68,7 → 68,7 |
&mac_settime_enabled, 0, "Enforce settime policy"); |
TUNABLE_INT("security.mac.settime.enabled", &mac_settime_enabled); |
|
static MALLOC_DEFINE(M_SETTIME, "settime rule", "Rules for mac_settime"); |
MALLOC_DEFINE(M_SETTIME, "settime rule", "Rules for mac_settime"); |
|
#define MAC_RULE_STRING_LEN 10240 |
|
112,7 → 112,9 |
|
while ((rule = TAILQ_FIRST(head)) != NULL) { |
TAILQ_REMOVE(head, rule, r_entries); |
if (rule->id != NULL) |
free(rule->id, M_SETTIME); |
if (rule->jailid != NULL) |
free(rule->jailid, M_SETTIME); |
free(rule, M_SETTIME); |
} |
242,9 → 244,6 |
enum parse_state state; |
|
r = malloc(sizeof(*r), M_SETTIME, M_ZERO | M_WAITOK); |
r->id = NULL; /* some arch where (pointer)0 != (binary)0 ? */ |
r->jailid = NULL; |
|
error = 0; |
not = 0; |
state = STATE_BEFORE_ACTION; |