_pipe_kqread(), as it's onlyrwatson2009-02-041-5/+0
* Use __FBSDID() for $FreeBSD$ version strings in .c files.rwatson2009-01-242-4/+6
* Begin to add SDT tracing of the MAC Framework: add policy modevent,rwatson2009-01-241-1/+24
* Update copyright, P4 version number as audit_bsm_token.c reflects changesrwatson2009-01-141-2/+2
* Merge OpenBSM alpha 5 from OpenBSM vendor branch to head, bothrwatson2009-01-144-243/+874
* Rather than having MAC policies explicitly declare what object typesrwatson2009-01-1014-153/+88
* Use MPC_OBJECT_IP6Q to indicate labeling of struct ip6q rather thanrwatson2009-01-106-1/+6
* Do a lockless read of the audit pipe list before grabbing the audit piperwatson2009-01-061-0/+4
* In AUDIT_SYSCALL_EXIT(), invoke audit_syscall_exit() only if an auditrwatson2009-01-061-3/+3
* Fix white space botch: use carriage returns rather than tabs.rwatson2008-12-311-1/+2
* Commit two files missed in previous commit: hook up audit_bsm_errno.crwatson2008-12-311-2/+4
* Call au_errno_to_bsm() on the errno value passed into au_to_return32()rwatson2008-12-311-1/+1
* Merge OpenBSM alpha 4 from OpenBSM vendor branch to head, bothrwatson2008-12-312-77/+767
* Make preparations for resurrecting shared/read locks on vm maps:alc2008-12-221-4/+2
* Merge OpenBSM 1.1 alpha 2 from the OpenBSM vendor branch to head, bothrwatson2008-12-021-75/+137
* Partially roll back a revision which changed the error code being returnedcsjp2008-11-301-1/+1
* MFp4:bz2008-11-291-0/+1
* Regularize /* FALLTHROUGH */ comments in the BSM event type switch, andrwatson2008-11-251-6/+10
* When repeatedly accessing a thread credential, cache the credentialrwatson2008-11-143-42/+48
* The audit queue limit variables are size_t, so use size_t for the auditrwatson2008-11-132-4/+4
* Move audit-internal function definitions for getting and setting auditrwatson2008-11-112-2/+6
* Minor style tweaks and change lock name string to use _'s and not spacesrwatson2008-11-111-1/+4
* Add support for extended header BSM tokens. Currently we use thecsjp2008-11-116-4/+119
* Wrap sx locking of the audit worker sleep lock in macros, update comments.rwatson2008-11-101-24/+31
* Use shared vnode locks for auditing vnode arguments as auditing onlyjhb2008-11-041-2/+2
* Don't lock the vnode around calls to vn_fullpath().jhb2008-11-041-16/+3
* Update introductory comment for audit pipes.rwatson2008-11-021-4/+4
* Remove stale comment about filtering in audit pipe ioctl routine: we dorwatson2008-11-021-3/+0
* Add comment for per-pipe stats.rwatson2008-11-011-0/+3
* We only allow a partial read of the first record in an audit piperwatson2008-11-011-15/+28
* Allow a single read(2) system call on an audit pipe to retrieve data fromrwatson2008-11-011-40/+32
* Since there is no longer the opportunity for record truncation, justrwatson2008-10-311-2/+1
* Historically, /dev/auditpipe has allows only whole records to be read viarwatson2008-10-311-58/+86
* When we drop an audit record going to and audit pipe because the auditrwatson2008-10-301-13/+9
* Break out single audit_pipe_mtx into two types of locks: a global rwlockrwatson2008-10-301-83/+127
* Protect the event->class lookup database using an rwlock instead of arwatson2008-10-301-8/+15
* The V* flags passed using an accmode_t to the access() and open()rwatson2008-10-303-12/+26
* Commit part of accmode_t changes that I missed in previous commit.trasz2008-10-281-1/+1
* Break out strictly credential-related portions of mac_process.c into arwatson2008-10-282-141/+213
* Introduce accmode_t. This is required for NFSv4 ACLs - it will be neccessarytrasz2008-10-2810-25/+37
* Rename mac_cred_mmapped_drop_perms(), which revokes access to virtualrwatson2008-10-284-20/+18
* Rename three MAC entry points from _proc_ to _cred_ to reflect the factrwatson2008-10-289-201/+202
* Extended comment on why we consider a partition relabel request of "0" torwatson2008-10-281-1/+7
* Rename label_on_label() to partition_check(), which is far morerwatson2008-10-281-7/+7
* Improve alphabetical sort order of stub entry points.rwatson2008-10-281-32/+32
* When the mac_bsdextended policy is unloaded, free rule memory.rwatson2008-10-271-0/+5
OpenPOWER on IntegriCloud