| #
241bfedf |
| 13-Sep-2019 |
Alex Wilson |
11842 Want audit events for auditon(A_SETPMASK) and friends
Reviewed by: John Levon <john.levon@joyent.com>
Reviewed by: Andy Fiddaman <andy@omniosce.org>
Approved by: Robert Mustacchi <r
11842 Want audit events for auditon(A_SETPMASK) and friends
Reviewed by: John Levon <john.levon@joyent.com>
Reviewed by: Andy Fiddaman <andy@omniosce.org>
Approved by: Robert Mustacchi <rm@fingolfin.org>
show more ...
|
| #
0f48f68d |
| 20-Jan-2019 |
Toomas Soome |
10758 c2audit: NULL pointer errors
Reviewed by: Andy Stormont <astormont@racktopsystems.com>
Reviewed by: Robert Mustacchi <rm@joyent.com>
Approved by: Dan McDonald <danmcd@joyent.com>
|
| #
15c07adc |
| 14-Jan-2019 |
John Levon |
10081 smatch indenting fixes for usr/src/uts
Reviewed by: Toomas Soome <tsoome@me.com>
Reviewed by: Peter Tribble <peter.tribble@gmail.com>
Reviewed by: Andy Fiddaman <andy@omniosce.org>
10081 smatch indenting fixes for usr/src/uts
Reviewed by: Toomas Soome <tsoome@me.com>
Reviewed by: Peter Tribble <peter.tribble@gmail.com>
Reviewed by: Andy Fiddaman <andy@omniosce.org>
Approved by: Robert Mustacchi <rm@joyent.com>
show more ...
|
| #
d2a70789 |
| 16-Apr-2014 |
Richard Lowe |
7029 want per-process exploit mitigation features (secflags)
7030 want basic address space layout randomization (ASLR)
7031 noexec_user_stack should be a security-flag
7032 want a means t
7029 want per-process exploit mitigation features (secflags)
7030 want basic address space layout randomization (ASLR)
7031 noexec_user_stack should be a security-flag
7032 want a means to forbid mappings around NULL
Reviewed by: Robert Mustacchi <rm@joyent.com>
Reviewed by: Josef 'Jeff' Sipek <jeffpc@josefsipek.net>
Reviewed by: Patrick Mooney <pmooney@joyent.com>
Approved by: Dan McDonald <danmcd@omniti.com>
show more ...
|
| #
89b43686 |
| 15-Sep-2011 |
Bayard Bell |
1073 migrate kernel modules from ancient _depends_on to true ELF dependencies
Reviewed by: Adam Leventhal <ahl@delphix.com>
Reviewed by: Garrett D'Amore <garrett@nexenta.com>
Approved by:
1073 migrate kernel modules from ancient _depends_on to true ELF dependencies
Reviewed by: Adam Leventhal <ahl@delphix.com>
Reviewed by: Garrett D'Amore <garrett@nexenta.com>
Approved by: Richard Lowe <richlowe@richlowe.net>
show more ...
|
| #
6a634c9d |
| 19-Aug-2010 |
Richard Lowe |
merge with onnv_147
Reviewed by: garrett@nexenta.com
Approved by: garrett@nexenta.com
|
| #
aeba2189 |
| 16-Aug-2010 |
Marek Pospisil |
6925149 auf_accept() may reference unintialized variable 'fd'
|
| #
f8994074 |
| 27-Jul-2010 |
Jan Friedel |
PSARC/2009/636 Obsolete getacinfo(3bsm)
PSARC/2009/642 audit_control(4) EOL and removal
PSARC/2010/218 Audit subsystem Rights Profiles
PSARC/2010/220 svc:/system/auditset service
6875
PSARC/2009/636 Obsolete getacinfo(3bsm)
PSARC/2009/642 audit_control(4) EOL and removal
PSARC/2010/218 Audit subsystem Rights Profiles
PSARC/2010/220 svc:/system/auditset service
6875456 Solaris Audit configuration in SMF - phase 2 (PSARC/2009/636, PSARC/2009/642)
6942035 audit_binfile(5) leaves unfinished audit logs.
6942041 auditd(1) says "auditd refreshed" on startup.
6943275 audit_remote(5) leaks memory on audit service refresh
6955077 adt_get_mask_from_user() should regard _SC_GETPW_R_SIZE_MAX
6955117 $SRC/lib/libbsm/common/audit_ftpd.c shouldn't hardcode the lenght of usernames (8)
6956169 adt_audit_state() returns non-boolean values
--HG--
rename : usr/src/cmd/auditconfig/auditconfig_impl.h => usr/src/lib/libbsm/common/audit_policy.h
rename : usr/src/cmd/auditconfig/audit_scf.c => usr/src/lib/libbsm/common/audit_scf.c
rename : usr/src/cmd/auditconfig/audit_scf.h => usr/src/lib/libbsm/common/audit_scf.h
show more ...
|
| #
c4d3e299 |
| 24-Jun-2010 |
Brent Paulson |
6949768 fsattr(5) auditing can incorrectly record some open(2) paths as extended attribute paths
6951837 truss(1) doesn't format the output of openat(2) calls correctly in snv_135 and later
6
6949768 fsattr(5) auditing can incorrectly record some open(2) paths as extended attribute paths
6951837 truss(1) doesn't format the output of openat(2) calls correctly in snv_135 and later
6951840 openat(2) doesn't ignore the fd argument when path argument is absolute
6952651 pathnames can be excluded from audit records for extended attribute syscalls in some scenarios
6958299 getattrat(3C) and setattrat(3C) generate audit records with duplicate pathnames
6959020 auditing of getattrat(3C) and setattrat(3C) doesn't handle absolute pathnames correctly
show more ...
|
| #
3e95bd4a |
| 18-Jun-2010 |
Anders Persson |
PSARC/2009/590 Socket Filter Framework
6939085 Socket Filter Framework
6802067 connect_failed kernel socket callback is not triggered
6776450 time spent in tcp_close could be reduced/defe
PSARC/2009/590 Socket Filter Framework
6939085 Socket Filter Framework
6802067 connect_failed kernel socket callback is not triggered
6776450 time spent in tcp_close could be reduced/deferred to a worker thread
6828586 assertion failed: family == 26, file: ../../common/fs/sockfs/socksyscalls.c, line: 1608
6802078 kernel socket 'newconn' callback is passing rcv queue size as an argument
show more ...
|
| #
4a0fa546 |
| 14-Jun-2010 |
Marek Pospisil |
6625545 auditd Generates Plethora Events due to Missing System Files (AUE_OPEN_R, AUE_OPENAT_R, AUE_EXECVE)
6631622 The tad_ctrl (PAD_) stuff is a mess
|
| #
794f0adb |
| 08-Jul-2010 |
Roger A. Faulkner |
PSARC 2010/235 POSIX 1003.1-2008 *at(2) syscalls
6910251 need support for all POSIX.1-2008 *at(2) syscalls
6964835 mknod(2) auditing omits the pathname for invalid arguments
|
| #
51b433b7 |
| 16-Mar-2010 |
Marek Pospisil |
6890083 fcntl(2) should generate an additional argument token when F_SETFL is used
|
| #
cb49a9fd |
| 08-Mar-2010 |
Marek Pospisil |
6545618 exit audit records could include process return value
|
| #
005d3feb |
| 05-Mar-2010 |
Marek Pospisil |
PSARC/2009/354 Always on / no reboot Solaris Audit
6192139 Solaris auditing should be able to start collecting audit records without a reboot
|
| #
8fd04b83 |
| 01-Mar-2010 |
Roger A. Faulkner |
PSARC 2009/657 delete obsolete system call traps
6906485 delete obsolete system call traps
--HG--
rename : usr/src/cmd/truss/xstat.c => usr/src/cmd/truss/stat.c
rename : usr/src/
PSARC 2009/657 delete obsolete system call traps
6906485 delete obsolete system call traps
--HG--
rename : usr/src/cmd/truss/xstat.c => usr/src/cmd/truss/stat.c
rename : usr/src/lib/libc/port/gen/dup2.c => usr/src/lib/libc/port/gen/dup.c
rename : usr/src/lib/libc/port/sys/libc_fcntl.c => usr/src/lib/libc/port/sys/fcntl.c
rename : usr/src/lib/libc/port/sys/libc_open.c => usr/src/lib/libc/port/sys/open.c
show more ...
|
| #
ddc42f88 |
| 26-Nov-2009 |
Marek Pospisil |
6898247 The definition BSM_AUDITON is never used.
|
| #
b2b3ca14 |
| 16-Jun-2009 |
Sumanth Naropanth |
PSARC/2009/284 faccessat(2) - determine accessibility of a file using file descriptors
6536147 accessat() should become a public interface after an agreement is reached on the function name
|
| #
45a9a7b1 |
| 20-Mar-2009 |
Jan Friedel |
4987752 setpgrp(2) audit record seems to show failure. (fix lint)
|
| #
4be8c573 |
| 19-Mar-2009 |
Jan Friedel |
4987752 setpgrp(2) audit record seems to show failure.
|
| #
ebbb0311 |
| 19-Mar-2009 |
Jan Friedel |
6757391 c2audit incorrectly interprets acl(2)/ACE_GETACL as acl(2)/SETACL.
|
| #
f158b2df |
| 19-Mar-2009 |
Jan Friedel |
6785167 audit_event.c:aus_msgsys() and audit_event.c:aus_semsys() could be optimized.
|
| #
469aa27f |
| 18-Mar-2009 |
Jan Friedel |
6412948 There's cruft in the libbsm files that needs to be removed.
|
| #
8350182d |
| 18-Mar-2009 |
Jan Friedel |
6753388 AUE_PORTFS should really be PORTFS_ASSOCIATE and PORTFS_DISSOCIATE
|
| #
7e309bc2 |
| 18-Mar-2009 |
Jan Friedel |
6753025 port_associate_fop() generates double path/attribute token into the AUE_PORTFS audit record.
|