PERFORCE change 79860 for review

Robert Watson rwatson at FreeBSD.org
Sat Jul 9 19:07:25 GMT 2005


http://perforce.freebsd.org/chv.cgi?CH=79860

Change 79860 by rwatson at rwatson_zoo on 2005/07/09 19:07:09

	Allow SEBSD audit, enforcement twiddle to be frobbed using boot-time
	tunables and kernel environment, not just sysctl.

Affected files ...

.. //depot/projects/trustedbsd/sebsd/sys/security/sebsd/sebsd_sysctl.c#9 edit

Differences ...

==== //depot/projects/trustedbsd/sebsd/sys/security/sebsd/sebsd_sysctl.c#9 (text+ko) ====

@@ -352,5 +352,7 @@
 	   "SEBSD access vector decision query");
 SYSCTL_PROC(_security_mac_sebsd, OID_AUTO, auditing, CTLTYPE_INT | CTLFLAG_RW,
 	   NULL, 0, sysctl_sebsd_auditing, "I", "SEBSD avc auditing");
+TUNABLE_INT("security.mac.sebsd.auditing", &selinux_auditing);
 SYSCTL_PROC(_security_mac_sebsd, OID_AUTO, enforcing, CTLTYPE_INT | CTLFLAG_RW,
 	   NULL, 0, sysctl_sebsd_enforcing, "I", "SEBSD avc enforcement");
+TUNABLE_INT("security.mac.sebsd.enforcing", &selinux_enforcing);


More information about the p4-projects mailing list