| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Remove un-needed stack variable 'ops'. | rwatson | 2002-09-18 | 8 | -24/+16 |
| * | Add a toggle to disable VM enforcement. | rwatson | 2002-09-18 | 8 | -0/+56 |
| * | At the cost of seeming a little gauche, make use of more traditional | rwatson | 2002-09-18 | 8 | -32/+32 |
| * | Remove all use of vnode->v_tag, replacing with appropriate substitutes. | njl | 2002-09-14 | 10 | -34/+34 |
| * | Include <sys/malloc.h> instead of depending on namespace pollution 2 | bde | 2002-09-10 | 2 | -0/+2 |
| * | Add security.mac.mmap_revocation, a flag indicating whether we | rwatson | 2002-09-09 | 8 | -0/+64 |
| * | Minor code sync to MAC tree: push Giant locking up from | rwatson | 2002-09-09 | 8 | -16/+16 |
| * | Re-insert TUNABLE() export of MAC Biba and MAC MLS module 'enabled' | rwatson | 2002-09-05 | 2 | -0/+2 |
| * | Include <sys/malloc.h> instead of depending on namespace pollution 2 | bde | 2002-09-05 | 8 | -48/+40 |
| * | Prefer NULL to 0 when passing a NULL pointer. | rwatson | 2002-08-20 | 2 | -2/+2 |
| * | Provide stub mpo_syscall() implementations for mac_none and mac_test. | rwatson | 2002-08-20 | 3 | -0/+27 |
| * | Close a race in process label changing opened due to dropping the | rwatson | 2002-08-19 | 8 | -56/+80 |
| * | Pass active_cred and file_cred into the MAC framework explicitly | rwatson | 2002-08-19 | 16 | -156/+229 |
| * | Provide an implementation of mac_syscall() so that security modules | rwatson | 2002-08-19 | 10 | -1/+318 |
| * | Break out mac_check_pipe_op() into component check entry points: | rwatson | 2002-08-19 | 15 | -97/+618 |
| * | Break out mac_check_vnode_op() into three seperate checks: | rwatson | 2002-08-19 | 15 | -148/+678 |
| * | Assert process locks in proces-related access control checks. | rwatson | 2002-08-19 | 8 | -0/+48 |
| * | Add a missing vnode assertion for the exec() check. | rwatson | 2002-08-19 | 8 | -0/+16 |
| * | Keep a copy of the credential used to mount filesystems around so | phk | 2002-08-19 | 1 | -1/+1 |
| * | Wrap maintenance of varios nmac{objectname} counters in MAC_DEBUG so we | rwatson | 2002-08-16 | 8 | -0/+368 |
| * | Rename mac_check_socket_receive() to mac_check_socket_deliver() so that | rwatson | 2002-08-15 | 8 | -32/+32 |
| * | Rename mac_check_socket_receive() to mac_check_socket_deliver() so that | rwatson | 2002-08-15 | 8 | -80/+80 |
| * | Sync to trustedbsd_mac tree: default to sigsegv rather than copy-on-write | rwatson | 2002-08-15 | 8 | -8/+8 |
| * | Define 'struct label' in _label.h rather than mac.h, which will permit | rwatson | 2002-08-13 | 1 | -18/+2 |
| * | Declare a module service "kernel_mac_support" when MAC support is | rwatson | 2002-08-12 | 9 | -0/+65 |
| * | - Replace v_flag with v_iflag and v_vflag | jeff | 2002-08-04 | 13 | -55/+72 |
| * | Improve ordering of MAC entry points in mac_policy_op structure. | rwatson | 2002-08-02 | 1 | -6/+6 |
| * | Include file cleanup; mac.h and malloc.h at one point had ordering | rwatson | 2002-08-01 | 8 | -0/+8 |
| * | Change macop_t to const, use macop_t in MAC policy entry point definition | rwatson | 2002-08-01 | 1 | -2/+2 |
| * | Introduce support for Mandatory Access Control and extensible | rwatson | 2002-07-31 | 11 | -0/+9207 |
| * | Reduce the memory footprint of MAC in the base system by halving | rwatson | 2002-07-31 | 1 | -1/+1 |
| * | Begin committing support for Mandatory Access Control and extensible | rwatson | 2002-07-30 | 8 | -0/+24128 |
| * | Begin committing support for Mandatory Access Control and extensible | rwatson | 2002-07-30 | 2 | -0/+898 |
| * | Stubs for the TrustedBSD MAC system calls to permit TrustedBSD MAC | rwatson | 2002-07-30 | 8 | -0/+744 |
| * | Get rid of warnings, there's no need to do preprocessor concatination of | alfred | 2002-06-01 | 1 | -2/+2 |
| * | Back out my lats commit of locking down a socket, it conflicts with hsu's work. | tanimura | 2002-05-31 | 2 | -57/+16 |
| * | Check for defined(__i386__) instead of just defined(i386) since the compiler | alfred | 2002-05-30 | 1 | -1/+1 |
| * | Lock down a socket, milestone 1. | tanimura | 2002-05-20 | 2 | -16/+57 |
| * | Change p_can{debug,see,sched,signal}()'s first argument to be a thread | jhb | 2002-05-19 | 1 | -4/+2 |
| * | More s/file system/filesystem/g | trhodes | 2002-05-16 | 2 | -4/+4 |
| * | Use the proc lock to protect p_ucred while we read a few items from it. | jhb | 2002-04-11 | 1 | -3/+10 |
| * | Change the suser() API to take advantage of td_ucred as well as do a | jhb | 2002-04-01 | 2 | -3/+3 |
| * | DBA update: pick the right DBA for various LOMAC copyrights. | rwatson | 2002-03-13 | 27 | -27/+27 |
| * | Simple p_ucred -> td_ucred changes to start using the per-thread ucred | jhb | 2002-02-27 | 3 | -6/+5 |
| * | Introduce a version field to `struct xucred' in place of one of the | dd | 2002-02-27 | 1 | -5/+1 |
| * | Part I: Update extended attribute API and ABI: | rwatson | 2002-02-10 | 1 | -1/+2 |
| * | Replace a few more lines of code orphaned by MFREE going away. | mjacob | 2002-02-07 | 1 | -2/+2 |
| * | Pre-KSE/M3 commit. | julian | 2002-02-07 | 1 | -1/+1 |
| * | s/sonewconn3/sonewconn/ forgotten by the modifier. | green | 2001-12-26 | 1 | -1/+1 |
| * | Split out NAI Labs license and BSD license to prevent the accidental | green | 2001-12-03 | 2 | -9/+80 |
