| Age | Commit message (Collapse) | Author | 
|---|
|  | Improve naming to be less confusing
Signed-off-by: Ian Moffett <ian@osmora.org> | 
|  | Signed-off-by: Ian Moffett <ian@osmora.org> | 
|  | Signed-off-by: Ian Moffett <ian@osmora.org> | 
|  | The concept of resource borders is mostly used for resources that can
easily be mapped into memory, synced and contain attributes. However,
some things (e.g., a network resource, keyboard input, etc) may not be
great with raw memory mappings. This commit mitigates this problem.
Signed-off-by: Ian Moffett <ian@osmora.org> | 
|  | This commit introduces the system call for mounting filesystems. As of
now, only the fstype and target params are supported
Signed-off-by: Ian Moffett <ian@osmora.org> | 
|  | Introduce a feature where a program with the correct rights may get
information about a MAC object
Signed-off-by: Ian Moffett <ian@osmora.org> | 
|  | Signed-off-by: Ian Moffett <ian@osmora.org> | 
|  | Signed-off-by: Ian Moffett <ian@osmora.org> | 
|  | This commit introduces initial support for mandatory access control. As
one may recall, L5 follows "everything is memory". In order to interact
with a resource, a process must request it from the kernel in the form
of a (sometimes) syncable memory buffer.
Each resource as well as processes have an access level, if a process
attempts to request a resource with a higher access level than it, the
request is rejected by the kernel. However, if a process has a greater
than or equal access level as a resource, the request can be granted.
Signed-off-by: Ian Moffett <ian@osmora.org> | 
|  | Here we add a write(2) stub and add it to the UNIX syscall interface. We
also move the UNIX syscall numbers into compat/unix/syscall.h
Signed-off-by: Ian Moffett <ian@osmora.org> | 
|  | Signed-off-by: Ian Moffett <ian@osmora.org> |