From owner-cvs-all@FreeBSD.ORG  Wed Dec 22 09:39:08 2004
Return-Path: <owner-cvs-all@FreeBSD.ORG>
Delivered-To: cvs-all@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id CD43916A4CE; Wed, 22 Dec 2004 09:39:08 +0000 (GMT)
Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id A746C43D41; Wed, 22 Dec 2004 09:39:08 +0000 (GMT)
	(envelope-from rwatson@FreeBSD.org)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.13.1/8.13.1) with ESMTP id iBM9d8LV032114;
	Wed, 22 Dec 2004 09:39:08 GMT
	(envelope-from rwatson@repoman.freebsd.org)
Received: (from rwatson@localhost)
	by repoman.freebsd.org (8.13.1/8.13.1/Submit) id iBM9d8FB032113;
	Wed, 22 Dec 2004 09:39:08 GMT
	(envelope-from rwatson)
Message-Id: <200412220939.iBM9d8FB032113@repoman.freebsd.org>
From: Robert Watson <rwatson@FreeBSD.org>
Date: Wed, 22 Dec 2004 09:39:08 +0000 (UTC)
To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org,
	cvs-all@FreeBSD.org
X-FreeBSD-CVS-Branch: RELENG_5
Subject: cvs commit: src/sys/security/mac_portacl mac_portacl.c
X-BeenThere: cvs-all@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: CVS commit messages for the entire tree <cvs-all.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-all>,
	<mailto:cvs-all-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-all>
List-Post: <mailto:cvs-all@freebsd.org>
List-Help: <mailto:cvs-all-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-all>,
	<mailto:cvs-all-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 22 Dec 2004 09:39:09 -0000

rwatson     2004-12-22 09:39:08 UTC

  FreeBSD src repository

  Modified files:        (Branch: RELENG_5)
    sys/security/mac_portacl mac_portacl.c 
  Log:
  Merge mac_portacl.c:1.7 from HEAD to RELENG_5:
  
    date: 2004/12/08 11:46:44;  author: rwatson;  state: Exp;  lines: +23 -0
    Add a new sysctl/tunable to mac_portacl:
  
        security.mac.portacl.autoport_exempt
  
    This sysctl exempts to bind port '0' as long as IP_PORTRANGELOW hasn't
    been set on the socket.  This is quite useful as it allows applications
    to use automatic binding without adding overly broad rules for the
    binding of port 0.  This sysctl defaults to enabled.
  
    This is a slight variation on the patch submitted by the contributor.
  
    MFC after:      2 weeks
    Submitted by:   Michal Mertl <mime at traveller dot cz>
  
  Revision  Changes    Path
  1.5.2.2   +23 -0     src/sys/security/mac_portacl/mac_portacl.c