| Age | Commit message (Expand) | Author |
|---|
| 2025-09-17 | MAC/bsdextended: Restore matching subjects' effective GID | Olivier Certner |
| 2024-12-16 | MAC: mac_policy.h: Declare common MAC sysctl and jail parameters' nodes | Olivier Certner |
| 2024-11-21 | mac_bsdextended: Remove \n from sysctl descriptions | Ed Maste |
| 2023-08-16 | sys: Remove $FreeBSD$: two-line .h pattern | Warner Losh |
| 2020-05-21 | Deduplicate fsid comparisons | Ryan Moeller |
| 2020-02-26 | Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) | Pawel Biernacki |
| 2018-12-11 | Remove unused argument to priv_check_cred. | Mateusz Guzik |
| 2017-06-13 | Correct bitwise test in mac_bsdextended ugidfw_rule_valid() | Ed Maste |
| 2014-06-28 | Pull in r267961 and r267973 again. Fix for issues reported will follow. | Hans Petter Selasky |
| 2014-06-27 | Revert r267961, r267973: | Glen Barber |
| 2014-06-27 | Extend the meaning of the CTLFLAG_TUN flag to automatically check if | Hans Petter Selasky |
| 2011-11-07 | Mark all SYSCTL_NODEs static that have no corresponding SYSCTL_DECLs. | Ed Schouten |
| 2011-11-07 | Mark MALLOC_DEFINEs static that have no corresponding MALLOC_DECLAREs. | Ed Schouten |
| 2009-05-27 | Add hierarchical jails. A jail may further virtualize its environment | Jamie Gritton |
| 2009-03-29 | Get rid of VSTAT and replace it with VSTAT_PERMS, which is somewhat | Edward Tomasz Napierala |
| 2009-03-09 | Mark the bsdextended rules sysctl as being mpsafe. | Christian S.J. Peron |
| 2009-03-08 | Remove 'uio' argument from MAC Framework and MAC policy entry points for | Robert Watson |
| 2009-01-10 | Rather than having MAC policies explicitly declare what object types | Robert Watson |
| 2008-11-29 | MFp4: | Bjoern A. Zeeb |
| 2008-10-30 | The V* flags passed using an accmode_t to the access() and open() | Robert Watson |
| 2008-10-28 | Introduce accmode_t. This is required for NFSv4 ACLs - it will be neccessary | Edward Tomasz Napierala |
| 2008-10-27 | When the mac_bsdextended policy is unloaded, free rule memory. | Robert Watson |
| 2008-10-27 | Add TrustedBSD credit to new ugidfw_internal.h file. | Robert Watson |
| 2008-10-27 | Break mac_bsdextended.c out into multiple .c files, with the base access | Robert Watson |
| 2008-10-27 | Copy mac_bsdextended.c to two object-specific files as a prototype for how | Robert Watson |
| 2008-10-23 | Fix a number of style issues in the MALLOC / FREE commit. I've tried to | Dag-Erling Smørgrav |
| 2008-10-23 | Retire the MALLOC and FREE macros. They are an abomination unto style(9). | Dag-Erling Smørgrav |
| 2008-09-17 | Remove the suser(9) interface from the kernel. It has been replaced from | Attilio Rao |
| 2008-09-10 | Remove VSVTX, VSGID and VSUID. This should be a no-op, | Edward Tomasz Napierala |
| 2008-08-28 | Decontextualize the couplet VOP_GETATTR / VOP_SETATTR as the passed thread | Attilio Rao |
| 2008-08-23 | Introduce two related changes to the TrustedBSD MAC Framework: | Robert Watson |
| 2008-07-31 | In mac_bsdextended's auditctl and acct policy access control checks, | Robert Watson |
| 2007-10-29 | Resort TrustedBSD MAC Framework policy entry point implementations and | Robert Watson |
| 2007-10-25 | Consistently name functions for mac_<policy> as <policy>_whatever rather | Robert Watson |
| 2007-10-24 | Merge first in a series of TrustedBSD MAC Framework KPI changes | Robert Watson |
| 2007-09-10 | Rename mac_check_vnode_delete() MAC Framework and MAC Policy entry | Robert Watson |
| 2007-07-05 | In preparation for 7.0 privilege cleanup, clean up style: | Robert Watson |
| 2007-06-13 | Include priv.h to pick up suser(9) definitions, missed in an earlier | Robert Watson |
| 2007-04-23 | Apply variable name normalization to MAC policies: adopt global conventions | Robert Watson |
| 2007-04-21 | Allow MAC policy modules to control access to audit configuration system | Robert Watson |
| 2007-02-23 | More unnecessary include reduction. | Robert Watson |
| 2007-02-20 | Move mapping of MBI_APPEND to MBI_WRITE from inside the rule loop in | Robert Watson |
| 2007-02-06 | Continue 7-CURRENT MAC Framework rearrangement and cleanup: | Robert Watson |
| 2006-12-22 | Move src/sys/sys/mac_policy.h, the kernel interface between the MAC | Robert Watson |
| 2006-11-06 | Sweep kernel replacing suser(9) calls with priv(9) calls, assigning | Robert Watson |
| 2006-04-23 | Add some new options to mac_bsdestended. We can now match on: | David Malone |
| 2006-03-04 | Create a mac_bsdextended_check_vp function that takes a cred, a | David Malone |
| 2006-01-15 | Fix potential overrun of static stack allocated array which stores | Christian S.J. Peron |
| 2005-07-28 | If a "hole" opens up in the ruleset (i.e.: remove 5), do not return | Tom Rhodes |
| 2005-04-22 | Add locking support to mac_bsdextended: | Tom Rhodes |
