summaryrefslogtreecommitdiff
path: root/sys/security/mac_do
AgeCommit message (Expand)Author
2025-09-29MAC/do: Check executable path from the current jail's rootOlivier Certner
2025-09-17MAC/do: Restore matching the first supplementary groupOlivier Certner
2025-08-21MAC/do: Rename the internal malloc typeKushagra Srivastava
2025-06-11machine/stdarg.h -> sys/stdarg.hBrooks Davis
2025-05-27MAC/do: Fix a too stringent debug assertion for a target of 'uid=*'Olivier Certner
2025-04-02MAC/do: Rules: <from> and <to> parts now to be separated by '>'Olivier Certner
2025-04-02MAC/do: parse_single_rule(): Fix herald comment's first lineOlivier Certner
2024-12-17MAC/do: Fix a compilation warning about an unused functionOlivier Certner
2024-12-16MAC/do: Update copyrightOlivier Certner
2024-12-16MAC/do: Apply a rule on real UID/GID instead of effective onesOlivier Certner
2024-12-16MAC/do: Convert internal TAILQs to STAILQsOlivier Certner
2024-12-16MAC/do: parse_rules(): Tolerate blanks around tokensOlivier Certner
2024-12-16MAC/do: toast_rules(): Minor simplificationOlivier Certner
2024-12-16MAC/do: Interpret the new rules specification; Monitor setcred()Olivier Certner
2024-12-16MAC/do: Introduce rules reference countingOlivier Certner
2024-12-16MAC/do: Output errors when parsing rulesOlivier Certner
2024-12-16MAC/do: Support multiple users and groups as single rule's targetsOlivier Certner
2024-12-16MAC/do: Rename private OSD slot by removing 'mac_do_' prefixOlivier Certner
2024-12-16MAC/do: Ease input/output of ID typesOlivier Certner
2024-12-16MAC/do: Better parsing for IDs (strtoui_strict())Olivier Certner
2024-12-16MAC/do: 'struct rule': IDs and types as 'u_int', rename fieldsOlivier Certner
2024-12-16MAC/do: parse_rule_element(): Bug in parsing the origin IDOlivier Certner
2024-12-16MAC/do: parse_rule_element(): Style, more clarityOlivier Certner
2024-12-16MAC/do: jail_check()/jail_set(): RevampOlivier Certner
2024-12-16MAC/do: Fix jail_get() (PR_METHOD_GET)Olivier Certner
2024-12-16MAC/do: Sysctl knobs/jail parameters under MAC's common nodesOlivier Certner
2024-12-16MAC/do: Prefix internal functions used as hooks/callbacksOlivier Certner
2024-12-16MAC/do: Re-order jail methods more logically, renameOlivier Certner
2024-12-16MAC/do: parse_rule_element(): Fix a panic, harden, simplifyOlivier Certner
2024-12-16MAC/do: Move destroy() to a better placeOlivier Certner
2024-12-16MAC/do: Remove the 'prison0' special cases in the common pathsOlivier Certner
2024-12-16MAC/do: Enable changing 'security.mac.do.rules' from a jailOlivier Certner
2024-12-16MAC/do: sysctl_rules(): Set the requesting's thread's jail's rulesOlivier Certner
2024-12-16MAC/do: sysctl_rules(): Always copy the rules specification stringOlivier Certner
2024-12-16MAC/do: Remove PR_METHOD_REMOVE methodOlivier Certner
2024-12-16MAC/do: Allocate/deallocate rules as a wholeOlivier Certner
2024-12-16MAC/do: Factor out setting/destroying rule structuresOlivier Certner
2024-12-16MAC/do: find_rules(): Clarify the contractOlivier Certner
2024-12-16MAC/do: Use prison_lock()/prison_unlock()Olivier Certner
2024-12-16MAC/do: Rename internal mac_do_rule_find() => find_rules()Olivier Certner
2024-12-16MAC/do: Rename private struct 'mac_do_rule' => 'rules'Olivier Certner
2024-12-16MAC/do: Rename rule_is_valid() => rule_applies()Olivier Certner
2024-12-16MAC/do: parse_rules(): Copy input string on its ownOlivier Certner
2024-12-16MAC/do: Sort header inclusionsOlivier Certner
2024-10-29mac_do(4): Enhance GID rule validation to check all groups in cr_groupsLi-Wen Hsu
2024-05-23MAC/do: allow to call setuid if real user id is 0Baptiste Daroussin
2024-05-22mac_do: add a new MAC/do policy and mdo(1) utilityBaptiste Daroussin
generated by cgit v1.2.3 (git 2.25.1) at 2026-01-19 13:08:50 +0000