freebsd-src.git - FreeBSD sources

Age	Commit message (Expand)	Author
2024-12-16	MAC: mac_policy.h: Declare common MAC sysctl and jail parameters' nodes	Olivier Certner
2024-09-19	procfs require PRIV_PROC_MEM_WRITE to write mem	Simon J. Gerraty
2023-11-03	veriexec: Simplify the initialization of loader tunable	Zhenlei Huang
2023-07-06	mac_veriexec ensure label fields are initialized	Simon J. Gerraty
2023-06-09	veriexec: Do not save error from file info in fingerprint status	Stephen J. Kiernan
2023-04-17	veriexec: Add function to get label associated with a file	Steve Kiernan
2023-04-17	veriexec: Add option MAC_VERIEXEC_DEBUG	Steve Kiernan
2023-04-17	veriexec: mac_veriexec_syscall compat32 support	Simon J. Gerraty
2023-04-17	veriexec: Additional functionality for MAC/veriexec	Steve Kiernan
2023-04-16	veriexec: Add SPDX-License-Identifier	Stephen J. Kiernan
2023-04-16	mac_veriexec: add mac_priv_grant check for NODEV	Simon J. Gerraty
2023-03-14	veriexec: Improve comments	Warner Losh
2023-03-14	Increase protection provided by veriexec with new unlink/rename hooks.	dl
2022-06-29	mac_veriexec: Authorize reads of secured sysctls	Wojciech Macek
2022-03-27	mac_veriexec: Fix a typo in a source code comment	Gordon Bergling
2022-03-24	vfs: NDFREE(&nd, NDF_ONLY_PNBUF) -> NDFREE_PNBUF(&nd)	Mateusz Guzik
2021-11-25	vfs: remove the unused thread argument from NDINIT*	Mateusz Guzik
2021-07-29	Fix mac_veriexec version mismatch	Wojciech Macek
2021-01-12	Convert remaining cap_rights_init users to cap_rights_init_one	Mateusz Guzik
2020-09-01	security: clean up empty lines in .c and .h files	Mateusz Guzik
2020-06-12	mac_veriexec_fingerprint_check_vnode: v_writecount > 0 means active writers	Simon J. Gerraty
2020-02-26	Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many)	Pawel Biernacki
2020-01-07	vfs: eliminate v_tag from struct vnode	Mateusz Guzik
2020-01-03	vfs: drop the mostly unused flags argument from VOP_UNLOCK	Mateusz Guzik
2019-05-17	Add a new ioctl for the larger params struct that includes the label.	Stephen J. Kiernan
2019-05-17	Obtain a shared lock instead of exclusive in the MAC/veriexec	Stephen J. Kiernan
2019-05-17	sysctls which should be restricted when securelevel is raised should also	Stephen J. Kiernan
2019-05-17	Fix format strings for some debug messages that could have arguments that	Stephen J. Kiernan
2019-05-17	Ensure we have obtained a lock on the process before calling	Stephen J. Kiernan
2018-07-14	Add mpo_vnode_check_setmode MAC method to MAC/veriexec.	Stephen J. Kiernan
2018-07-14	Fix a typo which could cause a build breakage when building with MAC/veriexec	Stephen J. Kiernan
2018-07-14	Remove RIPEMD-160 fingerprint modules for veriexec, since it has very	Stephen J. Kiernan
2018-06-20	Fix build breakage in veriexec for 32-bit architectures.	Stephen J. Kiernan
2018-06-20	MAC/veriexec implements a verified execution environment using the MAC	Stephen J. Kiernan