aboutsummaryrefslogtreecommitdiff
path: root/sys/security/mac
Commit message (Expand)AuthorAgeFilesLines
* Make the rmlock(9) interface a bit more like the rwlock(9) interface:Robert Watson2009-05-291-1/+1
* Convert the MAC Framework from using rwlocks to rmlocks to stabilizeRobert Watson2009-05-272-21/+32
* Rename MAC Framework-internal macros used to invoke policy entry points:Robert Watson2009-05-0118-304/+339
* Rework MAC Framework synchronization in a number of ways in order toRobert Watson2009-03-1420-326/+409
* Remove 'uio' argument from MAC Framework and MAC policy entry points forRobert Watson2009-03-083-10/+8
* Rename 'ucred' argument to mac_socket_check_bind() to 'cred' to matchRobert Watson2009-03-081-3/+3
* Improve the consistency of MAC Framework and MAC policy entry pointRobert Watson2009-03-086-215/+196
* Add static DTrace probes for MAC Framework access control checks andRobert Watson2009-03-0817-14/+660
* Reduce the verbosity of SDT trace points for DTrace by defining severalRobert Watson2009-03-031-12/+3
* Use vm_map_entry_t instead of explicit struct vm_map_entry *.Konstantin Belousov2009-02-241-1/+1
* Use __FBSDID() for $FreeBSD$ version strings in .c files.Robert Watson2009-01-242-4/+6
* Begin to add SDT tracing of the MAC Framework: add policy modevent,Robert Watson2009-01-241-1/+24
* Rather than having MAC policies explicitly declare what object typesRobert Watson2009-01-103-37/+77
* Use MPC_OBJECT_IP6Q to indicate labeling of struct ip6q rather thanRobert Watson2009-01-101-1/+1
* Make preparations for resurrecting shared/read locks on vm maps:Alan Cox2008-12-221-4/+2
* Break out strictly credential-related portions of mac_process.c into aRobert Watson2008-10-282-141/+213
* Introduce accmode_t. This is required for NFSv4 ACLs - it will be neccessaryEdward Tomasz Napierala2008-10-283-8/+12
* Rename mac_cred_mmapped_drop_perms(), which revokes access to virtualRobert Watson2008-10-283-16/+14
* Rename three MAC entry points from _proc_ to _cred_ to reflect the factRobert Watson2008-10-283-43/+43
* Add a MAC label, MAC Framework, and MAC policy entry points for IPv6Robert Watson2008-10-263-3/+129
* Add mac_inpcb_check_visible MAC Framework entry point, which is similarBjoern A. Zeeb2008-10-173-0/+16
* Introduce two related changes to the TrustedBSD MAC Framework:Robert Watson2008-08-2316-144/+318
* Rework the lifetime management of the kernel implementation of POSIXJohn Baldwin2008-06-273-15/+45
* Remove the posixsem_check_destroy() MAC check. It is semantically identicalJohn Baldwin2008-06-233-14/+0
* The TrustedBSD MAC Framework named struct ipq instances 'ipq', which is theRobert Watson2008-06-133-26/+25
* Plug a memory leak which can occur when multiple MAC policies are loadedChristian S.J. Peron2008-05-271-0/+4
* When propagating a MAC label from an inpcb to an mbuf, allow read andRobert Watson2008-04-191-1/+1
* Convert pcbinfo and inpcb mutexes to rwlocks, and modify macros toRobert Watson2008-04-171-3/+3
* Make naming of include guards for MAC Framework include files moreRobert Watson2008-04-133-9/+9
* Add the support for the AT_FDCWD and fd-relative name lookups to theKonstantin Belousov2008-03-311-0/+1
* VOP_LOCK1() (and so VOP_LOCK()) and VOP_UNLOCK() are only used inAttilio Rao2008-01-132-4/+4
* vn_lock() is currently only used with the 'curthread' passed as argument.Attilio Rao2008-01-102-4/+4
* Add a new file descriptor type for IPC shared memory objects and use it toJohn Baldwin2008-01-083-0/+187
* Fix a MAC label leak for POSIX semaphores, in which per-policy labelsRobert Watson2007-12-171-0/+1
* Garbage collect mac_mbuf_create_multicast_encap TrustedBSD MAC FrameworkRobert Watson2007-10-283-22/+0
* Continue to move from generic network entry points in the TrustedBSD MACRobert Watson2007-10-284-20/+41
* Move towards more explicit support for various network protocol stacksRobert Watson2007-10-287-23/+188
* Update comment following MAC Framework entry point renaming andRobert Watson2007-10-261-1/+6
* Rename 'mac_mbuf_create_from_firewall' to 'mac_netinet_firewall_send' asRobert Watson2007-10-264-11/+11
* Sort entry points in mac_framework.h and mac_policy.h alphabetically byRobert Watson2007-10-252-629/+574
* Normalize TCP syncache-related MAC Framework entry points to match mostRobert Watson2007-10-253-20/+20
* Rename mac_associate_nfsd_label() to mac_proc_associate_nfsd(), and moveRobert Watson2007-10-254-19/+19
* Further MAC Framework cleanup: normalize some local variable names andRobert Watson2007-10-253-21/+22
* Merge first in a series of TrustedBSD MAC Framework KPI changesRobert Watson2007-10-2416-1150/+1193
* Bump MAC_VERSION to 4 and add an 8.x line in the version table. Version 4Robert Watson2007-10-231-1/+2
* Canonicalize naming of local variables for struct ksem and associatedRobert Watson2007-10-213-34/+33
* Rename mac_check_vnode_delete() MAC Framework and MAC Policy entryRobert Watson2007-09-103-21/+21
* Remove the now-unused NET_{LOCK,UNLOCK,ASSERT}_GIANT() macros, whichRobert Watson2007-08-061-4/+0
* Fix a bunch of warnings due to a missing forward declaration of a struct.Peter Wemm2007-07-051-0/+1
* Add a new MAC framework and policy entry point,Robert Watson2007-06-263-0/+16
generated by cgit v1.3 (git 2.53.0) at 2026-04-02 01:23:54 +0000