upstream/opnsense-src
1
0
Fork 0
mirror of https://github.com/opnsense/src.git synced 2026-05-04 17:05:14 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
opnsense-src/sys/security/mac
History
Mitchell Horne 2449b9e5fe mac: kdb/ddb framework hooks 
Add three simple hooks to the debugger allowing for a loaded MAC policy
to intervene if desired:
 1. Before invoking the kdb backend
 2. Before ddb command registration
 3. Before ddb command execution

We extend struct db_command with a private pointer and two flag bits
reserved for policy use.

Reviewed by:	markj
Sponsored by:	Juniper Networks, Inc.
Sponsored by:	Klara, Inc.
Differential Revision:	https://reviews.freebsd.org/D35370
2022-07-18 22:06:13 +00:00
..
mac_audit.c
mac_cred.c
mac_framework.c mac: cheaper check for ifnet_create_mbuf and ifnet_check_transmit 2021-06-29 15:06:45 +02:00
mac_framework.h mac: kdb/ddb framework hooks 2022-07-18 22:06:13 +00:00
mac_inet.c tcp_input/syncache: acquire only read lock on PCB for SYN,!ACK packets 2021-04-12 08:25:31 -07:00
mac_inet6.c
mac_internal.h
mac_kdb.c mac: kdb/ddb framework hooks 2022-07-18 22:06:13 +00:00
mac_label.c
mac_net.c mac: cheaper check for ifnet_create_mbuf and ifnet_check_transmit 2021-06-29 15:06:45 +02:00
mac_pipe.c
mac_policy.h mac: kdb/ddb framework hooks 2022-07-18 22:06:13 +00:00
mac_posix_sem.c
mac_posix_shm.c
mac_priv.c
mac_process.c
mac_socket.c
mac_syscalls.c sysent: Get rid of bogus sys/sysent.h include. 2022-05-28 20:52:17 +03:00
mac_system.c
mac_sysv_msg.c
mac_sysv_sem.c
mac_sysv_shm.c
mac_vfs.c Add a comment on why the call to mac_vnode_relabel() might be in the wrong 2021-02-27 16:25:26 +00:00