| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | MFp4: | bz | 2008-11-29 | 1 | -0/+1 |
| * | Regularize /* FALLTHROUGH */ comments in the BSM event type switch, and | rwatson | 2008-11-25 | 1 | -6/+10 |
| * | When repeatedly accessing a thread credential, cache the credential | rwatson | 2008-11-14 | 3 | -42/+48 |
| * | The audit queue limit variables are size_t, so use size_t for the audit | rwatson | 2008-11-13 | 2 | -4/+4 |
| * | Move audit-internal function definitions for getting and setting audit | rwatson | 2008-11-11 | 2 | -2/+6 |
| * | Minor style tweaks and change lock name string to use _'s and not spaces | rwatson | 2008-11-11 | 1 | -1/+4 |
| * | Add support for extended header BSM tokens. Currently we use the | csjp | 2008-11-11 | 6 | -4/+119 |
| * | Wrap sx locking of the audit worker sleep lock in macros, update comments. | rwatson | 2008-11-10 | 1 | -24/+31 |
| * | Use shared vnode locks for auditing vnode arguments as auditing only | jhb | 2008-11-04 | 1 | -2/+2 |
| * | Don't lock the vnode around calls to vn_fullpath(). | jhb | 2008-11-04 | 1 | -16/+3 |
| * | Update introductory comment for audit pipes. | rwatson | 2008-11-02 | 1 | -4/+4 |
| * | Remove stale comment about filtering in audit pipe ioctl routine: we do | rwatson | 2008-11-02 | 1 | -3/+0 |
| * | Add comment for per-pipe stats. | rwatson | 2008-11-01 | 1 | -0/+3 |
| * | We only allow a partial read of the first record in an audit pipe | rwatson | 2008-11-01 | 1 | -15/+28 |
| * | Allow a single read(2) system call on an audit pipe to retrieve data from | rwatson | 2008-11-01 | 1 | -40/+32 |
| * | Since there is no longer the opportunity for record truncation, just | rwatson | 2008-10-31 | 1 | -2/+1 |
| * | Historically, /dev/auditpipe has allows only whole records to be read via | rwatson | 2008-10-31 | 1 | -58/+86 |
| * | When we drop an audit record going to and audit pipe because the audit | rwatson | 2008-10-30 | 1 | -13/+9 |
| * | Break out single audit_pipe_mtx into two types of locks: a global rwlock | rwatson | 2008-10-30 | 1 | -83/+127 |
| * | Protect the event->class lookup database using an rwlock instead of a | rwatson | 2008-10-30 | 1 | -8/+15 |
| * | The V* flags passed using an accmode_t to the access() and open() | rwatson | 2008-10-30 | 3 | -12/+26 |
| * | Commit part of accmode_t changes that I missed in previous commit. | trasz | 2008-10-28 | 1 | -1/+1 |
| * | Break out strictly credential-related portions of mac_process.c into a | rwatson | 2008-10-28 | 2 | -141/+213 |
| * | Introduce accmode_t. This is required for NFSv4 ACLs - it will be neccessary | trasz | 2008-10-28 | 10 | -25/+37 |
| * | Rename mac_cred_mmapped_drop_perms(), which revokes access to virtual | rwatson | 2008-10-28 | 4 | -20/+18 |
| * | Rename three MAC entry points from _proc_ to _cred_ to reflect the fact | rwatson | 2008-10-28 | 9 | -201/+202 |
| * | Extended comment on why we consider a partition relabel request of "0" to | rwatson | 2008-10-28 | 1 | -1/+7 |
| * | Rename label_on_label() to partition_check(), which is far more | rwatson | 2008-10-28 | 1 | -7/+7 |
| * | Improve alphabetical sort order of stub entry points. | rwatson | 2008-10-28 | 1 | -32/+32 |
| * | When the mac_bsdextended policy is unloaded, free rule memory. | rwatson | 2008-10-27 | 1 | -0/+5 |
| * | Add TrustedBSD credit to new ugidfw_internal.h file. | rwatson | 2008-10-27 | 1 | -0/+2 |
| * | Break mac_bsdextended.c out into multiple .c files, with the base access | rwatson | 2008-10-27 | 4 | -1451/+149 |
| * | Copy mac_bsdextended.c to two object-specific files as a prototype for how | rwatson | 2008-10-27 | 2 | -0/+1536 |
| * | Implement MAC policy support for IPv6 fragment reassembly queues, | rwatson | 2008-10-26 | 5 | -5/+275 |
| * | Add a MAC label, MAC Framework, and MAC policy entry points for IPv6 | rwatson | 2008-10-26 | 3 | -3/+129 |
| * | Fix a number of style issues in the MALLOC / FREE commit. I've tried to | des | 2008-10-23 | 1 | -1/+2 |
| * | Retire the MALLOC and FREE macros. They are an abomination unto style(9). | des | 2008-10-23 | 2 | -4/+3 |
| * | Add a mac_inpcb_check_visible implementation to all MAC policies | bz | 2008-10-17 | 7 | -0/+111 |
| * | Add mac_inpcb_check_visible MAC Framework entry point, which is similar | bz | 2008-10-17 | 3 | -0/+16 |
| * | Use the label from the socket credential rather than the | bz | 2008-10-17 | 1 | -1/+2 |
| * | Remove unit2minor() use from kernel code. | ed | 2008-09-26 | 1 | -1/+1 |
| * | Remove the suser(9) interface from the kernel. It has been replaced from | attilio | 2008-09-17 | 1 | -8/+24 |
| * | Remove VSVTX, VSGID and VSUID. This should be a no-op, | trasz | 2008-09-10 | 1 | -2/+3 |
| * | Unbreak the build. | des | 2008-09-04 | 1 | -2/+2 |
| * | If the process id specified is invalid, the system call returns ESRCH | kevlo | 2008-09-04 | 1 | -10/+10 |
| * | Decontextualize the couplet VOP_GETATTR / VOP_SETATTR as the passed thread | attilio | 2008-08-28 | 4 | -5/+4 |
| * | More fully audit fexecve(2) and its arguments. | rwatson | 2008-08-25 | 1 | -0/+7 |
| * | Use ERANGE instead of EOVERFLOW selected in r182059, this seems more | rwatson | 2008-08-24 | 1 | -1/+1 |
| * | Use sbuf_putc instead of sbuf_cat. This makes more sense, since we are | csjp | 2008-08-24 | 1 | -1/+1 |
| * | Introduce two related changes to the TrustedBSD MAC Framework: | rwatson | 2008-08-23 | 27 | -161/+456 |
