From owner-cvs-src@FreeBSD.ORG Wed Dec 8 11:46:45 2004 Return-Path: Delivered-To: cvs-src@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 30CA116A4CE; Wed, 8 Dec 2004 11:46:45 +0000 (GMT) Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1DCC243D2D; Wed, 8 Dec 2004 11:46:45 +0000 (GMT) (envelope-from rwatson@FreeBSD.org) Received: from repoman.freebsd.org (localhost [127.0.0.1]) by repoman.freebsd.org (8.13.1/8.13.1) with ESMTP id iB8BkjxR058071; Wed, 8 Dec 2004 11:46:45 GMT (envelope-from rwatson@repoman.freebsd.org) Received: (from rwatson@localhost) by repoman.freebsd.org (8.13.1/8.13.1/Submit) id iB8BkiAm058070; Wed, 8 Dec 2004 11:46:44 GMT (envelope-from rwatson) Message-Id: <200412081146.iB8BkiAm058070@repoman.freebsd.org> From: Robert Watson Date: Wed, 8 Dec 2004 11:46:44 +0000 (UTC) To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org X-FreeBSD-CVS-Branch: HEAD Subject: cvs commit: src/sys/security/mac_portacl mac_portacl.c X-BeenThere: cvs-src@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: CVS commit messages for the src tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Dec 2004 11:46:45 -0000 rwatson 2004-12-08 11:46:44 UTC FreeBSD src repository Modified files: sys/security/mac_portacl mac_portacl.c Log: Add a new sysctl/tunable to mac_portacl: security.mac.portacl.autoport_exempt This sysctl exempts to bind port '0' as long as IP_PORTRANGELOW hasn't been set on the socket. This is quite useful as it allows applications to use automatic binding without adding overly broad rules for the binding of port 0. This sysctl defaults to enabled. This is a slight variation on the patch submitted by the contributor. MFC after: 2 weeks Submitted by: Michal Mertl Revision Changes Path 1.7 +23 -0 src/sys/security/mac_portacl/mac_portacl.c