The NetBSD Project

CVS log for src/sys/sys/kauth.h

[BACK] Up to [cvs.NetBSD.org] / src / sys / sys

Request diff between arbitrary revisions


Default branch: MAIN


Revision 1.90 / (download) - annotate - [select for diffs], Wed Oct 4 22:17:09 2023 UTC (4 months, 4 weeks ago) by ad
Branch: MAIN
CVS Tags: thorpej-ifq-base, thorpej-ifq, thorpej-altq-separation-base, thorpej-altq-separation, HEAD
Changes since 1.89: +2 -2 lines
Diff to previous 1.89 (colored)

kauth_cred_hold(): return cred verbatim so that donating a reference to
another data structure can be done more elegantly.

Revision 1.87.4.2 / (download) - annotate - [select for diffs], Fri Jan 13 19:14:13 2023 UTC (13 months, 2 weeks ago) by martin
Branch: netbsd-10
CVS Tags: netbsd-10-0-RC5, netbsd-10-0-RC4, netbsd-10-0-RC3, netbsd-10-0-RC2, netbsd-10-0-RC1
Changes since 1.87.4.1: +5 -2 lines
Diff to previous 1.87.4.1 (colored) to branchpoint 1.87 (colored) next main 1.88 (colored)

Pull up following revision(s) (requested by jakllsch in ticket #49):

	sys/secmodel/suser/secmodel_suser.c: revision 1.57
	sys/sys/kauth.h: revision 1.89
	sys/net/if_wg.c: revision 1.72
	sys/net/if_wg.c: revision 1.73
	sys/net/if_wg.c: revision 1.74

Check for authorization for SIOCSDRVSPEC and SIOCGDRVSPEC ioctls for wg(4).
Addresses PR 57161.

wg(4): Allow non-root to retrieve information other than the private
key and the peer preshared key.

Add kauth(9) enums for wg(4) and add use them in suser secmodel.

Refines fix for PR 57161.

centralize the kauth ugliness.

Revision 1.87.4.1 / (download) - annotate - [select for diffs], Fri Jan 13 19:00:21 2023 UTC (13 months, 2 weeks ago) by martin
Branch: netbsd-10
Changes since 1.87: +3 -3 lines
Diff to previous 1.87 (colored)

Pull up following revision(s) (requested by jakllsch in ticket #45):

	sys/secmodel/suser/secmodel_suser.c: revision 1.56
	sys/sys/kauth.h: revision 1.88
	sys/arch/sparc/conf/INSTALL: revision 1.106
	share/examples/secmodel/secmodel_example.c: revision 1.29
	sys/conf/files: revision 1.1306

remove lingering strip(4) remnants

more strip(4) removal, this time in kauth(9)

Revision 1.89 / (download) - annotate - [select for diffs], Thu Jan 5 18:29:45 2023 UTC (13 months, 4 weeks ago) by jakllsch
Branch: MAIN
Changes since 1.88: +5 -2 lines
Diff to previous 1.88 (colored)

wg(4): Allow non-root to retrieve information other than the private
key and the peer preshared key.

Add kauth(9) enums for wg(4) and add use them in suser secmodel.

Refines fix for PR 57161.

Revision 1.88 / (download) - annotate - [select for diffs], Thu Jan 5 17:36:53 2023 UTC (13 months, 4 weeks ago) by jakllsch
Branch: MAIN
Changes since 1.87: +3 -3 lines
Diff to previous 1.87 (colored)

more strip(4) removal, this time in kauth(9)

Revision 1.87 / (download) - annotate - [select for diffs], Sun Mar 27 16:16:39 2022 UTC (23 months, 1 week ago) by christos
Branch: MAIN
CVS Tags: netbsd-10-base, bouyer-sunxi-drm-base, bouyer-sunxi-drm
Branch point for: netbsd-10
Changes since 1.86: +30 -28 lines
Diff to previous 1.86 (colored)

Widen kauth_action_t so we can add KAUTH_VNODE_ADD_LINK; welcome to 9.99.96.

Revision 1.86 / (download) - annotate - [select for diffs], Tue Sep 8 14:12:57 2020 UTC (3 years, 5 months ago) by christos
Branch: MAIN
CVS Tags: thorpej-i2c-spi-conf2-base, thorpej-i2c-spi-conf2, thorpej-i2c-spi-conf-base, thorpej-i2c-spi-conf, thorpej-futex2-base, thorpej-futex2, thorpej-futex-base, thorpej-futex, thorpej-cfargs2-base, thorpej-cfargs2, thorpej-cfargs-base, thorpej-cfargs, cjep_sun2x-base1, cjep_sun2x-base, cjep_sun2x, cjep_staticlib_x-base1, cjep_staticlib_x-base, cjep_staticlib_x
Changes since 1.85: +2 -1 lines
Diff to previous 1.85 (colored)

Add IP_BINDANY, IPV6_BINDANY which can be used to bind to any address in
order to implement transparent proxies.

Revision 1.85 / (download) - annotate - [select for diffs], Sat May 16 18:31:53 2020 UTC (3 years, 9 months ago) by christos
Branch: MAIN
Changes since 1.84: +3 -3 lines
Diff to previous 1.84 (colored)

Add ACL support for FFS. From FreeBSD.

Revision 1.82.4.1 / (download) - annotate - [select for diffs], Wed Apr 29 13:47:51 2020 UTC (3 years, 10 months ago) by martin
Branch: netbsd-9
CVS Tags: netbsd-9-3-RELEASE, netbsd-9-2-RELEASE, netbsd-9-1-RELEASE
Changes since 1.82: +7 -2 lines
Diff to previous 1.82 (colored) next main 1.83 (colored)

Pull up following revision(s) (requested by riastradh in ticket #871):

	external/cddl/osnet/sys/sys/cred.h: revision 1.7
	sys/sys/kauth.h: revision 1.84

Fix crgetgroups shim.

- Don't use a static buffer for the result.
- kauth_cred_getgroups refuses to return more than the actual number
  of groups, so passing NGROUPS_MAX generally doesn't work.

To avoid patching zfs, just expose struct kauth_cred::cr_groups
directly, with __KAUTH_PRIVATE.  Unclear why the official API only
exposes it via memcpy or copyout anyway.

This makes unprivileged zfs operations work, by anyone with access to
/dev/zfs (which is conventionally mode 777, and which we should maybe
set it to by default; zfs has its own ACL system, zfs allow).

Revision 1.84 / (download) - annotate - [select for diffs], Wed Apr 29 05:54:37 2020 UTC (3 years, 10 months ago) by riastradh
Branch: MAIN
Changes since 1.83: +7 -2 lines
Diff to previous 1.83 (colored)

Fix crgetgroups shim.

- Don't use a static buffer for the result.

- kauth_cred_getgroups refuses to return more than the actual number
  of groups, so passing NGROUPS_MAX generally doesn't work.

To avoid patching zfs, just expose struct kauth_cred::cr_groups
directly, with __KAUTH_PRIVATE.  Unclear why the official API only
exposes it via memcpy or copyout anyway.

This makes unprivileged zfs operations work, by anyone with access to
/dev/zfs (which is conventionally mode 777, and which we should maybe
set it to by default; zfs has its own ACL system, zfs allow).

Revision 1.76.2.2 / (download) - annotate - [select for diffs], Wed Apr 8 14:09:03 2020 UTC (3 years, 10 months ago) by martin
Branch: phil-wifi
Changes since 1.76.2.1: +3 -1 lines
Diff to previous 1.76.2.1 (colored) to branchpoint 1.76 (colored) next main 1.77 (colored)

Merge changes from current as of 20200406

Revision 1.82.6.1 / (download) - annotate - [select for diffs], Sat Feb 29 20:21:10 2020 UTC (4 years ago) by ad
Branch: ad-namecache
Changes since 1.82: +3 -1 lines
Diff to previous 1.82 (colored) next main 1.83 (colored)

Sync with head.

Revision 1.83 / (download) - annotate - [select for diffs], Fri Feb 14 04:36:33 2020 UTC (4 years ago) by riastradh
Branch: MAIN
CVS Tags: phil-wifi-20200421, phil-wifi-20200411, phil-wifi-20200406, is-mlppp-base, is-mlppp, bouyer-xenpvh-base2, bouyer-xenpvh-base1, bouyer-xenpvh-base, bouyer-xenpvh, ad-namecache-base3
Changes since 1.82: +3 -1 lines
Diff to previous 1.82 (colored)

Provide necessary forward declarations or includes.

Revision 1.76.2.1 / (download) - annotate - [select for diffs], Mon Jun 10 22:09:57 2019 UTC (4 years, 8 months ago) by christos
Branch: phil-wifi
Changes since 1.76: +5 -3 lines
Diff to previous 1.76 (colored)

Sync with HEAD

Revision 1.82 / (download) - annotate - [select for diffs], Wed Apr 10 18:49:04 2019 UTC (4 years, 10 months ago) by maxv
Branch: MAIN
CVS Tags: phil-wifi-20191119, phil-wifi-20190609, netbsd-9-base, netbsd-9-0-RELEASE, netbsd-9-0-RC2, netbsd-9-0-RC1, isaki-audio2-base, isaki-audio2, ad-namecache-base2, ad-namecache-base1, ad-namecache-base
Branch point for: netbsd-9, ad-namecache
Changes since 1.81: +2 -1 lines
Diff to previous 1.81 (colored)

Add the NVMM_CTL ioctl, always privileged regardless of the permissions of
/dev/nvmm. We'll use it to provide a way for an admin to control the
registered VMs in the kernel.

Add an associated wrapper in libnvmm.

Revision 1.75.2.4 / (download) - annotate - [select for diffs], Sat Oct 20 06:58:46 2018 UTC (5 years, 4 months ago) by pgoyette
Branch: pgoyette-compat
CVS Tags: pgoyette-compat-merge-20190127
Changes since 1.75.2.3: +2 -1 lines
Diff to previous 1.75.2.3 (colored) to branchpoint 1.75 (colored) next main 1.76 (colored)

Sync with head

Revision 1.81 / (download) - annotate - [select for diffs], Fri Oct 5 22:12:37 2018 UTC (5 years, 4 months ago) by christos
Branch: MAIN
CVS Tags: pgoyette-compat-20190127, pgoyette-compat-20190118, pgoyette-compat-1226, pgoyette-compat-1126, pgoyette-compat-1020
Changes since 1.80: +2 -1 lines
Diff to previous 1.80 (colored)

Provide a sysctl kern.expose_address to expose kernel addresses in
sysctl structure returns for non-root. Defaults to off. Turning it
on will restore sockstat/fstat and friends for regular users.

Revision 1.75.2.3 / (download) - annotate - [select for diffs], Thu Sep 6 06:56:47 2018 UTC (5 years, 5 months ago) by pgoyette
Branch: pgoyette-compat
Changes since 1.75.2.2: +3 -1 lines
Diff to previous 1.75.2.2 (colored) to branchpoint 1.75 (colored)

Sync with HEAD

Resolve a couple of conflicts (result of the uimin/uimax changes)

Revision 1.80 / (download) - annotate - [select for diffs], Tue Sep 4 14:31:18 2018 UTC (5 years, 6 months ago) by maxv
Branch: MAIN
CVS Tags: pgoyette-compat-0930, pgoyette-compat-0906
Changes since 1.79: +2 -1 lines
Diff to previous 1.79 (colored)

Introduce KAUTH_REQ_PROCESS_CANSEE_KPTR, and use it in the already-existing
modstat code. No real functional change.

Revision 1.79 / (download) - annotate - [select for diffs], Sat Aug 25 09:54:37 2018 UTC (5 years, 6 months ago) by maxv
Branch: MAIN
Changes since 1.78: +2 -1 lines
Diff to previous 1.78 (colored)

Add KAUTH_REQ_PROCESS_CANSEE_EPROC, and use it for the kern.proc node.
Same permission as before, so no functional change.

Revision 1.75.2.2 / (download) - annotate - [select for diffs], Sat Jul 28 04:38:12 2018 UTC (5 years, 7 months ago) by pgoyette
Branch: pgoyette-compat
Changes since 1.75.2.1: +1 -3 lines
Diff to previous 1.75.2.1 (colored) to branchpoint 1.75 (colored)

Sync with HEAD

Revision 1.78 / (download) - annotate - [select for diffs], Sun Jul 15 05:16:45 2018 UTC (5 years, 7 months ago) by maxv
Branch: MAIN
CVS Tags: pgoyette-compat-0728
Changes since 1.77: +1 -2 lines
Diff to previous 1.77 (colored)

Retire ipkdb entirely. The option was removed from the config files
yesterday.

ok kamil christos

Revision 1.77 / (download) - annotate - [select for diffs], Fri Jul 13 09:58:49 2018 UTC (5 years, 7 months ago) by maxv
Branch: MAIN
Changes since 1.76: +1 -2 lines
Diff to previous 1.76 (colored)

Remove KAUTH_MACHDEP_X86PMC, now unused.

Revision 1.73.10.3 / (download) - annotate - [select for diffs], Sat May 5 15:11:53 2018 UTC (5 years, 10 months ago) by martin
Branch: netbsd-8
CVS Tags: netbsd-8-2-RELEASE, netbsd-8-1-RELEASE, netbsd-8-1-RC1, netbsd-8-0-RELEASE, netbsd-8-0-RC2
Changes since 1.73.10.2: +3 -2 lines
Diff to previous 1.73.10.2 (colored) to branchpoint 1.73 (colored) next main 1.74 (colored)

Pull up following revision(s) (requested by alnsn in ticket #790):

	share/man/man9/secmodel_securelevel.9: revision 1.16
	sys/secmodel/suser/secmodel_suser.c: revision 1.44
	sys/secmodel/securelevel/secmodel_securelevel.c: revision 1.31
	sys/sys/kauth.h: revision 1.76
	sys/arch/x86/x86/svs.c: revision 1.18

Add KAUTH_MACHDEP_SVS_DISABLE and add support to secmodel_securelevel(9).
Disabling SVS is denied at securelevel 1 and above.

Add SVS. It may not be disabled at securelevel 1 and above.

Revision 1.75.2.1 / (download) - annotate - [select for diffs], Wed May 2 07:20:24 2018 UTC (5 years, 10 months ago) by pgoyette
Branch: pgoyette-compat
Changes since 1.75: +3 -2 lines
Diff to previous 1.75 (colored)

Synch with HEAD

Revision 1.76 / (download) - annotate - [select for diffs], Thu Apr 26 18:54:09 2018 UTC (5 years, 10 months ago) by alnsn
Branch: MAIN
CVS Tags: phil-wifi-base, pgoyette-compat-0625, pgoyette-compat-0521, pgoyette-compat-0502
Branch point for: phil-wifi
Changes since 1.75: +3 -2 lines
Diff to previous 1.75 (colored)

Add KAUTH_MACHDEP_SVS_DISABLE and add support to secmodel_securelevel(9).

Disabling SVS is denied at securelevel 1 and above.

Revision 1.73.10.2 / (download) - annotate - [select for diffs], Thu Apr 12 13:42:49 2018 UTC (5 years, 10 months ago) by martin
Branch: netbsd-8
CVS Tags: netbsd-8-0-RC1
Changes since 1.73.10.1: +1 -2 lines
Diff to previous 1.73.10.1 (colored) to branchpoint 1.73 (colored)

Pull up following revision(s) (requested by kamil in ticket #713):

	sys/modules/procfs/Makefile: revision 1.4
	sys/miscfs/procfs/procfs_vfsops.c: revision 1.98
	bin/ps/ps.1: revision 1.108
	sys/compat/linux/arch/i386/linux_ptrace.c: revision 1.32
	sys/miscfs/procfs/procfs_vnops.c: revision 1.198
	sys/kern/sys_ptrace_common.c: revision 1.23
	sys/kern/sys_ptrace_common.c: revision 1.24
	sbin/mount_procfs/mount_procfs.8: revision 1.36
	sys/kern/sys_ptrace_common.c: revision 1.25
	sys/kern/sys_ptrace.c: revision 1.5
	sys/compat/linux/arch/powerpc/linux_ptrace.c: revision 1.30
	sys/sys/proc.h: revision 1.342
	sys/kern/sys_ptrace_common.c: revision 1.26
	sys/miscfs/procfs/procfs_ctl.c: file removal
	sys/kern/sys_ptrace_common.c: revision 1.27
	sys/miscfs/procfs/procfs_subr.c: revision 1.109
	sys/kern/sys_ptrace_common.c: revision 1.28
	sys/secmodel/extensions/secmodel_extensions.c: revision 1.8
	sys/kern/sys_ptrace_common.c: revision 1.29
	sys/sys/ptrace.h: revision 1.62
	sys/compat/netbsd32/netbsd32_signal.c: revision 1.45
	share/man/man9/kauth.9: revision 1.109
	sys/miscfs/procfs/files.procfs: revision 1.12
	sys/compat/netbsd32/netbsd32.h: revision 1.115
	sys/miscfs/procfs/procfs.h: revision 1.72
	sys/compat/netbsd32/netbsd32_ptrace.c: revision 1.5
	sys/kern/kern_sig.c: revision 1.337
	sys/sys/kauth.h: revision 1.75
	sys/sys/sysctl.h: revision 1.224
	sys/kern/sys_ptrace_common.c: revision 1.30
	sys/kern/sys_ptrace_common.c: revision 1.31
	sys/kern/sys_ptrace_common.c: revision 1.32
	sys/kern/sys_ptrace_common.c: revision 1.33
	sys/compat/linux/arch/arm/linux_ptrace.c: revision 1.20
	sys/kern/sys_ptrace_common.c: revision 1.34
	sys/kern/sys_ptrace_common.c: revision 1.36
	sys/kern/kern_proc.c: revision 1.207
	sys/kern/kern_exit.c: revision 1.269
	doc/TODO.ptrace: revision 1.29

Make {s,g}et{db,fp,}regs work again for PK_32 processes
XXX: pullup-8

add disgusting magic to handle compat_netbsd32 as a module.

use process_*reg32 instead of struct *reg32.

Remove the filesystem tracing feature

This is a legacy interface from 4.4BSD, and it was
introduced to overcome shortcomings of ptrace(2) at that time, which are
no longer relevant (performance). Today /proc/#/ctl offers a narrow
subset of ptrace(2) commands and is not applicable for modern
applications use beyond simplistic tracing scenarios.

This removal will simplify kernel internals. Users will still be able to
use all the other /proc files.

This change won't affect other procfs files neither Linux compat
features within mount_procfs(8). /proc/#/ctl isn't available on Linux.

Remove:
 - /proc/#/ctl from mount_procfs(8)
 - P_FSTRACE note from the documentation of ps(1)
 - /proc/#/ctl and filesystem tracing documentation from mount_procfs(8)
 - KAUTH_REQ_PROCESS_PROCFS_CTL documentation from kauth(9)
 - source code file miscfs/procfs/procfs_ctl.c
 - PFSctl and procfs_doctl() from sys/miscfs/procfs/procfs.h
 - KAUTH_REQ_PROCESS_PROCFS_CTL from sys/sys/kauth.h
 - PSL_FSTRACE (0x00010000) from sys/sys/proc.h
 - P_FSTRACE (0x00010000) from sys/sys/sysctl.h

Reduce code complexity after removal of this functionality.

Update TODO.ptrace accordingly: remove two entries about /proc tracing.

Do not keep legacy notes as comments in the headers about removed

PSL_FSTRACE / P_FSTRACE, as this interface had little number of users
(close or equal to zero).
Proposed on tech-kern@.

All filesystem tracing utility users are encouraged to switch to ptrace(2).

Sponsored by <The NetBSD Foundation>

untangle the mess:
- factor out common code
- break each ptrace subcall to its own sub-function
  .. more to come ...
- reduce ifdef ugliness by moving it up top.
- factor out PT_IO and make PT_{READ,WRITE}_{I,D} use it
- factor out PT_DUMPCORE
- factor out sendsig code
  .. more to come ...

handle siginfo requests for ptrace32

ptrace: Partially undo PT_{READ,WRITE}_{I,D} and unbreak these commands

The refactored code did not work and was generating EFAULT.

Sponsored by <The NetBSD Foundation>

Merge the code back; the problem was that since we are reading/writing
to a kernel address for PT_{READ,WRITE}_{I,D} we need the kernel vmspace.
provide separate read and write functions to accomodate register functions
that need a size argument.

don't ignore error from copyout_piod

Use the proper process (the tracee) to get information about lwps and
registers and the tracer for vmspace.

Add new sysctl(3) entry: security.models.extensions.user_set_dbregs

Model this new sysctl(3) entry after "user_set_cpu_affinity" in the same
level of sysctl(3) switches.

Allow to read unconditionally Debug Registers (no change here). This is
convenient as even if a user of a debugger does not use hardware assisted
watchpoints/breakpoints, a debugger can still prompt these values to store
in an internal cache with context of registers. Reading them should have
no security concerns.

Add a paranoid MI switch that prohibits by default setting these registers
by a regular user (non-superuser). Make this switch disabled by default.
There are enough reserved bits out there to allow using them
unconditionally on hardened hosts.

Features shipped with Debug Registers are optional features in debuggers.
There is no reduction in elementary functionality.

Reviewed by <christos>

Sponsored by <The NetBSD Foundation>

Revision 1.70.2.2 / (download) - annotate - [select for diffs], Sun Dec 3 11:39:20 2017 UTC (6 years, 3 months ago) by jdolecek
Branch: tls-maxphys
Changes since 1.70.2.1: +35 -1 lines
Diff to previous 1.70.2.1 (colored) to branchpoint 1.70 (colored) next main 1.71 (colored)

update from HEAD

Revision 1.71.14.3 / (download) - annotate - [select for diffs], Mon Aug 28 17:53:16 2017 UTC (6 years, 6 months ago) by skrll
Branch: nick-nhusb
Changes since 1.71.14.2: +2 -1 lines
Diff to previous 1.71.14.2 (colored) to branchpoint 1.71 (colored) next main 1.72 (colored)

Sync with HEAD

Revision 1.75 / (download) - annotate - [select for diffs], Mon Aug 28 00:46:07 2017 UTC (6 years, 6 months ago) by kamil
Branch: MAIN
CVS Tags: tls-maxphys-base-20171202, pgoyette-compat-base, pgoyette-compat-0422, pgoyette-compat-0415, pgoyette-compat-0407, pgoyette-compat-0330, pgoyette-compat-0322, pgoyette-compat-0315
Branch point for: pgoyette-compat
Changes since 1.74: +1 -2 lines
Diff to previous 1.74 (colored)

Remove the filesystem tracing feature

This is a legacy interface from 4.4BSD, and it was
introduced to overcome shortcomings of ptrace(2) at that time, which are
no longer relevant (performance). Today /proc/#/ctl offers a narrow
subset of ptrace(2) commands and is not applicable for modern
applications use beyond simplistic tracing scenarios.

This removal will simplify kernel internals. Users will still be able to
use all the other /proc files.

This change won't affect other procfs files neither Linux compat
features within mount_procfs(8). /proc/#/ctl isn't available on Linux.

Remove:
 - /proc/#/ctl from mount_procfs(8)
 - P_FSTRACE note from the documentation of ps(1)
 - /proc/#/ctl and filesystem tracing documentation from mount_procfs(8)
 - KAUTH_REQ_PROCESS_PROCFS_CTL documentation from kauth(9)
 - source code file miscfs/procfs/procfs_ctl.c
 - PFSctl and procfs_doctl() from sys/miscfs/procfs/procfs.h
 - KAUTH_REQ_PROCESS_PROCFS_CTL from sys/sys/kauth.h
 - PSL_FSTRACE (0x00010000) from sys/sys/proc.h
 - P_FSTRACE (0x00010000) from sys/sys/sysctl.h

Reduce code complexity after removal of this functionality.

Update TODO.ptrace accordingly: remove two entries about /proc tracing.

Do not keep legacy notes as comments in the headers about removed
PSL_FSTRACE / P_FSTRACE, as this interface had little number of users
(close or equal to zero).

Proposed on tech-kern@.

All filesystem tracing utility users are encouraged to switch to ptrace(2).

Sponsored by <The NetBSD Foundation>

Revision 1.73.10.1 / (download) - annotate - [select for diffs], Tue Aug 1 23:18:31 2017 UTC (6 years, 7 months ago) by snj
Branch: netbsd-8
CVS Tags: matt-nb8-mediatek-base, matt-nb8-mediatek
Changes since 1.73: +2 -1 lines
Diff to previous 1.73 (colored)

Pull up following revision(s) (requested by maxv in ticket #164):
	distrib/sets/lists/base/md.amd64: revision 1.269
	distrib/sets/lists/debug/md.amd64: revision 1.97
	sys/arch/amd64/conf/GENERIC: revision 1.460
	sys/arch/amd64/conf/files.amd64: revision 1.89
	sys/arch/i386/conf/GENERIC: revision 1.1157
	sys/arch/i386/conf/files.i386: revision 1.379
	sys/arch/i386/i386/i386_trap.S: revision 1.7-1.8
	sys/arch/i386/include/frameasm.h: revision 1.16
	sys/arch/x86/include/sysarch.h: revision 1.12
	sys/arch/x86/x86/pmc.c: revision 1.8-1.10
	sys/arch/x86/x86/sys_machdep.c: revision 1.36
	sys/arch/xen/conf/files.compat: revision 1.26
	sys/secmodel/suser/secmodel_suser.c: revision 1.43
	sys/sys/kauth.h: revision 1.74
	usr.bin/pmc/Makefile: revision 1.5
	usr.bin/pmc/pmc.1: revision 1.12-1.13
	usr.bin/pmc/pmc.c: revision 1.24-1.25
style
--
style
--
Disable interrupts for T_NMI (inline calltrap). Note that there's still a
way to evade the NMI mode here, if a segment register faults in
INTRFASTEXIT; but we don't care. I didn't test this change, but it seems
fine enough.
--
Make the PMC syscalls privileged.
--
Check argc, and add a message.
--
include opt_pmc.h
--
Build the pmc tool on amd64.
--
Properly handle overflows, and take them into account in userland.
--
Update.
--
Enable PMCs by default.
--
Sort sections. Fix macro usage.

Revision 1.74 / (download) - annotate - [select for diffs], Wed Jun 14 17:48:41 2017 UTC (6 years, 8 months ago) by maxv
Branch: MAIN
CVS Tags: perseant-stdc-iso10646-base, perseant-stdc-iso10646, nick-nhusb-base-20170825
Changes since 1.73: +2 -1 lines
Diff to previous 1.73 (colored)

Make the PMC syscalls privileged.

Revision 1.71.14.2 / (download) - annotate - [select for diffs], Sun Dec 27 12:10:18 2015 UTC (8 years, 2 months ago) by skrll
Branch: nick-nhusb
Changes since 1.71.14.1: +33 -1 lines
Diff to previous 1.71.14.1 (colored) to branchpoint 1.71 (colored)

Sync with HEAD (as of 26th Dec)

Revision 1.73 / (download) - annotate - [select for diffs], Tue Oct 6 22:13:39 2015 UTC (8 years, 4 months ago) by christos
Branch: MAIN
CVS Tags: prg-localcount2-base3, prg-localcount2-base2, prg-localcount2-base1, prg-localcount2-base, prg-localcount2, pgoyette-localcount-base, pgoyette-localcount-20170426, pgoyette-localcount-20170320, pgoyette-localcount-20170107, pgoyette-localcount-20161104, pgoyette-localcount-20160806, pgoyette-localcount-20160726, pgoyette-localcount, nick-nhusb-base-20170204, nick-nhusb-base-20161204, nick-nhusb-base-20161004, nick-nhusb-base-20160907, nick-nhusb-base-20160529, nick-nhusb-base-20160422, nick-nhusb-base-20160319, nick-nhusb-base-20151226, netbsd-8-base, localcount-20160914, jdolecek-ncq-base, jdolecek-ncq, bouyer-socketcan-base1, bouyer-socketcan-base, bouyer-socketcan
Branch point for: netbsd-8
Changes since 1.72: +33 -1 lines
Diff to previous 1.72 (colored)

Expose struct kauth_cred for the benefit of the debugger. I can't convince gcc
to produce debug info for the structure if it does not appear in more than
one source file.

Revision 1.71.14.1 / (download) - annotate - [select for diffs], Tue Sep 22 12:06:17 2015 UTC (8 years, 5 months ago) by skrll
Branch: nick-nhusb
Changes since 1.71: +3 -1 lines
Diff to previous 1.71 (colored)

Sync with HEAD

Revision 1.72 / (download) - annotate - [select for diffs], Mon Aug 17 06:16:03 2015 UTC (8 years, 6 months ago) by knakahara
Branch: MAIN
CVS Tags: nick-nhusb-base-20150921
Changes since 1.71: +3 -1 lines
Diff to previous 1.71 (colored)

Add kernel code to support intrctl(8).

Revision 1.64.12.3 / (download) - annotate - [select for diffs], Thu May 22 11:41:18 2014 UTC (9 years, 9 months ago) by yamt
Branch: yamt-pagecache
Changes since 1.64.12.2: +5 -3 lines
Diff to previous 1.64.12.2 (colored) to branchpoint 1.64 (colored) next main 1.65 (colored)

sync with head.

for a reference, the tree before this commit was tagged
as yamt-pagecache-tag8.

this commit was splitted into small chunks to avoid
a limitation of cvs.  ("Protocol error: too many arguments")

Revision 1.70.2.1 / (download) - annotate - [select for diffs], Sun Jun 23 06:20:29 2013 UTC (10 years, 8 months ago) by tls
Branch: tls-maxphys
Changes since 1.70: +5 -3 lines
Diff to previous 1.70 (colored)

resync from head

Revision 1.71 / (download) - annotate - [select for diffs], Mon Mar 18 19:35:46 2013 UTC (10 years, 11 months ago) by plunky
Branch: MAIN
CVS Tags: yamt-pagecache-base9, tls-maxphys-base, tls-earlyentropy-base, tls-earlyentropy, rmind-smpnet-nbase, rmind-smpnet-base, rmind-smpnet, riastradh-xf86-video-intel-2-7-1-pre-2-21-15, riastradh-drm2-base3, riastradh-drm2-base2, riastradh-drm2-base1, riastradh-drm2-base, riastradh-drm2, nick-nhusb-base-20150606, nick-nhusb-base-20150406, nick-nhusb-base, netbsd-7-nhusb-base-20170116, netbsd-7-nhusb-base, netbsd-7-nhusb, netbsd-7-base, netbsd-7-2-RELEASE, netbsd-7-1-RELEASE, netbsd-7-1-RC2, netbsd-7-1-RC1, netbsd-7-1-2-RELEASE, netbsd-7-1-1-RELEASE, netbsd-7-1, netbsd-7-0-RELEASE, netbsd-7-0-RC3, netbsd-7-0-RC2, netbsd-7-0-RC1, netbsd-7-0-2-RELEASE, netbsd-7-0-1-RELEASE, netbsd-7-0, netbsd-7, khorben-n900, agc-symver-base, agc-symver
Branch point for: nick-nhusb
Changes since 1.70: +5 -3 lines
Diff to previous 1.70 (colored)

C99 section 6.7.2.3 (Tags) Note 3 states that:

  A type specifier of the form

	enum identifier

  without an enumerator list shall only appear after the type it
  specifies is complete.

which means that we cannot pass an "enum vtype" argument to
kauth_access_action() without fully specifying the type first.
Unfortunately there is a complicated include file loop which
makes that difficult, so convert this minimal function into a
macro (and capitalize it).

(ok elad@)

Revision 1.64.12.2 / (download) - annotate - [select for diffs], Tue Oct 30 17:22:56 2012 UTC (11 years, 4 months ago) by yamt
Branch: yamt-pagecache
CVS Tags: yamt-pagecache-tag8
Changes since 1.64.12.1: +6 -2 lines
Diff to previous 1.64.12.1 (colored) to branchpoint 1.64 (colored)

sync with head

Revision 1.70 / (download) - annotate - [select for diffs], Wed Jun 27 12:28:28 2012 UTC (11 years, 8 months ago) by cheusov
Branch: MAIN
CVS Tags: yamt-pagecache-base8, yamt-pagecache-base7, yamt-pagecache-base6
Branch point for: tls-maxphys
Changes since 1.69: +6 -2 lines
Diff to previous 1.69 (colored)


Add new action KAUTH_CRED_CHROOT for kauth(9)'s credential scope.
Reviewed and approved by elad@.

Revision 1.64.12.1 / (download) - annotate - [select for diffs], Tue Apr 17 00:08:52 2012 UTC (11 years, 10 months ago) by yamt
Branch: yamt-pagecache
Changes since 1.64: +76 -11 lines
Diff to previous 1.64 (colored)

sync with head

Revision 1.65.2.2 / (download) - annotate - [select for diffs], Thu Apr 5 21:33:50 2012 UTC (11 years, 11 months ago) by mrg
Branch: jmcneill-usbmp
Changes since 1.65.2.1: +71 -6 lines
Diff to previous 1.65.2.1 (colored) to branchpoint 1.65 (colored) next main 1.66 (colored)

sync to latest -current.

Revision 1.69 / (download) - annotate - [select for diffs], Tue Mar 13 18:41:02 2012 UTC (11 years, 11 months ago) by elad
Branch: MAIN
CVS Tags: yamt-pagecache-base5, yamt-pagecache-base4, jmcneill-usbmp-base9, jmcneill-usbmp-base8, jmcneill-usbmp-base10
Changes since 1.68: +71 -6 lines
Diff to previous 1.68 (colored)

Replace the remaining KAUTH_GENERIC_ISSUSER authorization calls with
something meaningful. All relevant documentation has been updated or
written.

Most of these changes were brought up in the following messages:

    http://mail-index.netbsd.org/tech-kern/2012/01/18/msg012490.html
    http://mail-index.netbsd.org/tech-kern/2012/01/19/msg012502.html
    http://mail-index.netbsd.org/tech-kern/2012/02/17/msg012728.html

Thanks to christos, manu, njoly, and jmmv for input.

Huge thanks to pgoyette for spinning these changes through some build
cycles and ATF.

Revision 1.65.2.1 / (download) - annotate - [select for diffs], Sat Feb 18 07:35:49 2012 UTC (12 years ago) by mrg
Branch: jmcneill-usbmp
Changes since 1.65: +5 -6 lines
Diff to previous 1.65 (colored)

merge to -current.

Revision 1.68 / (download) - annotate - [select for diffs], Tue Jan 17 10:47:26 2012 UTC (12 years, 1 month ago) by cegger
Branch: MAIN
CVS Tags: netbsd-6-base, netbsd-6-1-RELEASE, netbsd-6-1-RC4, netbsd-6-1-RC3, netbsd-6-1-RC2, netbsd-6-1-RC1, netbsd-6-1-5-RELEASE, netbsd-6-1-4-RELEASE, netbsd-6-1-3-RELEASE, netbsd-6-1-2-RELEASE, netbsd-6-1-1-RELEASE, netbsd-6-1, netbsd-6-0-RELEASE, netbsd-6-0-RC2, netbsd-6-0-RC1, netbsd-6-0-6-RELEASE, netbsd-6-0-5-RELEASE, netbsd-6-0-4-RELEASE, netbsd-6-0-3-RELEASE, netbsd-6-0-2-RELEASE, netbsd-6-0-1-RELEASE, netbsd-6-0, netbsd-6, matt-nb6-plus-nbase, matt-nb6-plus-base, matt-nb6-plus, jmcneill-usbmp-base7, jmcneill-usbmp-base6, jmcneill-usbmp-base5, jmcneill-usbmp-base4, jmcneill-usbmp-base3, jmcneill-usbmp-base2
Changes since 1.67: +1 -2 lines
Diff to previous 1.67 (colored)

fix secmodel implementation of CPU_UCODE.
ok wiz@ for the manpages
ok elad@

Revision 1.67 / (download) - annotate - [select for diffs], Fri Jan 13 16:05:16 2012 UTC (12 years, 1 month ago) by cegger
Branch: MAIN
Changes since 1.66: +3 -1 lines
Diff to previous 1.66 (colored)

Support CPU microcode loading via cpuctl(8).
Implemented and enabled via CPU_UCODE kernel config option
for x86 and Xen Dom0.
Tested on different AMD machines with different
CPU families.

ok wiz@ for the manpages
ok releng@
ok core@ via releng@

Revision 1.66 / (download) - annotate - [select for diffs], Sun Dec 4 19:25:01 2011 UTC (12 years, 3 months ago) by jym
Branch: MAIN
Changes since 1.65: +4 -6 lines
Diff to previous 1.65 (colored)

Implement the register/deregister/evaluation API for secmodel(9). It
allows registration of callbacks that can be used later for
cross-secmodel "safe" communication.

When a secmodel wishes to know a property maintained by another
secmodel, it has to submit a request to it so the other secmodel can
proceed to evaluating the request. This is done through the
secmodel_eval(9) call; example:

    bool isroot;
    error = secmodel_eval("org.netbsd.secmodel.suser", "is-root",
        cred, &isroot);
    if (error == 0 && !isroot)
            result = KAUTH_RESULT_DENY;

This one asks the suser module if the credentials are assumed to be root
when evaluated by suser module. If the module is present, it will
respond. If absent, the call will return an error.

Args and command are arbitrarily defined; it's up to the secmodel(9) to
document what it expects.

Typical example is securelevel testing: when someone wants to know
whether securelevel is raised above a certain level or not, the caller
has to request this property to the secmodel_securelevel(9) module.
Given that securelevel module may be absent from system's context (thus
making access to the global "securelevel" variable impossible or
unsafe), this API can cope with this absence and return an error.

We are using secmodel_eval(9) to implement a secmodel_extensions(9)
module, which plugs with the bsd44, suser and securelevel secmodels
to provide the logic behind curtain, usermount and user_set_cpu_affinity
modes, without adding hooks to traditional secmodels. This solves a
real issue with the current secmodel(9) code, as usermount or
user_set_cpu_affinity are not really tied to secmodel_suser(9).

The secmodel_eval(9) is also used to restrict security.models settings
when securelevel is above 0, through the "is-securelevel-above"
evaluation:
- curtain can be enabled any time, but cannot be disabled if
securelevel is above 0.
- usermount/user_set_cpu_affinity can be disabled any time, but cannot
be enabled if securelevel is above 0.

Regarding sysctl(7) entries:
curtain and usermount are now found under security.models.extensions
tree. The security.curtain and vfs.generic.usermount are still
accessible for backwards compat.

Documentation is incoming, I am proof-reading my writings.

Written by elad@, reviewed and tested (anita test + interact for rights
tests) by me. ok elad@.

See also
http://mail-index.netbsd.org/tech-security/2011/11/29/msg000422.html

XXX might consider va0 mapping too.

XXX Having a secmodel(9) specific printf (like aprint_*) for reporting
secmodel(9) errors might be a good idea, but I am not sure on how
to design such a function right now.

Revision 1.65 / (download) - annotate - [select for diffs], Wed Nov 23 10:47:49 2011 UTC (12 years, 3 months ago) by tls
Branch: MAIN
CVS Tags: jmcneill-usbmp-pre-base2, jmcneill-usbmp-base
Branch point for: jmcneill-usbmp
Changes since 1.64: +2 -1 lines
Diff to previous 1.64 (colored)


Load entropy at system boot (only works at securelevel < 1); save
at system shutdown.  Disable with random_seed=NO in rc.conf if desired.

Goes to some trouble to never load or save to network filesystems.

Entropy should really be loaded by the boot loader but I am still
sorting out how to pass it to the kernel.

Revision 1.52.4.5 / (download) - annotate - [select for diffs], Thu Mar 11 15:04:42 2010 UTC (13 years, 11 months ago) by yamt
Branch: yamt-nfs-mp
Changes since 1.52.4.4: +3 -3 lines
Diff to previous 1.52.4.4 (colored) to branchpoint 1.52 (colored) next main 1.53 (colored)

sync with head

Revision 1.64 / (download) - annotate - [select for diffs], Thu Dec 24 19:02:07 2009 UTC (14 years, 2 months ago) by elad
Branch: MAIN
CVS Tags: yamt-pagecache-base3, yamt-pagecache-base2, yamt-pagecache-base, yamt-nfs-mp-base9, yamt-nfs-mp-base11, yamt-nfs-mp-base10, uebayasi-xip-base7, uebayasi-xip-base6, uebayasi-xip-base5, uebayasi-xip-base4, uebayasi-xip-base3, uebayasi-xip-base2, uebayasi-xip-base1, uebayasi-xip-base, uebayasi-xip, rmind-uvmplock-nbase, rmind-uvmplock-base, rmind-uvmplock, matt-mips64-premerge-20101231, jruoho-x86intr-base, jruoho-x86intr, jmcneill-audiomp3-base, jmcneill-audiomp3, cherry-xenmp-base, cherry-xenmp, bouyer-quota2-nbase, bouyer-quota2-base, bouyer-quota2
Branch point for: yamt-pagecache
Changes since 1.63: +3 -3 lines
Diff to previous 1.63 (colored)

Rename KAUTH_GENERIC_CANSEE to KAUTH_GENERIC_UNUSED1 and remove handling for
the former.

(I'll remove it from the header next time a kernel version bump happens.)

Revision 1.52.4.4 / (download) - annotate - [select for diffs], Wed Sep 16 13:38:06 2009 UTC (14 years, 5 months ago) by yamt
Branch: yamt-nfs-mp
Changes since 1.52.4.3: +43 -1 lines
Diff to previous 1.52.4.3 (colored) to branchpoint 1.52 (colored)

sync with head

Revision 1.63 / (download) - annotate - [select for diffs], Thu Sep 3 04:45:27 2009 UTC (14 years, 6 months ago) by elad
Branch: MAIN
CVS Tags: yamt-nfs-mp-base8, matt-premerge-20091211, jym-xensuspend-nbase
Changes since 1.62: +43 -1 lines
Diff to previous 1.62 (colored)

Implement the vnode scope and adapt tmpfs to use it.

Mailing list reference:

	http://mail-index.netbsd.org/tech-kern/2009/07/04/msg005404.html

Revision 1.52.4.3 / (download) - annotate - [select for diffs], Wed Aug 19 18:48:33 2009 UTC (14 years, 6 months ago) by yamt
Branch: yamt-nfs-mp
Changes since 1.52.4.2: +4 -1 lines
Diff to previous 1.52.4.2 (colored) to branchpoint 1.52 (colored)

sync with head.

Revision 1.62 / (download) - annotate - [select for diffs], Mon Aug 10 20:22:06 2009 UTC (14 years, 6 months ago) by plunky
Branch: MAIN
CVS Tags: yamt-nfs-mp-base7
Changes since 1.61: +3 -5 lines
Diff to previous 1.61 (colored)

reduce the number of KAUTH_DEVICE_BLUETOOTH_SEND/RECV requests
by passing the packet type as an argument rather than having
a different request for each type.

(from a suggestion by mrg)

Revision 1.61 / (download) - annotate - [select for diffs], Mon Aug 10 18:25:20 2009 UTC (14 years, 6 months ago) by plunky
Branch: MAIN
Changes since 1.60: +6 -2 lines
Diff to previous 1.60 (colored)

remove last usage of KAUTH_ISSUSER in bluetooth code by adding
some requests to the device scope:

	KAUTH_DEVICE_BLUETOOTH_SEND_COMMAND
	KAUTH_DEVICE_BLUETOOTH_RECV_COMMAND
	KAUTH_DEVICE_BLUETOOTH_RECV_EVENT
	KAUTH_DEVICE_BLUETOOTH_RECV_DATA

and a listener tied to the HCI protocol that will approve the basic
minimum to be sent and received.

handle the requests in the bsd44_suser listener by approving all
when the credential is root.

Revision 1.60 / (download) - annotate - [select for diffs], Sat Jul 25 16:08:02 2009 UTC (14 years, 7 months ago) by mbalmer
Branch: MAIN
Changes since 1.59: +2 -1 lines
Diff to previous 1.59 (colored)

Extend the existing security models for upcoming gpio(4) changes.
Reviewed and feedback by Elad Efrat.

Revision 1.52.4.2 / (download) - annotate - [select for diffs], Sat May 16 10:41:53 2009 UTC (14 years, 9 months ago) by yamt
Branch: yamt-nfs-mp
Changes since 1.52.4.1: +26 -5 lines
Diff to previous 1.52.4.1 (colored) to branchpoint 1.52 (colored)

sync with head

Revision 1.53.4.1 / (download) - annotate - [select for diffs], Wed May 13 17:23:03 2009 UTC (14 years, 9 months ago) by jym
Branch: jym-xensuspend
Changes since 1.53: +34 -7 lines
Diff to previous 1.53 (colored) next main 1.54 (colored)

Sync with HEAD.

Commit is split, to avoid a "too many arguments" protocol error.

Revision 1.59 / (download) - annotate - [select for diffs], Fri May 8 11:09:43 2009 UTC (14 years, 10 months ago) by elad
Branch: MAIN
CVS Tags: yamt-nfs-mp-base6, yamt-nfs-mp-base5, yamt-nfs-mp-base4, jymxensuspend-base, jym-xensuspend-base
Changes since 1.58: +3 -1 lines
Diff to previous 1.58 (colored)

Add and use a network scope action/request for tun(4), similar to ppp(4),
sl(4), and strip(4).

Revision 1.58 / (download) - annotate - [select for diffs], Thu May 7 19:26:08 2009 UTC (14 years, 10 months ago) by elad
Branch: MAIN
Changes since 1.57: +9 -3 lines
Diff to previous 1.57 (colored)

Introduce several actions/requests for authorizing file-system related
operations, specifically quota and block allocation from reserved space.

Modify ufs_quotactl() to accomodate passing "mp" earlier by vfs_busy()ing
it a little bit higher.

Mailing list reference:

	http://mail-index.netbsd.org/tech-kern/2009/04/26/msg004936.html

Note that the umapfs request mentioned in this thread was NOT added as
there is still on-going discussion regarding the proper implementation.

Revision 1.57 / (download) - annotate - [select for diffs], Thu May 7 18:01:56 2009 UTC (14 years, 10 months ago) by elad
Branch: MAIN
Changes since 1.56: +13 -3 lines
Diff to previous 1.56 (colored)

Introduce actions/requests to handle authorization for ppp(4), sl(4),
strip(4), btuart(4) and bcsp(4) network interfaces and devices.

Mailing list reference:

	http://mail-index.netbsd.org/tech-kern/2009/04/27/msg004955.html

Revision 1.56 / (download) - annotate - [select for diffs], Tue May 5 21:03:28 2009 UTC (14 years, 10 months ago) by elad
Branch: MAIN
Changes since 1.55: +4 -1 lines
Diff to previous 1.55 (colored)

Add device scope actions for rnd(4) and use them.

Mailing list reference:

	http://mail-index.netbsd.org/tech-kern/2009/04/27/msg004953.html

Revision 1.52.4.1 / (download) - annotate - [select for diffs], Mon May 4 08:14:35 2009 UTC (14 years, 10 months ago) by yamt
Branch: yamt-nfs-mp
Changes since 1.52: +10 -5 lines
Diff to previous 1.52 (colored)

sync with head.

Revision 1.55 / (download) - annotate - [select for diffs], Sun May 3 17:21:12 2009 UTC (14 years, 10 months ago) by elad
Branch: MAIN
CVS Tags: yamt-nfs-mp-base3
Changes since 1.54: +3 -2 lines
Diff to previous 1.54 (colored)

Add a bluetooth action to the device scope and use it in netbt as a
replacement for KAUTH_GENERIC_ISSUSER.

Mailing list reference:

	http://mail-index.netbsd.org/tech-kern/2009/04/25/msg004905.html

Bluetooth-specific authorization wrapper might come later.

Revision 1.52.12.2 / (download) - annotate - [select for diffs], Tue Apr 28 07:37:52 2009 UTC (14 years, 10 months ago) by skrll
Branch: nick-hppapmap
Changes since 1.52.12.1: +8 -3 lines
Diff to previous 1.52.12.1 (colored) to branchpoint 1.52 (colored) next main 1.53 (colored)

Sync with HEAD.

Revision 1.54 / (download) - annotate - [select for diffs], Wed Apr 15 20:44:24 2009 UTC (14 years, 10 months ago) by elad
Branch: MAIN
CVS Tags: nick-hppapmap-base4, nick-hppapmap-base3, nick-hppapmap-base
Changes since 1.53: +8 -3 lines
Diff to previous 1.53 (colored)

Remove a few KAUTH_GENERIC_ISSUSER in favor of more descriptive
alternatives.

Discussed on tech-kern:

	http://mail-index.netbsd.org/tech-kern/2009/04/11/msg004798.html

Input from ad@, christos@, dyoung@, tsutsui@.

Okay ad@.

Revision 1.52.12.1 / (download) - annotate - [select for diffs], Mon Jan 19 13:20:30 2009 UTC (15 years, 1 month ago) by skrll
Branch: nick-hppapmap
Changes since 1.52: +1 -2 lines
Diff to previous 1.52 (colored)

Sync with HEAD.

Revision 1.50.6.2 / (download) - annotate - [select for diffs], Sat Jan 17 13:29:40 2009 UTC (15 years, 1 month ago) by mjf
Branch: mjf-devfs2
Changes since 1.50.6.1: +0 -1 lines
Diff to previous 1.50.6.1 (colored) to branchpoint 1.50 (colored) next main 1.51 (colored)

Sync with HEAD.

Revision 1.52.10.1 / (download) - annotate - [select for diffs], Sat Dec 13 01:15:35 2008 UTC (15 years, 2 months ago) by haad
Branch: haad-dm
Changes since 1.52: +1 -2 lines
Diff to previous 1.52 (colored) next main 1.53 (colored)

Update haad-dm branch to haad-dm-base2.

Revision 1.53 / (download) - annotate - [select for diffs], Wed Nov 12 12:36:28 2008 UTC (15 years, 3 months ago) by ad
Branch: MAIN
CVS Tags: nick-hppapmap-base2, mjf-devfs2-base, haad-nbase2, haad-dm-base2, haad-dm-base, ad-audiomp2-base, ad-audiomp2
Branch point for: jym-xensuspend
Changes since 1.52: +1 -2 lines
Diff to previous 1.52 (colored)

Remove LKMs and switch to the module framework, pass 1.

Proposed on tech-kern@.

Revision 1.50.6.1 / (download) - annotate - [select for diffs], Thu Apr 3 12:43:12 2008 UTC (15 years, 11 months ago) by mjf
Branch: mjf-devfs2
Changes since 1.50: +4 -3 lines
Diff to previous 1.50 (colored)

Sync with HEAD.

Revision 1.50.2.1 / (download) - annotate - [select for diffs], Mon Mar 24 07:16:28 2008 UTC (15 years, 11 months ago) by keiichi
Branch: keiichi-mipv6
Changes since 1.50: +4 -3 lines
Diff to previous 1.50 (colored) next main 1.51 (colored)

sync with head.

Revision 1.39.8.3 / (download) - annotate - [select for diffs], Sun Mar 23 02:05:10 2008 UTC (15 years, 11 months ago) by matt
Branch: matt-armv6
Changes since 1.39.8.2: +37 -11 lines
Diff to previous 1.39.8.2 (colored) to branchpoint 1.39 (colored) next main 1.40 (colored)

sync with HEAD

Revision 1.3.6.11 / (download) - annotate - [select for diffs], Mon Mar 17 09:15:47 2008 UTC (15 years, 11 months ago) by yamt
Branch: yamt-lazymbuf
Changes since 1.3.6.10: +4 -3 lines
Diff to previous 1.3.6.10 (colored) to branchpoint 1.3 (colored) next main 1.4 (colored)

sync with head.

Revision 1.52 / (download) - annotate - [select for diffs], Thu Feb 28 17:07:49 2008 UTC (16 years ago) by elad
Branch: MAIN
CVS Tags: yamt-pf42-baseX, yamt-pf42-base4, yamt-pf42-base3, yamt-pf42-base2, yamt-pf42-base, yamt-pf42, yamt-nfs-mp-base2, yamt-nfs-mp-base, yamt-lazymbuf-base15, yamt-lazymbuf-base14, wrstuden-revivesa-base-4, wrstuden-revivesa-base-3, wrstuden-revivesa-base-2, wrstuden-revivesa-base-1, wrstuden-revivesa-base, wrstuden-revivesa, simonb-wapbl-nbase, simonb-wapbl-base, simonb-wapbl, netbsd-5-base, netbsd-5-2-RELEASE, netbsd-5-2-RC1, netbsd-5-2-3-RELEASE, netbsd-5-2-2-RELEASE, netbsd-5-2-1-RELEASE, netbsd-5-2, netbsd-5-1-RELEASE, netbsd-5-1-RC4, netbsd-5-1-RC3, netbsd-5-1-RC2, netbsd-5-1-RC1, netbsd-5-1-5-RELEASE, netbsd-5-1-4-RELEASE, netbsd-5-1-3-RELEASE, netbsd-5-1-2-RELEASE, netbsd-5-1-1-RELEASE, netbsd-5-1, netbsd-5-0-RELEASE, netbsd-5-0-RC4, netbsd-5-0-RC3, netbsd-5-0-RC2, netbsd-5-0-RC1, netbsd-5-0-2-RELEASE, netbsd-5-0-1-RELEASE, netbsd-5-0, netbsd-5, matt-nb5-pq3-base, matt-nb5-pq3, matt-nb5-mips64-u2-k2-k4-k7-k8-k9, matt-nb5-mips64-u1-k1-k5, matt-nb5-mips64-premerge-20101231, matt-nb5-mips64-premerge-20091211, matt-nb5-mips64-k15, matt-nb5-mips64, matt-nb4-mips64-k7-u2a-k9b, matt-mips64-base2, matt-armv6-nbase, keiichi-mipv6-nbase, keiichi-mipv6-base, hpcarm-cleanup-nbase, haad-dm-base1, ad-socklock-base1
Branch point for: yamt-nfs-mp, nick-hppapmap, haad-dm
Changes since 1.51: +4 -1 lines
Diff to previous 1.51 (colored)

Introduce a new kauth action, KAUTH_NETWORK_NFS, and two requests,
KAUTH_REQ_NETWORK_NFS_EXPORT and KAUTH_REQ_NETWORK_NFS_SVC, and use them
to replace two KAUTH_GENERIC_ISSUSER calls in the NFS code.

Also replace two more with KAUTH_SYSTEM_MKNOD, where appropriate.

Documetnation and examples updated. More to come.

Revision 1.51 / (download) - annotate - [select for diffs], Thu Feb 28 16:09:19 2008 UTC (16 years ago) by elad
Branch: MAIN
Changes since 1.50: +1 -3 lines
Diff to previous 1.50 (colored)

Factor out the guts of get/setparam so it can be used from the compat code.

Make the FreeBSD and Linux compat code convert the parameters to their
native representation and call the native routines.

Remove KAUTH_PROCESS_SCHEDULER_GET/SET.

Update documentation and examples.

XXX: For now, only the Linux compat code does the priority conversion
XXX: right.

Linux priority conversion code from yamt@, thanks!

Okay yamt@.

Revision 1.3.6.10 / (download) - annotate - [select for diffs], Wed Feb 27 08:37:05 2008 UTC (16 years ago) by yamt
Branch: yamt-lazymbuf
Changes since 1.3.6.9: +8 -9 lines
Diff to previous 1.3.6.9 (colored) to branchpoint 1.3 (colored)

sync with head.

Revision 1.40.6.2 / (download) - annotate - [select for diffs], Mon Feb 18 21:07:23 2008 UTC (16 years ago) by mjf
Branch: mjf-devfs
Changes since 1.40.6.1: +37 -12 lines
Diff to previous 1.40.6.1 (colored) to branchpoint 1.40 (colored) next main 1.41 (colored)

Sync with HEAD.

Revision 1.50 / (download) - annotate - [select for diffs], Sat Feb 16 16:39:34 2008 UTC (16 years ago) by elad
Branch: MAIN
CVS Tags: nick-net80211-sync-base, nick-net80211-sync, mjf-devfs-base, hpcarm-cleanup-base
Branch point for: mjf-devfs2, keiichi-mipv6
Changes since 1.49: +8 -9 lines
Diff to previous 1.49 (colored)

Fold KAUTH_REQ_PROCESS_SCHEDULER_* to KAUTH_PROCESS_SCHEDULER_*. In other
words, don't pass an action and a request, and just use a single action to
indicate what is the operation in question.

This is the first step in fixing PR/37986, which calls for policy/priority
checking in the secmodel code. Right now we're lacking room for another
parameter required to make a decision, and this change makes room for such.

Revision 1.3.6.9 / (download) - annotate - [select for diffs], Mon Feb 4 09:24:58 2008 UTC (16 years, 1 month ago) by yamt
Branch: yamt-lazymbuf
Changes since 1.3.6.8: +35 -10 lines
Diff to previous 1.3.6.8 (colored) to branchpoint 1.3 (colored)

sync with head.

Revision 1.49 / (download) - annotate - [select for diffs], Sat Feb 2 21:04:41 2008 UTC (16 years, 1 month ago) by elad
Branch: MAIN
Changes since 1.48: +2 -1 lines
Diff to previous 1.48 (colored)

Add, document, and use KAUTH_REQ_PROCESS_KTRACE_PERSISTENT.

Revision 1.48 / (download) - annotate - [select for diffs], Fri Feb 1 20:01:06 2008 UTC (16 years, 1 month ago) by elad
Branch: MAIN
Changes since 1.47: +3 -1 lines
Diff to previous 1.47 (colored)

Replace a KAUTH_GENERIC_ISSUSER in the cpuctl code with a proper kauth
request.

Reviewed by ad@, tested by me.

Revision 1.47 / (download) - annotate - [select for diffs], Wed Jan 30 17:54:55 2008 UTC (16 years, 1 month ago) by elad
Branch: MAIN
Changes since 1.46: +8 -1 lines
Diff to previous 1.46 (colored)

Use proper kauth(9) actions/requests for native scheduler stuff and the
recently introduced processor-sets.

Discussed with and okay rmind@, yamt@, and christos@.

Revision 1.42.6.4 / (download) - annotate - [select for diffs], Wed Jan 23 19:27:48 2008 UTC (16 years, 1 month ago) by bouyer
Branch: bouyer-xeni386
Changes since 1.42.6.3: +24 -9 lines
Diff to previous 1.42.6.3 (colored) to branchpoint 1.42 (colored) next main 1.43 (colored)

Sync with HEAD.

Revision 1.46 / (download) - annotate - [select for diffs], Wed Jan 23 15:04:41 2008 UTC (16 years, 1 month ago) by elad
Branch: MAIN
CVS Tags: bouyer-xeni386-nbase
Changes since 1.45: +25 -10 lines
Diff to previous 1.45 (colored)

Tons of process scope changes.

  - Add a KAUTH_PROCESS_SCHEDULER action, to handle scheduler related
    requests, and add specific requests for set/get scheduler policy and
    set/get scheduler parameters.

  - Add a KAUTH_PROCESS_KEVENT_FILTER action, to handle kevent(2) related
    requests.

  - Add a KAUTH_DEVICE_TTY_STI action to handle requests to TIOCSTI.

  - Add requests for the KAUTH_PROCESS_CANSEE action, indicating what
    process information is being looked at (entry itself, args, env,
    open files).

  - Add requests for the KAUTH_PROCESS_RLIMIT action indicating set/get.

  - Add requests for the KAUTH_PROCESS_CORENAME action indicating set/get.

  - Make bsd44 secmodel code handle the newly added rqeuests appropriately.

All of the above make it possible to issue finer-grained kauth(9) calls in
many places, removing some KAUTH_GENERIC_ISSUSER requests.

  - Remove the "CAN" from KAUTH_PROCESS_CAN{KTRACE,PROCFS,PTRACE,SIGNAL}.

Discussed with christos@ and yamt@.

Revision 1.3.6.8 / (download) - annotate - [select for diffs], Mon Jan 21 09:47:50 2008 UTC (16 years, 1 month ago) by yamt
Branch: yamt-lazymbuf
Changes since 1.3.6.7: +4 -3 lines
Diff to previous 1.3.6.7 (colored) to branchpoint 1.3 (colored)

sync with head

Revision 1.42.6.3 / (download) - annotate - [select for diffs], Sat Jan 19 12:15:40 2008 UTC (16 years, 1 month ago) by bouyer
Branch: bouyer-xeni386
Changes since 1.42.6.2: +2 -1 lines
Diff to previous 1.42.6.2 (colored) to branchpoint 1.42 (colored)

Sync with HEAD

Revision 1.45 / (download) - annotate - [select for diffs], Wed Jan 16 12:34:54 2008 UTC (16 years, 1 month ago) by ad
Branch: MAIN
CVS Tags: bouyer-xeni386-base
Changes since 1.44: +3 -2 lines
Diff to previous 1.44 (colored)

Pull in my modules code for review/test/hacking.

Revision 1.39.8.2 / (download) - annotate - [select for diffs], Wed Jan 9 01:58:09 2008 UTC (16 years, 1 month ago) by matt
Branch: matt-armv6
Changes since 1.39.8.1: +4 -4 lines
Diff to previous 1.39.8.1 (colored) to branchpoint 1.39 (colored)

sync with HEAD

Revision 1.42.6.2 / (download) - annotate - [select for diffs], Tue Jan 8 22:11:56 2008 UTC (16 years, 1 month ago) by bouyer
Branch: bouyer-xeni386
CVS Tags: bouyer-xeni386-merge1
Changes since 1.42.6.1: +1 -0 lines
Diff to previous 1.42.6.1 (colored) to branchpoint 1.42 (colored)

Sync with HEAD

Revision 1.44 / (download) - annotate - [select for diffs], Mon Jan 7 23:51:07 2008 UTC (16 years, 1 month ago) by elad
Branch: MAIN
CVS Tags: matt-armv6-base
Changes since 1.43: +2 -1 lines
Diff to previous 1.43 (colored)

Make fork use kauth.

Been running in my tree for over a month at least.

Reviewed and okay yamt@, and special thanks to him as well as rittera@
for making this possible through fixing NDIS to not call fork1() with
l1 != curlwp.

Revision 1.42.6.1 / (download) - annotate - [select for diffs], Wed Jan 2 21:58:01 2008 UTC (16 years, 2 months ago) by bouyer
Branch: bouyer-xeni386
Changes since 1.42: +1 -2 lines
Diff to previous 1.42 (colored)

Sync with HEAD

Revision 1.43 / (download) - annotate - [select for diffs], Mon Dec 31 15:32:14 2007 UTC (16 years, 2 months ago) by ad
Branch: MAIN
Changes since 1.42: +1 -2 lines
Diff to previous 1.42 (colored)

Remove systrace. Ok core@.

Revision 1.40.6.1 / (download) - annotate - [select for diffs], Sat Dec 8 18:21:32 2007 UTC (16 years, 2 months ago) by mjf
Branch: mjf-devfs
Changes since 1.40: +3 -3 lines
Diff to previous 1.40 (colored)

Sync with HEAD.

Revision 1.3.6.7 / (download) - annotate - [select for diffs], Fri Dec 7 17:34:54 2007 UTC (16 years, 3 months ago) by yamt
Branch: yamt-lazymbuf
Changes since 1.3.6.6: +3 -3 lines
Diff to previous 1.3.6.6 (colored) to branchpoint 1.3 (colored)

sync with head

Revision 1.39.6.2 / (download) - annotate - [select for diffs], Tue Nov 27 19:39:12 2007 UTC (16 years, 3 months ago) by joerg
Branch: jmcneill-pm
Changes since 1.39.6.1: +3 -3 lines
Diff to previous 1.39.6.1 (colored) to branchpoint 1.39 (colored) next main 1.40 (colored)

Sync with HEAD. amd64 Xen support needs testing.

Revision 1.42 / (download) - annotate - [select for diffs], Sun Nov 25 09:39:26 2007 UTC (16 years, 3 months ago) by elad
Branch: MAIN
CVS Tags: yamt-kmem-base3, yamt-kmem-base2, yamt-kmem-base, yamt-kmem, vmlocking2-base3, vmlocking2-base2, vmlocking2-base1, vmlocking2, vmlocking-nbase, reinoud-bufcleanup-nbase, reinoud-bufcleanup-base, jmcneill-pm-base, cube-autoconf-base, cube-autoconf
Branch point for: bouyer-xeni386
Changes since 1.41: +1 -2 lines
Diff to previous 1.41 (colored)

Deprecate KAUTH_REQ_SYSTEM_TIME_BACKWARDS, as it was merged into
KAUTH_REQ_SYSTEM_TIME_SYSTEM.

Revision 1.41 / (download) - annotate - [select for diffs], Fri Nov 23 16:03:49 2007 UTC (16 years, 3 months ago) by elad
Branch: MAIN
Changes since 1.40: +3 -2 lines
Diff to previous 1.40 (colored)

Kill another instance of KAUTH_GENERIC_ISSUSER.

Revision 1.39.8.1 / (download) - annotate - [select for diffs], Tue Nov 6 23:34:48 2007 UTC (16 years, 4 months ago) by matt
Branch: matt-armv6
CVS Tags: matt-armv6-prevmlocking
Changes since 1.39: +3 -3 lines
Diff to previous 1.39 (colored)

sync with HEAD

Revision 1.3.6.6 / (download) - annotate - [select for diffs], Sat Oct 27 11:36:29 2007 UTC (16 years, 4 months ago) by yamt
Branch: yamt-lazymbuf
Changes since 1.3.6.5: +3 -3 lines
Diff to previous 1.3.6.5 (colored) to branchpoint 1.3 (colored)

sync with head.

Revision 1.37.4.2 / (download) - annotate - [select for diffs], Tue Oct 9 13:45:08 2007 UTC (16 years, 4 months ago) by ad
Branch: vmlocking
Changes since 1.37.4.1: +3 -3 lines
Diff to previous 1.37.4.1 (colored) to branchpoint 1.37 (colored) next main 1.38 (colored)

Sync with head.

Revision 1.39.6.1 / (download) - annotate - [select for diffs], Tue Oct 2 18:29:27 2007 UTC (16 years, 5 months ago) by joerg
Branch: jmcneill-pm
Changes since 1.39: +3 -3 lines
Diff to previous 1.39 (colored)

Sync with HEAD.

Revision 1.40 / (download) - annotate - [select for diffs], Sun Sep 23 16:00:08 2007 UTC (16 years, 5 months ago) by yamt
Branch: MAIN
CVS Tags: yamt-x86pmap-base4, yamt-x86pmap-base3, yamt-x86pmap-base2, yamt-x86pmap-base, yamt-x86pmap, vmlocking-base, jmcneill-base, bouyer-xenamd64-base2, bouyer-xenamd64-base, bouyer-xenamd64
Branch point for: mjf-devfs
Changes since 1.39: +3 -3 lines
Diff to previous 1.39 (colored)

use a correct type for UIO_*.

Revision 1.3.6.5 / (download) - annotate - [select for diffs], Mon Sep 3 14:46:19 2007 UTC (16 years, 6 months ago) by yamt
Branch: yamt-lazymbuf
Changes since 1.3.6.4: +7 -3 lines
Diff to previous 1.3.6.4 (colored) to branchpoint 1.3 (colored)

sync with head.

Revision 1.37.4.1 / (download) - annotate - [select for diffs], Sun Jul 15 13:28:10 2007 UTC (16 years, 7 months ago) by ad
Branch: vmlocking
Changes since 1.37: +7 -3 lines
Diff to previous 1.37 (colored)

Sync with head.

Revision 1.37.6.1 / (download) - annotate - [select for diffs], Wed Jul 11 20:12:30 2007 UTC (16 years, 7 months ago) by mjf
Branch: mjf-ufs-trans
Changes since 1.37: +7 -3 lines
Diff to previous 1.37 (colored) next main 1.38 (colored)

Sync with head.

Revision 1.39 / (download) - annotate - [select for diffs], Sat Jun 30 13:32:14 2007 UTC (16 years, 8 months ago) by dsl
Branch: MAIN
CVS Tags: nick-csl-alignment-base5, nick-csl-alignment-base, nick-csl-alignment, mjf-ufs-trans-base, matt-mips64-base, matt-mips64, hpcarm-cleanup
Branch point for: matt-armv6, jmcneill-pm
Changes since 1.38: +5 -7 lines
Diff to previous 1.38 (colored)

Add a flags parameter to kauth_cred_get/setgroups() so that sys_set/setgroups
can copy directly to/from userspace.
Avoids exposing the implementation of the group list as an array to code
outside kern_auth.c.
compat code and man page need updating.

Revision 1.38 / (download) - annotate - [select for diffs], Sat Jun 23 09:02:12 2007 UTC (16 years, 8 months ago) by dsl
Branch: MAIN
Changes since 1.37: +7 -1 lines
Diff to previous 1.37 (colored)

Simplify the interfaces needed for sys_setgroups() and sys_getgroups().
Exposed that the kauth code holds groups in an array, but removes some
of the knowledge of the maximum number of groups.
Allows the syscall code to copyin/out directly to/from the cred structure,
this save a lot of faffing about with malloc/free even when compat code
has to use 16bit groups.

Revision 1.36.2.1 / (download) - annotate - [select for diffs], Tue Feb 27 16:55:14 2007 UTC (17 years ago) by yamt
Branch: yamt-idlelwp
Changes since 1.36: +5 -5 lines
Diff to previous 1.36 (colored) next main 1.37 (colored)

- sync with head.
- move sched_changepri back to kern_synch.c as it doesn't know PPQ anymore.

Revision 1.3.6.4 / (download) - annotate - [select for diffs], Mon Feb 26 09:12:11 2007 UTC (17 years ago) by yamt
Branch: yamt-lazymbuf
Changes since 1.3.6.3: +37 -13 lines
Diff to previous 1.3.6.3 (colored) to branchpoint 1.3 (colored)

sync with head.

Revision 1.37 / (download) - annotate - [select for diffs], Sun Feb 18 15:20:34 2007 UTC (17 years ago) by dsl
Branch: MAIN
CVS Tags: yamt-idlelwp-base8, thorpej-atomic-base, thorpej-atomic, reinoud-bufcleanup, ad-audiomp-base, ad-audiomp
Branch point for: vmlocking, mjf-ufs-trans
Changes since 1.36: +5 -5 lines
Diff to previous 1.36 (colored)

The pre-kauth 'struct ucread' and 'struct pcred' are now only used in the
(depracted some time ago) 'struct kinfo_proc' returned by sysctl.
Move the definitions to sys/syctl.h and rename in order to ensure all the
users are located.

Revision 1.5.4.3 / (download) - annotate - [select for diffs], Thu Feb 1 08:48:47 2007 UTC (17 years, 1 month ago) by ad
Branch: newlock2
Changes since 1.5.4.2: +26 -5 lines
Diff to previous 1.5.4.2 (colored) to branchpoint 1.5 (colored) next main 1.6 (colored)

Sync with head.

Revision 1.36 / (download) - annotate - [select for diffs], Wed Jan 31 10:08:23 2007 UTC (17 years, 1 month ago) by elad
Branch: MAIN
CVS Tags: post-newlock2-merge, newlock2-nbase, newlock2-base
Branch point for: yamt-idlelwp
Changes since 1.35: +18 -1 lines
Diff to previous 1.35 (colored)

Add a new scope, the credentials scope, which is internal to the kauth(9)
implementation and meant to be used by security models to hook credential
related operations (init, fork, copy, free -- hooked in kauth_cred_alloc(),
kauth_proc_fork(), kauth_cred_clone(), and kauth_cred_free(), respectively)
and document it.

Add specificdata to credentials, and routines to register/deregister new
"keys", as well as set/get routines. This allows security models to add
their own private data to a kauth_cred_t.

The above two, combined, allow security models to control inheritance of
their own private data in credentials which is a requirement for doing
stuff like, I dunno, capabilities?

Revision 1.24.2.4 / (download) - annotate - [select for diffs], Sun Jan 21 19:12:10 2007 UTC (17 years, 1 month ago) by bouyer
Branch: netbsd-4
CVS Tags: wrstuden-fixsa-newbase, wrstuden-fixsa-base-1, wrstuden-fixsa-base, wrstuden-fixsa, netbsd-4-0-RELEASE, netbsd-4-0-RC5, netbsd-4-0-RC4, netbsd-4-0-RC3, netbsd-4-0-RC2, netbsd-4-0-RC1, netbsd-4-0-1-RELEASE, netbsd-4-0, matt-nb4-arm-base, matt-nb4-arm
Changes since 1.24.2.3: +4 -5 lines
Diff to previous 1.24.2.3 (colored) to branchpoint 1.24 (colored) next main 1.25 (colored)

Pull up following revision(s) (requested by elad in ticket #379):
	sys/secmodel/bsd44/secmodel_bsd44_suser.c: revision 1.33 via patch
	share/examples/secmodel/secmodel_example.c: revision 1.14 via patch
	sys/sys/kauth.h: revision 1.35 via patch
	sys/kern/kern_resource.c: revision 1.112 via patch
	share/man/man9/kauth.9: revision 1.48 via patch
Kill KAUTH_PROCESS_RESOURCE and just replace it with two actions for
nice and rlimit.

Revision 1.35 / (download) - annotate - [select for diffs], Sat Jan 20 16:47:38 2007 UTC (17 years, 1 month ago) by elad
Branch: MAIN
Changes since 1.34: +4 -5 lines
Diff to previous 1.34 (colored)

Kill KAUTH_PROCESS_RESOURCE and just replace it with two actions for
nice and rlimit.

Revision 1.34 / (download) - annotate - [select for diffs], Tue Jan 16 11:51:22 2007 UTC (17 years, 1 month ago) by elad
Branch: MAIN
Changes since 1.33: +4 -1 lines
Diff to previous 1.33 (colored)

Introduce secmodel_register() and secmodel_deregister() (for now left
undocumented) and change logic in kauth_authorize_action() to only
allow an action if it wasn't explicitly allowed/denied and there are no
secmodels loaded.

Okay yamt@.

Revision 1.33 / (download) - annotate - [select for diffs], Mon Jan 15 17:45:32 2007 UTC (17 years, 1 month ago) by elad
Branch: MAIN
Changes since 1.32: +3 -1 lines
Diff to previous 1.32 (colored)

Introduce kauth_proc_fork() to control credential inheritance.

Revision 1.5.4.2 / (download) - annotate - [select for diffs], Fri Jan 12 01:04:23 2007 UTC (17 years, 1 month ago) by ad
Branch: newlock2
Changes since 1.5.4.1: +46 -24 lines
Diff to previous 1.5.4.1 (colored) to branchpoint 1.5 (colored)

Sync with head.

Revision 1.32 / (download) - annotate - [select for diffs], Tue Jan 9 12:49:37 2007 UTC (17 years, 1 month ago) by elad
Branch: MAIN
Changes since 1.31: +2 -5 lines
Diff to previous 1.31 (colored)

Remove advertising clause from all of my stuff.

Revision 1.24.2.3 / (download) - annotate - [select for diffs], Sat Jan 6 13:18:17 2007 UTC (17 years, 2 months ago) by bouyer
Branch: netbsd-4
Changes since 1.24.2.2: +10 -17 lines
Diff to previous 1.24.2.2 (colored) to branchpoint 1.24 (colored)

Pull up following revision(s) (requested by elad in ticket #316):
	share/examples/secmodel/secmodel_example.c: revision 1.10 via patch
	sys/arch/i386/i386/sys_machdep.c: revision 1.79
	sys/arch/amd64/amd64/netbsd32_machdep.c: revision 1.31
	share/man/man9/secmodel_bsd44.9: revision 1.9
	sys/arch/vax/vax/mem.c: revision 1.34 via patch
	sys/arch/sh3/sh3/mem.c: revision 1.23 via patch
	sys/arch/sh5/sh5/mem.c: revision 1.14 via patch
	sys/secmodel/bsd44/secmodel_bsd44_suser.c: revision 1.22 via patch
	sys/arch/powerpc/powerpc/mem.c: revision 1.27 via patch
	sys/arch/x86/x86/x86_machdep.c: revision 1.5
	sys/arch/alpha/alpha/machdep.c: revision 1.291
	sys/arch/arm/arm32/mem.c: revision 1.17 via patch
	sys/secmodel/bsd44/secmodel_bsd44_securelevel.c: revision 1.20
	sys/sys/kauth.h: revision 1.29 via patch
	sys/arch/amd64/amd64/sys_machdep.c: revision 1.10
	share/man/man9/kauth.9: revision 1.43 via patch
	sys/arch/xen/i386/sys_machdep.c: revision 1.10
	sys/kern/kern_auth.c: revision 1.35
	sys/arch/pc532/pc532/mem.c: revision 1.43 via patch
Make machdep scope architecture-agnostic by removing all arch-specific
requests and centralizing them all. The result is that some of these
are not used on some architectures, but the documentation was updated
to reflect that.

Revision 1.24.2.2 / (download) - annotate - [select for diffs], Thu Jan 4 18:38:14 2007 UTC (17 years, 2 months ago) by bouyer
Branch: netbsd-4
Changes since 1.24.2.1: +2 -1 lines
Diff to previous 1.24.2.1 (colored) to branchpoint 1.24 (colored)

Pull up following revision(s) (requested by hubert in ticket #334):
	share/man/man9/kauth.9: revision 1.39
	sys/miscfs/procfs/procfs_ctl.c: revision 1.38
	sys/sys/kauth.h: revision 1.27
Some changes to get rid of another KAUTH_GENERIC_ISSUSER usage:
  - Make procfs_control() in procfs_ctl.c static,
  - Add an argument to the above, 'pfs', for the pfsnode,
  - Add another request type to KAUTH_PROCESS_CANPROCFS named
    KAUTH_REQ_PROCESS_CANPROCFS_CTL (and update documentation),
  - Use the above combination in a call to kauth_authorize_process().

Revision 1.31 / (download) - annotate - [select for diffs], Tue Jan 2 11:18:56 2007 UTC (17 years, 2 months ago) by elad
Branch: MAIN
Changes since 1.30: +2 -1 lines
Diff to previous 1.30 (colored)

Add KAUTH_SYSTEM_CHSYSFLAGS so we can get rid of the last three
securelevel references (ufs, ext2fs, tmpfs).

Intentionally undocumented.

Revision 1.30 / (download) - annotate - [select for diffs], Tue Jan 2 10:47:28 2007 UTC (17 years, 2 months ago) by elad
Branch: MAIN
Changes since 1.29: +6 -1 lines
Diff to previous 1.29 (colored)

Make mount(2) and unmount(2) use kauth(9) for security policy.

Okay yamt@.

Revision 1.3.6.3 / (download) - annotate - [select for diffs], Sat Dec 30 20:50:55 2006 UTC (17 years, 2 months ago) by yamt
Branch: yamt-lazymbuf
Changes since 1.3.6.2: +177 -17 lines
Diff to previous 1.3.6.2 (colored) to branchpoint 1.3 (colored)

sync with head.

Revision 1.29 / (download) - annotate - [select for diffs], Tue Dec 26 10:43:44 2006 UTC (17 years, 2 months ago) by elad
Branch: MAIN
Changes since 1.28: +10 -29 lines
Diff to previous 1.28 (colored)

Make machdep scope architecture-agnostic by removing all arch-specific
requests and centralizing them all. The result is that some of these
are not used on some architectures, but the documentation was updated
to reflect that.

Revision 1.28 / (download) - annotate - [select for diffs], Fri Dec 22 11:13:22 2006 UTC (17 years, 2 months ago) by elad
Branch: MAIN
Changes since 1.27: +13 -1 lines
Diff to previous 1.27 (colored)

Add requests indicating access to unmanaged memory for arm, pc532, powerpc,
sh3, sh5, and vax, and use them instead of KAUTH_GENERIC_ISSUSER.

Update documentation and example secmodel code.

Revision 1.6.4.4 / (download) - annotate - [select for diffs], Thu Dec 21 15:07:59 2006 UTC (17 years, 2 months ago) by yamt
Branch: yamt-splraiseipl
Changes since 1.6.4.3: +3 -2 lines
Diff to previous 1.6.4.3 (colored) to branchpoint 1.6 (colored) next main 1.7 (colored)

sync with head.

Revision 1.27 / (download) - annotate - [select for diffs], Tue Dec 19 09:58:35 2006 UTC (17 years, 2 months ago) by elad
Branch: MAIN
CVS Tags: yamt-splraiseipl-base5
Changes since 1.26: +3 -2 lines
Diff to previous 1.26 (colored)

Some changes to get rid of another KAUTH_GENERIC_ISSUSER usage:
  - Make procfs_control() in procfs_ctl.c static,
  - Add an argument to the above, 'pfs', for the pfsnode,
  - Add another request type to KAUTH_PROCESS_CANPROCFS named
    KAUTH_REQ_PROCESS_CANPROCFS_CTL (and update documentation),
  - Use the above combination in a call to kauth_authorize_process().

Revision 1.6.4.3 / (download) - annotate - [select for diffs], Mon Dec 18 11:42:27 2006 UTC (17 years, 2 months ago) by yamt
Branch: yamt-splraiseipl
Changes since 1.6.4.2: +3 -2 lines
Diff to previous 1.6.4.2 (colored) to branchpoint 1.6 (colored)

sync with head.

Revision 1.26 / (download) - annotate - [select for diffs], Thu Dec 14 18:27:59 2006 UTC (17 years, 2 months ago) by elad
Branch: MAIN
CVS Tags: yamt-splraiseipl-base4
Changes since 1.25: +3 -2 lines
Diff to previous 1.25 (colored)

oops, forgot KAUTH_PROCESS_STOPFLAG.

noted by Jukka Salmi, thanks.

Revision 1.6.4.2 / (download) - annotate - [select for diffs], Sun Dec 10 07:19:28 2006 UTC (17 years, 2 months ago) by yamt
Branch: yamt-splraiseipl
Changes since 1.6.4.1: +50 -16 lines
Diff to previous 1.6.4.1 (colored) to branchpoint 1.6 (colored)

sync with head.

Revision 1.24.2.1 / (download) - annotate - [select for diffs], Mon Dec 4 18:34:16 2006 UTC (17 years, 3 months ago) by tron
Branch: netbsd-4
Changes since 1.24: +11 -2 lines
Diff to previous 1.24 (colored)

Pull up following revision(s) (requested by elad in ticket #247):
	sys/dev/ic/dpt.c: revision 1.55
	sys/dev/pci/amr.c: revision 1.43
	sys/secmodel/bsd44/secmodel_bsd44_securelevel.c: revision 1.19
	sys/dev/pci/mly.c: revision 1.33
	share/man/man9/kauth.9: revision 1.37
	sys/dev/ic/mlx.c: revision 1.49
	sys/dev/ic/icp_ioctl.c: revision 1.14
	sys/dev/i2o/iop.c: revision 1.62
	sys/dev/pci/twe.c: revision 1.82
	sys/sys/kauth.h: revision 1.25
	sys/dev/i2o/dpti.c: revision 1.31
	sys/kern/kern_auth.c: revision 1.33
	sys/dev/tc/stic.c: revision 1.37
Change kauth(9) KPI for kauth_authorize_device_passthru() to add another
argument, u_long, serving as a bit-mask of generic requests for the
passthru request.
Discussed on tech-security@ and tech-kern@. Okay tls@.

Revision 1.25 / (download) - annotate - [select for diffs], Sat Dec 2 03:10:44 2006 UTC (17 years, 3 months ago) by elad
Branch: MAIN
CVS Tags: yamt-splraiseipl-base3
Changes since 1.24: +11 -2 lines
Diff to previous 1.24 (colored)

Change kauth(9) KPI for kauth_authorize_device_passthru() to add another
argument, u_long, serving as a bit-mask of generic requests for the
passthru request.

Discussed on tech-security@ and tech-kern@. Okay tls@.

Revision 1.24 / (download) - annotate - [select for diffs], Tue Nov 28 17:27:10 2006 UTC (17 years, 3 months ago) by elad
Branch: MAIN
CVS Tags: netbsd-4-base
Branch point for: netbsd-4
Changes since 1.23: +11 -4 lines
Diff to previous 1.23 (colored)

Move ktrace, ptrace, systrace, and procfs to use kauth(9).

First, remove process_checkioperm() calls from MD code. Similar checks
using kauth(9) routines (on the process scope, using appropriate action)
are done in the callers.

Add secmodel back-end to handle each subsystem.

Revision 1.23 / (download) - annotate - [select for diffs], Sat Nov 25 20:50:20 2006 UTC (17 years, 3 months ago) by elad
Branch: MAIN
Changes since 1.22: +4 -1 lines
Diff to previous 1.22 (colored)

Add a KAUTH_ARG() macro to make it easier to pass integer arguments to
authorization wrappers.

Revision 1.22 / (download) - annotate - [select for diffs], Wed Nov 22 13:59:27 2006 UTC (17 years, 3 months ago) by elad
Branch: MAIN
Changes since 1.21: +2 -3 lines
Diff to previous 1.21 (colored)

Remove KAUTH_PROCESS_DEBUGINIT, should have never gotten into the tree in
the first place.

Revision 1.21 / (download) - annotate - [select for diffs], Wed Nov 22 12:12:51 2006 UTC (17 years, 3 months ago) by elad
Branch: MAIN
Changes since 1.20: +7 -4 lines
Diff to previous 1.20 (colored)

Introduce KAUTH_REQ_MACHDEP_{ALPHA,X86}_UNMANAGEDMEM to handle access
to unmanaged memory.

These are the last two securelevel references in the MD code.

Revision 1.20 / (download) - annotate - [select for diffs], Sun Nov 19 00:11:30 2006 UTC (17 years, 3 months ago) by elad
Branch: MAIN
Changes since 1.19: +5 -2 lines
Diff to previous 1.19 (colored)

Provide a standard authorization wrapper for the device scope.

Revision 1.5.4.1 / (download) - annotate - [select for diffs], Sat Nov 18 21:39:46 2006 UTC (17 years, 3 months ago) by ad
Branch: newlock2
Changes since 1.5: +155 -15 lines
Diff to previous 1.5 (colored)

Sync with head.

Revision 1.19 / (download) - annotate - [select for diffs], Sat Nov 18 20:52:14 2006 UTC (17 years, 3 months ago) by elad
Branch: MAIN
Changes since 1.18: +2 -2 lines
Diff to previous 1.18 (colored)

Properly initialize device scope requests.

Revision 1.18 / (download) - annotate - [select for diffs], Sat Nov 4 21:24:20 2006 UTC (17 years, 4 months ago) by elad
Branch: MAIN
Changes since 1.17: +2 -1 lines
Diff to previous 1.17 (colored)

forward decl struct vnode

Revision 1.17 / (download) - annotate - [select for diffs], Sat Nov 4 09:30:00 2006 UTC (17 years, 4 months ago) by elad
Branch: MAIN
Changes since 1.16: +16 -8 lines
Diff to previous 1.16 (colored)

Change KAUTH_SYSTEM_RAWIO to KAUTH_DEVICE_RAWIO_SPEC (moving the raw i/o
requests to the device scope) and add KAUTH_DEVICE_RAWIO_PASSTHRU.

Expose iskmemdev() through sys/conf.h.

okay yamt@

Revision 1.16 / (download) - annotate - [select for diffs], Wed Oct 25 22:49:23 2006 UTC (17 years, 4 months ago) by elad
Branch: MAIN
Changes since 1.15: +2 -2 lines
Diff to previous 1.15 (colored)

Introduce KAUTH_REQ_NETWORK_SOCKET_OPEN, to check if opening a socket is
allowed. It takes three int * arguments indicating domain, type, and
protocol. Replace previous KAUTH_REQ_NETWORK_SOCKET_RAWSOCK with it (but
keep it still).

Places that used to explicitly check for privileged context now don't
need it anymore, so I replaced these with XXX comment indiacting it for
future reference.

Documented and updated examples as well.

Revision 1.15 / (download) - annotate - [select for diffs], Sun Oct 22 13:07:15 2006 UTC (17 years, 4 months ago) by pooka
Branch: MAIN
Changes since 1.14: +3 -2 lines
Diff to previous 1.14 (colored)

kauth_cred_uucvt() -> kauth_uucred_to_cred(), introduce kauth_cred_to_uucred()

per tech-kern proposal

Revision 1.6.4.1 / (download) - annotate - [select for diffs], Sun Oct 22 06:07:47 2006 UTC (17 years, 4 months ago) by yamt
Branch: yamt-splraiseipl
Changes since 1.6: +23 -11 lines
Diff to previous 1.6 (colored)

sync with head

Revision 1.14 / (download) - annotate - [select for diffs], Fri Oct 20 23:10:33 2006 UTC (17 years, 4 months ago) by elad
Branch: MAIN
CVS Tags: yamt-splraiseipl-base2
Changes since 1.13: +6 -1 lines
Diff to previous 1.13 (colored)

Introduce a new action on the network scope, KAUTH_NETWORK_INTERFACE,
used to manage network interfaces.

Add four sub-actions to fulfill generic needs for now, until a more
carefully defined usage of the interface is documented: get, set,
getpriv, and setpriv.

Revision 1.13 / (download) - annotate - [select for diffs], Fri Oct 20 22:02:54 2006 UTC (17 years, 4 months ago) by elad
Branch: MAIN
Changes since 1.12: +2 -1 lines
Diff to previous 1.12 (colored)

Add a new ALTQ kauth(9) request, KAUTH_REQ_NETWORK_ALTQ_JOBS.

Revision 1.12 / (download) - annotate - [select for diffs], Fri Oct 13 15:39:18 2006 UTC (17 years, 4 months ago) by elad
Branch: MAIN
Changes since 1.11: +3 -2 lines
Diff to previous 1.11 (colored)

Introduce KAUTH_REQ_NETWORK_SOCKET_CANSEE. Since we're not gonna be having
credentials on sockets, at least not anytime soon, this is a way to check
if we can "look" at a socket. Later on when (and if) we do have socket
credentials, the interface usage remains the same because we pass the
socket.

This also fixes sysctl for inet/inet6 pcblist.

Revision 1.11 / (download) - annotate - [select for diffs], Sun Oct 1 09:06:41 2006 UTC (17 years, 5 months ago) by elad
Branch: MAIN
Changes since 1.10: +2 -1 lines
Diff to previous 1.10 (colored)

Add 'struct tty;', pointed out by dogcow@, thanks!

Revision 1.10 / (download) - annotate - [select for diffs], Sat Sep 30 20:05:58 2006 UTC (17 years, 5 months ago) by elad
Branch: MAIN
Changes since 1.9: +11 -1 lines
Diff to previous 1.9 (colored)

Implement the "device" scope.

It uses an authorization wrapper per device class on the system to
ensure type-safety.

For now, it supports only terminal (TTY) devices, and has two actions
for them: "open terminal" and "privileged set". Sample usage has been
added to i386 and hp300 code for reference.

Update documentation.

Revision 1.9 / (download) - annotate - [select for diffs], Tue Sep 19 22:03:11 2006 UTC (17 years, 5 months ago) by elad
Branch: MAIN
Changes since 1.8: +2 -2 lines
Diff to previous 1.8 (colored)

Lose (void *) casts on the machdep scope authorization wrapper. Update
documentation.

Revision 1.8 / (download) - annotate - [select for diffs], Tue Sep 19 21:49:25 2006 UTC (17 years, 5 months ago) by elad
Branch: MAIN
Changes since 1.7: +2 -8 lines
Diff to previous 1.7 (colored)

Default callbacks? what are those? remove unused prototypes.

Revision 1.7 / (download) - annotate - [select for diffs], Tue Sep 19 21:42:30 2006 UTC (17 years, 5 months ago) by elad
Branch: MAIN
Changes since 1.6: +2 -2 lines
Diff to previous 1.6 (colored)

Remove ugly (void *) casts from network scope authorization wrapper and
calls to it.

While here, adapt code for system scope listeners to avoid some more
casts (forgotten in previous run).

Update documentation.

Revision 1.2.4.5 / (download) - annotate - [select for diffs], Thu Sep 14 12:32:00 2006 UTC (17 years, 5 months ago) by yamt
Branch: yamt-pdpolicy
Changes since 1.2.4.4: +125 -7 lines
Diff to previous 1.2.4.4 (colored) to branchpoint 1.2 (colored) next main 1.3 (colored)

sync with head.

Revision 1.6.2.2 / (download) - annotate - [select for diffs], Sat Sep 9 02:59:42 2006 UTC (17 years, 5 months ago) by rpaulo
Branch: rpaulo-netinet-merge-pcb
Changes since 1.6.2.1: +141 -0 lines
Diff to previous 1.6.2.1 (colored) to branchpoint 1.6 (colored) next main 1.7 (colored)

sync with head

Revision 1.6.2.1, Fri Sep 8 20:58:58 2006 UTC (17 years, 5 months ago) by rpaulo
Branch: rpaulo-netinet-merge-pcb
Changes since 1.6: +0 -259 lines
FILE REMOVED

file kauth.h was added on branch rpaulo-netinet-merge-pcb on 2006-09-09 02:59:42 +0000

Revision 1.6 / (download) - annotate - [select for diffs], Fri Sep 8 20:58:58 2006 UTC (17 years, 5 months ago) by elad
Branch: MAIN
CVS Tags: yamt-splraiseipl-base, yamt-pdpolicy-base9
Branch point for: yamt-splraiseipl, rpaulo-netinet-merge-pcb
Changes since 1.5: +125 -7 lines
Diff to previous 1.5 (colored)

First take at security model abstraction.

- Add a few scopes to the kernel: system, network, and machdep.

- Add a few more actions/sub-actions (requests), and start using them as
  opposed to the KAUTH_GENERIC_ISSUSER place-holders.

- Introduce a basic set of listeners that implement our "traditional"
  security model, called "bsd44". This is the default (and only) model we
  have at the moment.

- Update all relevant documentation.

- Add some code and docs to help folks who want to actually use this stuff:

  * There's a sample overlay model, sitting on-top of "bsd44", for
    fast experimenting with tweaking just a subset of an existing model.

    This is pretty cool because it's *really* straightforward to do stuff
    you had to use ugly hacks for until now...

  * And of course, documentation describing how to do the above for quick
    reference, including code samples.

All of these changes were tested for regressions using a Python-based
testsuite that will be (I hope) available soon via pkgsrc. Information
about the tests, and how to write new ones, can be found on:

	http://kauth.linbsd.org/kauthwiki

NOTE FOR DEVELOPERS: *PLEASE* don't add any code that does any of the
following:

  - Uses a KAUTH_GENERIC_ISSUSER kauth(9) request,
  - Checks 'securelevel' directly,
  - Checks a uid/gid directly.

(or if you feel you have to, contact me first)

This is still work in progress; It's far from being done, but now it'll
be a lot easier.

Relevant mailing list threads:

http://mail-index.netbsd.org/tech-security/2006/01/25/0011.html
http://mail-index.netbsd.org/tech-security/2006/03/24/0001.html
http://mail-index.netbsd.org/tech-security/2006/04/18/0000.html
http://mail-index.netbsd.org/tech-security/2006/05/15/0000.html
http://mail-index.netbsd.org/tech-security/2006/08/01/0000.html
http://mail-index.netbsd.org/tech-security/2006/08/25/0000.html

Many thanks to YAMAMOTO Takashi, Matt Thomas, and Christos Zoulas for help
stablizing kauth(9).

Full credit for the regression tests, making sure these changes didn't break
anything, goes to Matt Fleming and Jaime Fournier.

Happy birthday Randi! :)

Revision 1.2.4.4 / (download) - annotate - [select for diffs], Fri Aug 11 15:47:26 2006 UTC (17 years, 6 months ago) by yamt
Branch: yamt-pdpolicy
Changes since 1.2.4.3: +5 -4 lines
Diff to previous 1.2.4.3 (colored) to branchpoint 1.2 (colored)

sync with head

Revision 1.5 / (download) - annotate - [select for diffs], Mon Jul 17 14:37:20 2006 UTC (17 years, 7 months ago) by ad
Branch: MAIN
CVS Tags: yamt-pdpolicy-base8, yamt-pdpolicy-base7, rpaulo-netinet-merge-pcb-base, abandoned-netbsd-4-base, abandoned-netbsd-4
Branch point for: newlock2
Changes since 1.4: +4 -4 lines
Diff to previous 1.4 (colored)

- Only acquire cr_lock when changing cr_refcnt.
- When freeing, test the value of cr_refcnt from inside the lock perimiter.
- Change some uint16_t/uint32_t types to u_int.
- KASSERT(cr_refcnt > 0) in appropriate places.
- KASSERT(cr_refcnt == 1) when changing the credential.

Revision 1.4 / (download) - annotate - [select for diffs], Sun Jul 16 20:10:12 2006 UTC (17 years, 7 months ago) by elad
Branch: MAIN
Changes since 1.3: +2 -1 lines
Diff to previous 1.3 (colored)

add KAUTH_GENERIC_CANSEE, which is like the KAUTH_PROCESS_CANSEE, only
for two kauth_cred_t rather than kauth_cred_t and struct proc *.

advise against using it in the man-page; it should be used only in cases
where we either don't have an object-specific op or when we can't easily
use one.

Revision 1.2.4.3 / (download) - annotate - [select for diffs], Mon Jun 26 12:54:29 2006 UTC (17 years, 8 months ago) by yamt
Branch: yamt-pdpolicy
Changes since 1.2.4.2: +1 -2 lines
Diff to previous 1.2.4.2 (colored) to branchpoint 1.2 (colored)

sync with head.

Revision 1.3.6.2 / (download) - annotate - [select for diffs], Wed Jun 21 15:12:03 2006 UTC (17 years, 8 months ago) by yamt
Branch: yamt-lazymbuf
Changes since 1.3.6.1: +140 -0 lines
Diff to previous 1.3.6.1 (colored) to branchpoint 1.3 (colored)

sync with head.

Revision 1.2.2.1 / (download) - annotate - [select for diffs], Mon Jun 19 04:11:12 2006 UTC (17 years, 8 months ago) by chap
Branch: chap-midi
Changes since 1.2: +1 -2 lines
Diff to previous 1.2 (colored) next main 1.3 (colored)

Sync with head.

Revision 1.3.2.2 / (download) - annotate - [select for diffs], Thu Jun 1 22:39:26 2006 UTC (17 years, 9 months ago) by kardel
Branch: simonb-timecounters
CVS Tags: simonb-timcounters-final
Changes since 1.3.2.1: +140 -0 lines
Diff to previous 1.3.2.1 (colored) to branchpoint 1.3 (colored) next main 1.4 (colored)

Sync with head.

Revision 1.3.6.1, Sun May 28 06:49:27 2006 UTC (17 years, 9 months ago) by yamt
Branch: yamt-lazymbuf
Changes since 1.3: +0 -140 lines
FILE REMOVED

file kauth.h was added on branch yamt-lazymbuf on 2006-06-21 15:12:03 +0000

Revision 1.3.2.1, Sun May 28 06:49:27 2006 UTC (17 years, 9 months ago) by kardel
Branch: simonb-timecounters
Changes since 1.3: +0 -140 lines
FILE REMOVED

file kauth.h was added on branch simonb-timecounters on 2006-06-01 22:39:26 +0000

Revision 1.3 / (download) - annotate - [select for diffs], Sun May 28 06:49:27 2006 UTC (17 years, 9 months ago) by yamt
Branch: MAIN
CVS Tags: yamt-pdpolicy-base6, simonb-timecounters-base, gdamore-uart-base, gdamore-uart, chap-midi-nbase, chap-midi-base
Branch point for: yamt-lazymbuf, simonb-timecounters
Changes since 1.2: +0 -1 lines
Diff to previous 1.2 (colored)

remove kauth_cred_destroy, which isn't used anymore.  ok'ed by Elad Efrat.

Revision 1.2.6.2 / (download) - annotate - [select for diffs], Wed May 24 15:50:47 2006 UTC (17 years, 9 months ago) by tron
Branch: peter-altq
Changes since 1.2.6.1: +141 -0 lines
Diff to previous 1.2.6.1 (colored) to branchpoint 1.2 (colored) next main 1.3 (colored)

Merge 2006-05-24 NetBSD-current into the "peter-altq" branch.

Revision 1.2.4.2 / (download) - annotate - [select for diffs], Wed May 24 10:59:21 2006 UTC (17 years, 9 months ago) by yamt
Branch: yamt-pdpolicy
Changes since 1.2.4.1: +141 -0 lines
Diff to previous 1.2.4.1 (colored) to branchpoint 1.2 (colored)

sync with head.

Revision 1.2.6.1, Sun May 14 21:12:38 2006 UTC (17 years, 9 months ago) by tron
Branch: peter-altq
Changes since 1.2: +0 -141 lines
FILE REMOVED

file kauth.h was added on branch peter-altq on 2006-05-24 15:50:47 +0000

Revision 1.2.4.1, Sun May 14 21:12:38 2006 UTC (17 years, 9 months ago) by yamt
Branch: yamt-pdpolicy
Changes since 1.2: +0 -141 lines
FILE REMOVED

file kauth.h was added on branch yamt-pdpolicy on 2006-05-24 10:59:21 +0000

Revision 1.2 / (download) - annotate - [select for diffs], Sun May 14 21:12:38 2006 UTC (17 years, 9 months ago) by elad
Branch: MAIN
CVS Tags: yamt-pdpolicy-base5
Branch point for: yamt-pdpolicy, peter-altq, chap-midi
Changes since 1.1: +141 -0 lines
Diff to previous 1.1 (colored)

add kauth backend.

Revision 1.1.2.19 / (download) - annotate - [select for diffs], Sat May 6 23:32:33 2006 UTC (17 years, 10 months ago) by christos
Branch: elad-kernelauth
Changes since 1.1.2.18: +1 -2 lines
Diff to previous 1.1.2.18 (colored) to branchpoint 1.1 (colored) next main 1.2 (colored)

- Move kauth_cred_t declaration to <sys/types.h>
- Cleanup struct ucred; forward declarations that are unused.
- Don't include <sys/kauth.h> in any header, but include it in the c files
  that need it.

Approved by core.

Revision 1.1.2.18 / (download) - annotate - [select for diffs], Wed Apr 19 05:15:32 2006 UTC (17 years, 10 months ago) by elad
Branch: elad-kernelauth
Changes since 1.1.2.17: +0 -0 lines
Diff to previous 1.1.2.17 (colored) to branchpoint 1.1 (colored)

re-add kern_auth.c and kauth.h lost in commit storm

Revision 1.1.2.17, Wed Apr 19 04:36:01 2006 UTC (17 years, 10 months ago) by elad
Branch: elad-kernelauth
Changes since 1.1.2.16: +1 -1 lines
FILE REMOVED

sync with head.

Revision 1.1.2.16 / (download) - annotate - [select for diffs], Tue Apr 18 14:03:17 2006 UTC (17 years, 10 months ago) by elad
Branch: elad-kernelauth
Changes since 1.1.2.15: +2 -1 lines
Diff to previous 1.1.2.15 (colored) to branchpoint 1.1 (colored)

need struct proc.

Revision 1.1.2.15 / (download) - annotate - [select for diffs], Tue Mar 14 02:49:15 2006 UTC (17 years, 11 months ago) by elad
Branch: elad-kernelauth
Changes since 1.1.2.14: +3 -3 lines
Diff to previous 1.1.2.14 (colored) to branchpoint 1.1 (colored)

Some cleanup...

Add kauth_cred_[sg]etgroups(), and remove kauth_cred_{add,del}group().
Don't sort the groups when adding them; the caller should do this for
us. This maintains same behavior.
And since we're no longer sorting our groups, revert back to the simple
linear search, as suggested by yamt@.

Revision 1.1.2.14 / (download) - annotate - [select for diffs], Sun Mar 12 17:15:15 2006 UTC (17 years, 11 months ago) by elad
Branch: elad-kernelauth
Changes since 1.1.2.13: +3 -3 lines
Diff to previous 1.1.2.13 (colored) to branchpoint 1.1 (colored)

Rename kauth_cred_compare() to kauth_cred_uucmp(), and kauth_cred_convert()
to kauth_cred_uucvt(). This makes it clearer that we're working on struct
uucred.

Inspired by comments from yamt@.

Revision 1.1.2.13 / (download) - annotate - [select for diffs], Sun Mar 12 00:26:56 2006 UTC (17 years, 11 months ago) by elad
Branch: elad-kernelauth
Changes since 1.1.2.12: +1 -3 lines
Diff to previous 1.1.2.12 (colored) to branchpoint 1.1 (colored)

Make kauth_cred_uidmatch() static.

Revision 1.1.2.12 / (download) - annotate - [select for diffs], Sun Mar 12 00:10:18 2006 UTC (17 years, 11 months ago) by elad
Branch: elad-kernelauth
Changes since 1.1.2.11: +1 -2 lines
Diff to previous 1.1.2.11 (colored) to branchpoint 1.1 (colored)

We no longer need kauth_cred_memcmp().

Revision 1.1.2.11 / (download) - annotate - [select for diffs], Sat Mar 11 04:55:29 2006 UTC (17 years, 11 months ago) by elad
Branch: elad-kernelauth
Changes since 1.1.2.10: +2 -2 lines
Diff to previous 1.1.2.10 (colored) to branchpoint 1.1 (colored)

kauth_cred_groupmember() -> kauth_cred_ismember_gid(), as requested by
thorpej@ to conform to the Darwin KPI.

Revision 1.1.2.10 / (download) - annotate - [select for diffs], Sat Mar 11 03:21:16 2006 UTC (17 years, 11 months ago) by elad
Branch: elad-kernelauth
Changes since 1.1.2.9: +1 -3 lines
Diff to previous 1.1.2.9 (colored) to branchpoint 1.1 (colored)

Remove no longer used kauth_cred_setngroups().

Revision 1.1.2.9 / (download) - annotate - [select for diffs], Fri Mar 10 22:50:05 2006 UTC (17 years, 11 months ago) by elad
Branch: elad-kernelauth
Changes since 1.1.2.8: +1 -2 lines
Diff to previous 1.1.2.8 (colored) to branchpoint 1.1 (colored)

Get rid of kauth_cred_zero().

Revision 1.1.2.8 / (download) - annotate - [select for diffs], Fri Mar 10 19:11:51 2006 UTC (17 years, 11 months ago) by elad
Branch: elad-kernelauth
Changes since 1.1.2.7: +1 -2 lines
Diff to previous 1.1.2.7 (colored) to branchpoint 1.1 (colored)

Some cleanup.

kauth_cred_setrefcnt() was only called after kauth_cred_convert() in NFS
code to convert a struct uucred to kauth_cred_t. Since there's no valid
use for such a function, make kauth_cred_convert() set the reference
count to 1 and eliminate the need for kauth_cred_setrefcnt() entirely.

Motivated by comments from yamt@ and thorpej@.

Revision 1.1.2.7 / (download) - annotate - [select for diffs], Fri Mar 10 13:21:54 2006 UTC (17 years, 11 months ago) by elad
Branch: elad-kernelauth
Changes since 1.1.2.6: +2 -2 lines
Diff to previous 1.1.2.6 (colored) to branchpoint 1.1 (colored)

generic_authorize() -> kauth_authorize_generic().

Revision 1.1.2.6 / (download) - annotate - [select for diffs], Fri Mar 10 11:53:55 2006 UTC (17 years, 11 months ago) by elad
Branch: elad-kernelauth
Changes since 1.1.2.5: +3 -3 lines
Diff to previous 1.1.2.5 (colored) to branchpoint 1.1 (colored)

process_authorize() -> kauth_authorize_process(), to be closer to the
original and as requested by yamt@ and thorpej@.

Revision 1.1.2.5 / (download) - annotate - [select for diffs], Thu Mar 9 17:07:10 2006 UTC (18 years ago) by elad
Branch: elad-kernelauth
Changes since 1.1.2.4: +1 -5 lines
Diff to previous 1.1.2.4 (colored) to branchpoint 1.1 (colored)

Namespace cleanup, as requested by yamt@.

Revision 1.1.2.4 / (download) - annotate - [select for diffs], Wed Mar 8 17:31:56 2006 UTC (18 years ago) by elad
Branch: elad-kernelauth
Changes since 1.1.2.3: +3 -1 lines
Diff to previous 1.1.2.3 (colored) to branchpoint 1.1 (colored)

Implement kauth_cred_get() as suggested by thorpej@.

Revision 1.1.2.3 / (download) - annotate - [select for diffs], Wed Mar 8 17:17:46 2006 UTC (18 years ago) by elad
Branch: elad-kernelauth
Changes since 1.1.2.2: +6 -1 lines
Diff to previous 1.1.2.2 (colored) to branchpoint 1.1 (colored)

Mention TN2127 and provide a URL.

Requested by thorpej@.

Revision 1.1.2.2 / (download) - annotate - [select for diffs], Wed Mar 8 06:55:49 2006 UTC (18 years ago) by elad
Branch: elad-kernelauth
Changes since 1.1.2.1: +3 -3 lines
Diff to previous 1.1.2.1 (colored) to branchpoint 1.1 (colored)

Use "org.netbsd.kauth.foo" for scopes as the Apple TN suggests.
Pointed out by yamt@.

Revision 1.1.2.1 / (download) - annotate - [select for diffs], Tue Mar 7 23:23:56 2006 UTC (18 years ago) by elad
Branch: elad-kernelauth
Changes since 1.1: +145 -0 lines
Diff to previous 1.1 (colored)

Add kernel authorization routines.

Revision 1.1, Tue Mar 7 23:23:56 2006 UTC (18 years ago) by elad
Branch: MAIN
CVS Tags: yamt-pdpolicy-base4, yamt-pdpolicy-base3, yamt-pdpolicy-base2, elad-kernelauth-base
Branch point for: elad-kernelauth
FILE REMOVED

file kauth.h was initially added on branch elad-kernelauth.

This form allows you to request diff's between any two revisions of a file. You may select a symbolic revision name using the selection box or you may type in a numeric name using the type-in text box.




CVSweb <webmaster@jp.NetBSD.org>