upstream/opnsense-src
1
0
Fork 0
mirror of https://github.com/opnsense/src.git synced 2026-06-06 07:12:52 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
opnsense-src/sys/security
History
Zhenlei Huang 7d4c0fac8c MAC: mac_biba, mac_lomac: Fix setting loader tunables 
A string loader tunable requires setting the len parameter to a nonzero
value, typically the size of the string, to have the flag CTLFLAG_TUN
work correctly [1] [2].

Without this fix security.mac.{biba,lomac}.trusted_interfaces would
have no effect at all.

[1] 3da1cf1e88 Extend the meaning of the CTLFLAG_TUN flag to automatically ...
[2] 6a3287f889 Fix regression issue after r267961. Handle special string case ...

Reviewed by:	olce, kib
Fixes:		af3b2549c4 Pull in r267961 and r267973 again ...
MFC after:	3 days
Differential Revision:	https://reviews.freebsd.org/D48898
2025-02-09 23:53:29 +08:00
..
audit audit/audit.c: fix typo KERNEL_PANICED->KERNEL_PANICKED 2025-02-06 00:14:55 +02:00
mac New setcred() system call and associated MAC hooks 2024-12-16 15:42:39 +01:00
mac_biba MAC: mac_biba, mac_lomac: Fix setting loader tunables 2025-02-09 23:53:29 +08:00
mac_bsdextended MAC: mac_policy.h: Declare common MAC sysctl and jail parameters' nodes 2024-12-16 15:42:28 +01:00
mac_ddb mac_ddb: Fix the show rman validator. 2022-08-12 10:20:05 -07:00
mac_do MAC/do: Fix a compilation warning about an unused function 2024-12-17 15:47:42 +01:00
mac_grantbylabel MAC: mac_policy.h: Declare common MAC sysctl and jail parameters' nodes 2024-12-16 15:42:28 +01:00
mac_ifoff MAC: mac_policy.h: Declare common MAC sysctl and jail parameters' nodes 2024-12-16 15:42:28 +01:00
mac_ipacl MAC: mac_policy.h: Declare common MAC sysctl and jail parameters' nodes 2024-12-16 15:42:28 +01:00
mac_lomac MAC: mac_biba, mac_lomac: Fix setting loader tunables 2025-02-09 23:53:29 +08:00
mac_mls MAC: mac_policy.h: Declare common MAC sysctl and jail parameters' nodes 2024-12-16 15:42:28 +01:00
mac_none sys: Remove $FreeBSD$: two-line .h pattern 2023-08-16 11:54:11 -06:00
mac_ntpd MAC: mac_policy.h: Declare common MAC sysctl and jail parameters' nodes 2024-12-16 15:42:28 +01:00
mac_partition MAC: mac_policy.h: Declare common MAC sysctl and jail parameters' nodes 2024-12-16 15:42:28 +01:00
mac_pimd MAC: mac_policy.h: Declare common MAC sysctl and jail parameters' nodes 2024-12-16 15:42:28 +01:00
mac_portacl MAC: mac_policy.h: Declare common MAC sysctl and jail parameters' nodes 2024-12-16 15:42:28 +01:00
mac_priority MAC: mac_policy.h: Declare common MAC sysctl and jail parameters' nodes 2024-12-16 15:42:28 +01:00
mac_seeotheruids MAC: mac_policy.h: Declare common MAC sysctl and jail parameters' nodes 2024-12-16 15:42:28 +01:00
mac_stub New setcred() system call and associated MAC hooks 2024-12-16 15:42:39 +01:00
mac_test New setcred() system call and associated MAC hooks 2024-12-16 15:42:39 +01:00
mac_veriexec MAC: mac_policy.h: Declare common MAC sysctl and jail parameters' nodes 2024-12-16 15:42:28 +01:00
mac_veriexec_parser mac_veriexec_parser: Fix open_file error handling 2024-09-20 09:22:56 -06:00