aboutsummaryrefslogtreecommitdiff
path: root/sys/bsm
Commit message (Collapse)AuthorAgeFilesLines
* Merge OpenBSM 1.0 changes to src/sys/bsm:Robert Watson2007-10-291-39/+1
| | | | | | | | | | - Remove AU_.* hard-coded audit class constants, as udit classes are now entirely dynamically configured using /etc/security/audit_class. Obtained from: TrustedBSD Project Notes: svn path=/head/; revision=173148
* Merge OpenBSM 1.0 alpha 15 changes to src/sys/bsm:Robert Watson2007-07-224-52/+91
| | | | | | | | | | | | - Synchronized audit event list to Solaris, picking up the *at(2) system call definitions, now required for FreeBSD and Linux. Added additional events for *at(2) system calls not present in Solaris. Obtained from: TrustedBSD Project Approved by: re (hrs) Notes: svn path=/head/; revision=171542
* Change $P4$ ID strings to P4 ID strings so that they are not auto-expandedRobert Watson2007-04-174-4/+4
| | | | | | | | when integrated back into Perforce. This avoids unnecessary conflicts during the loopback of files maintained in Perforce. Notes: svn path=/head/; revision=168815
* Update src/sys/bsm for OpenBSM 1.0 alpha 14 import.Robert Watson2007-04-164-7/+28
| | | | | | | Add new audit event types. Notes: svn path=/head/; revision=168782
* Add an entry for AUT_ZONENAME and the prototype for the au_to_zonename()Christian S.J. Peron2007-04-151-0/+2
| | | | | | | | function that will be implemented shortly. This is being done for the openbsm import. Notes: svn path=/head/; revision=168765
* Merge OpenBSM 1.0 alpha 12 import changes into src/sys/bsm. New eventsRobert Watson2006-09-251-1/+5
| | | | | | | | | | for the Linuxulator. MFC after: 3 days Obtained from: TrustedBSD Project Notes: svn path=/head/; revision=162630
* Merge OpenBSM 1.0 alpha 11 changes into src/sys/bsm and src/sys/security;Robert Watson2006-09-214-19/+18
| | | | | | | | | primarily, add new event identifiers and update trigger names. Obtained from: TrustedBSD Project Notes: svn path=/head/; revision=162508
* Merge OpenBSM 1.0 alpha 10 changes into src/sys/bsm; comment spellingRobert Watson2006-09-021-2/+2
| | | | | | | | | fixes. Obtained from: TrustedBSD Project Notes: svn path=/head/; revision=161870
* Audit the argv and env vectors passed in on exec:Wayne Salamon2006-09-011-2/+7
| | | | | | | | | | | | | | | Add the argument auditing functions for argv and env. Add kernel-specific versions of the tokenizer functions for the arg and env represented as a char array. Implement the AUDIT_ARGV and AUDIT_ARGE audit policy commands to enable/disable argv/env auditing. Call the argument auditing from the exec system calls. Obtained from: TrustedBSD Project Approved by: rwatson (mentor) Notes: svn path=/head/; revision=161813
* Update kernel OpenBSM parts, especially src/sys/bsm, for the OpenBSMRobert Watson2006-08-264-144/+225
| | | | | | | | | | 1.0 alpha 9 import. See the OpenBSM import commit message for a detailed summary of changes. Obtained from: TrustedBSD Project Notes: svn path=/head/; revision=161635
* Merge OpenBSM 1.0 alpha 7 new AUE_ event identifiers to kernel versionRobert Watson2006-07-031-2/+19
| | | | | | | | | of audit_kevents.h. Obtained from: TrustedBSD Project Notes: svn path=/head/; revision=160085
* Merge OpenBSM 1.0 alpha 7 nested time.h include to kernel version ofRobert Watson2006-07-031-0/+2
| | | | | | | | | audit_record.h. Obtained from: TrustedBSD Project Notes: svn path=/head/; revision=160084
* Merge OpenBSM 1.0 alpha 6 version of audit_record.h to src/sys:Robert Watson2006-06-051-22/+14
| | | | | | | | | | | | | | | - Cleanup of AUR_ data types. - Comment fixes. - au_close_token() definition. - Break out of kernel vs. user space token interfaces for headers. Note: this may briefly break the kernel build until other kernel files are updated to match. Obtained from: TrustedBSD Project Notes: svn path=/head/; revision=159257
* Merge OpenBSM 1.0 alpha 6 changes to bsm/audit.h into src/sys: respellRobert Watson2006-06-051-3/+3
| | | | | | | | | | statistics variables. Submitted by: Martin Fong <martin dot fong at sri dot com> Obtained from: TrustedBSD Project Notes: svn path=/head/; revision=159256
* Update src/sys/bsm for OpenBSM 1.0 alpha 5 changes:Robert Watson2006-03-042-22/+31
| | | | | | | | | | | - Add new comments. - Move private data structures from public audit.h to audit_internal.h to avoid exposing queue.h macros to undesiring consumers. Obtained from: TrustedBSD Project Notes: svn path=/head/; revision=156289
* Merge OpenBSM 1.0 alpha 3 include file changes from contrib/openbsm/bsmRobert Watson2006-02-061-2/+3
| | | | | | | | | | | | to sys/bsm: - Correct error in definition of audit event for Linux setfsgid(). - Add audit event identifier for sysarch(). Obtained from: TrustedBSD Project Notes: svn path=/head/; revision=155371
* Merge OpenBSM 1.0 alpha 2 kernel audit events into src/sys/bsm. AlmostRobert Watson2006-02-041-3/+30
| | | | | | | | | | entirely new audit event identifiers for FreeBSD, Linux, and POSIX.1b system calls. Obtained from: TrustedBSD Project Notes: svn path=/head/; revision=155293
* Update src/sys/bsm include files to match OpenBSM (albeit with aRobert Watson2006-02-014-45/+1234
| | | | | | | | | | | | couple of FreeBSD-specific modifications that may be merged out later). These include files define the basic audit data structures, types, and definitions use by the kernel, or shared by the kernel and user space. Obtained from: TrustedBSD Project, Apple Computer, Inc. Notes: svn path=/head/; revision=155191
* For consistency with more system include files, add a trailing '_' toRobert Watson2005-05-291-3/+3
| | | | | | | the define guards in audit_kevents.h. Notes: svn path=/head/; revision=146760
* Add place-holder audit.h that defines only au_event_t, which is neededRobert Watson2005-05-291-0/+39
| | | | | | | | | | in order to modify the system call table to include event identifiers. The full audit.h will be merged at a later date. Obtained from: TrustedBSD Project Notes: svn path=/head/; revision=146759
* Add a stub audit_kevents.h, which defines exactly one audit event:Robert Watson2005-02-021-0/+38
AUE_NULL. This is a place-holder to allow other audit infrastructure to be introduced, such as an updated syscalls.master file format, while the license on the real audit_kevents.h is fixed. Notes: svn path=/head/; revision=141144
generated by cgit v1.2.3 (git 2.25.1) at 2024-10-19 06:34:15 +0000