| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Eliminate MAC entry point mac_create_mbuf_from_mbuf(), which is | Robert Watson | 2005-07-05 | 8 | -102/+12 |
| * | Add MAC Framework and MAC policy entry point mac_check_socket_create(), | Robert Watson | 2005-07-05 | 4 | -0/+40 |
| * | Correct grammar error in comment | Christian S.J. Peron | 2005-06-10 | 1 | -1/+1 |
| * | Gratuitous renaming of four System V Semaphore MAC Framework entry | Robert Watson | 2005-06-07 | 7 | -56/+56 |
| * | Introduce MAC Framework and MAC Policy entry points to label and control | Robert Watson | 2005-05-04 | 7 | -0/+462 |
| * | Get the directory structure correct in a comment. | Tom Rhodes | 2005-04-22 | 2 | -2/+4 |
| * | Add locking support to mac_bsdextended: | Tom Rhodes | 2005-04-22 | 1 | -37/+67 |
| * | Introduce p_canwait() and MAC Framework and MAC Policy entry points | Robert Watson | 2005-04-18 | 5 | -0/+37 |
| * | Introduce three additional MAC Framework and MAC Policy entry points to | Robert Watson | 2005-04-16 | 5 | -8/+166 |
| * | In mac_get_fd(), remove unconditional acquisition of Giant around copying | Robert Watson | 2005-04-16 | 2 | -18/+14 |
| * | Introduce new MAC Framework and MAC Policy entry points to control the use | Robert Watson | 2005-04-16 | 5 | -0/+337 |
| * | Move MAC check_vnode_mmap entry point out from being exclusive to | Christian S.J. Peron | 2005-04-14 | 8 | -12/+16 |
| * | Remove an accidental clearing of the new label pointer on a system V | Robert Watson | 2005-02-24 | 1 | -1/+0 |
| * | Synchronize HEAD copyright/license with RELENG_5 copyright/license: | Robert Watson | 2005-02-13 | 1 | -5/+5 |
| * | Update copyright for NETA->McAfee. | Robert Watson | 2005-01-30 | 1 | -5/+5 |
| * | Remove policy references to mpo_check_vnode_mprotect(), which is | Robert Watson | 2005-01-26 | 5 | -54/+2 |
| * | Remove an obsoleted comment about struct versions. | Robert Watson | 2005-01-23 | 1 | -1/+0 |
| * | Update mac_test for MAC Framework policy entry points System V IPC | Robert Watson | 2005-01-22 | 1 | -0/+378 |
| * | Update mac_stub for MAC Framework policy entry points System V IPC | Robert Watson | 2005-01-22 | 1 | -5/+213 |
| * | Implement MLS confidentiality protection for System V IPC objects | Robert Watson | 2005-01-22 | 1 | -5/+391 |
| * | Implement Biba integrity protection for System V IPC objects (message | Robert Watson | 2005-01-22 | 1 | -5/+394 |
| * | Exempt the superuser from mac_seeotheruids checks. | Robert Watson | 2005-01-03 | 1 | -0/+3 |
| * | Add a new sysctl/tunable to mac_portacl: | Robert Watson | 2004-12-08 | 1 | -0/+23 |
| * | Switch from using an sx lock to a mutex for the mac_portacl rule chain: | Robert Watson | 2004-12-06 | 1 | -26/+19 |
| * | Implement MAC entry points relating to System V IPC, calling into the | Robert Watson | 2004-11-17 | 3 | -0/+592 |
| * | Define new MAC framework and policy entry points for System V IPC | Robert Watson | 2004-11-17 | 2 | -1/+129 |
| * | Bump MAC Framework version to 2 in preparation for the upcoming API/ABI | Robert Watson | 2004-11-09 | 3 | -3/+3 |
| * | Disable use of synchronization early in the boot by the MAC Framework; | Robert Watson | 2004-10-30 | 2 | -0/+42 |
| * | /%x/%s/ -- mismerged DEBUGGER() printf() format stirng from the | Robert Watson | 2004-10-23 | 1 | -1/+1 |
| * | Expand comments on various sections of the MAC Framework Policy API, | Robert Watson | 2004-10-22 | 1 | -4/+15 |
| * | Replace direct reference to kdb_enter() with a DEBUGGER() macro that | Robert Watson | 2004-10-22 | 1 | -28/+34 |
| * | Minor white space synchronization and line wrapping. | Robert Watson | 2004-10-22 | 2 | -1/+3 |
| * | In the MAC label zone destructor, assert that the label is only | Robert Watson | 2004-10-22 | 1 | -1/+3 |
| * | Remove extern declaration of mac_enforce_sysv, as it's not present in | Robert Watson | 2004-10-22 | 1 | -1/+0 |
| * | Bump copyright dates for NETA on these files. | Robert Watson | 2004-10-21 | 2 | -2/+2 |
| * | Modify mac_bsdextended policy so that it defines its own vnode access | Robert Watson | 2004-10-21 | 2 | -33/+74 |
| * | Remove the debugging tunable, it was not being used. | Tom Rhodes | 2004-09-10 | 1 | -10/+1 |
| * | Allow mac_bsdextended(4) to log failed attempts to syslog's AUTHPRIV | Tom Rhodes | 2004-08-21 | 1 | -5/+19 |
| * | Give the mac_bsdextended(4) policy the ability to match and apply on a first | Tom Rhodes | 2004-08-21 | 1 | -2/+21 |
| * | * Add a "how" argument to uma_zone constructors and initialization functions | Brian Feldman | 2004-08-02 | 1 | -3/+4 |
| * | Introduce SLOT_SET macro and use it in place of casts as lvalues. | Alexander Kabaev | 2004-07-28 | 3 | -12/+16 |
| * | Allow an effective uid of root to bypass mac_bsdextended rules; the MAC | Robert Watson | 2004-07-23 | 1 | -0/+3 |
| * | Rename Biba and MLS _single label elements to _effective, which more | Robert Watson | 2004-07-16 | 4 | -353/+353 |
| * | Do a pass over all modules in the kernel and make them return EOPNOTSUPP | Poul-Henning Kamp | 2004-07-15 | 2 | -0/+2 |
| * | Update for the KDB framework: | Marcel Moolenaar | 2004-07-10 | 1 | -28/+29 |
| * | Introduce a temporary mutex, mac_ifnet_mtx, to lock MAC labels on | Robert Watson | 2004-06-24 | 7 | -0/+53 |
| * | Do the dreaded s/dev_t/struct cdev */ | Poul-Henning Kamp | 2004-06-16 | 8 | -8/+9 |
| * | Socket MAC labels so_label and so_peerlabel are now protected by | Robert Watson | 2004-06-13 | 1 | -8/+57 |
| * | add missing #include <sys/module.h> | Poul-Henning Kamp | 2004-05-30 | 2 | -0/+2 |
| * | Remove dead code. (This loop counted the number of rules, but the count | Colin Percival | 2004-05-15 | 1 | -7/+0 |
