FreeBSD source tree https://cgit-dev.freebsd.org/src-test2/atom?h=release%2F6.2.0_cvs 2007-01-11T22:54:46Z 2007-01-11T22:54:46Z cvs2svn cvs2svn@FreeBSD.org 2007-01-11T22:54:46Z urn:sha1:201f78d6b90635d961fa373ecd706e3786333b7e 'RELENG_6_2_0_RELEASE'. This commit was manufactured to restore the state of the 6.2-RELEASE image. 2006-11-22T11:51:12Z Konstantin Belousov kib@FreeBSD.org 2006-11-22T11:51:12Z urn:sha1:19304320a640077aa16a07f09015fbb67c732e47 Obey the RELENG_6 rules for dealing with Giant for vn_open. Reported by: Steve Wills (steve at stevenwills com) Reviewed by: rwatson Approved by: re (bmah) 2006-10-16T15:03:48Z Christian S.J. Peron csjp@FreeBSD.org 2006-10-16T15:03:48Z urn:sha1:734e4743a059be5317411b48a04382acc3236463 Mark the audit system calls as being un-implemented for jails. Discussed with: rwatson Approved by: re (bmah) 2006-10-15T07:02:26Z Robert Watson rwatson@FreeBSD.org 2006-10-15T07:02:26Z urn:sha1:ae44a45bb51ff190b67dfee9d2abf2d0ccf2e966 Do allow jailed superuser to override the port ACL. MFC after: 3 days Submitted by: Michal Mertl <mime at traveller dot cz> Approved by: re (bmah) 2006-10-10T13:11:32Z Robert Watson rwatson@FreeBSD.org 2006-10-10T13:11:32Z urn:sha1:041a096b468588be76526cb0f05b3392559b3d42 Add BSM conversion switch entries for a number of system calls, many administrative, to prevent console warnings and enable basic event auditing (generally without arguments). Obtained from: TrustedBSD Project Approved by: re (kensmith) 2006-09-29T22:45:49Z Robert Watson rwatson@FreeBSD.org 2006-09-29T22:45:49Z urn:sha1:69cd9a1a6ea204da129eff95ce1b8e1a707876cf trigger name for kernel-generated audit rotation events. Approved by: re (kensmith) Obtained from: TrustedBSD Project 2006-09-27T10:08:03Z Robert Watson rwatson@FreeBSD.org 2006-09-27T10:08:03Z urn:sha1:2343780c095f324b3fd9fb4403d9323de7e84dcc Rework the way errors are handled with respect to how audit records are written to the audit trail file: - audit_record_write() now returns void, and all file system specific error handling occurs inside this function. This pushes error handling complexity out of the record demux routine that hands off to both the trail and audit pipes, and makes trail behavior more consistent with pipes as a record destination. - Rate limit kernel printfs associated with running low on space. Rate limit audit triggers for low space. Rate limit printfs for fail stop events. Rate limit audit worker write error printfs. - Document in detail the types of limits and space checks we perform, and combine common cases. This improves the audit subsystems tolerance to low space conditions by avoiding toasting the console with printfs are waking up the audit daemon continuously. Obtained from: TrustedBSD Project Approved by: re (mux) 2006-09-23T16:26:02Z Robert Watson rwatson@FreeBSD.org 2006-09-23T16:26:02Z urn:sha1:5f8e4bee643b16b0e8a4253eec408907ee8e9d30 Add missing white space in au_to_exec_{args,env}(). Approved by: re (hrs) 2006-09-22T13:50:58Z Robert Watson rwatson@FreeBSD.org 2006-09-22T13:50:58Z urn:sha1:5d2efb5bb9be7537ec8b616c0bf76c0e7f46e5f4 Rather than allocating all buffer memory for the completed BSM record when allocating the record in the first place, allocate the final buffer when closing the BSM record. At that point, more size information is available, so a sufficiently large buffer can be allocated. This allows the kernel to generate audit records in excess of MAXAUDITDATA bytes, but is consistent with Solaris's behavior. This only comes up when auditing command line arguments, in which case we presume the administrator really does want the data as they have specified the policy flag to gather them. Obtained from: TrustedBSD Project Approved by: re (mux) 2006-09-21T11:20:28Z Robert Watson rwatson@FreeBSD.org 2006-09-21T11:20:28Z urn:sha1:8b7a47d4b1b2a57c45778ba4b4e2433c428a22c6 Add AUE_SYSARCH to the list of audit events during BSM conversion to prevent a console warning. Eventually, we will capture more arguments for sysarch. Obtained from: TrustedBSD Project Approved by: re (mux)