head	1.3;
access;
symbols
	RELENG_8_4:1.3.0.2
	RELENG_9_1_0_RELEASE:1.2
	RELENG_9_1:1.2.0.16
	RELENG_9_1_BP:1.2
	RELENG_8_3_0_RELEASE:1.2
	RELENG_8_3:1.2.0.14
	RELENG_8_3_BP:1.2
	RELENG_9_0_0_RELEASE:1.2
	RELENG_9_0:1.2.0.12
	RELENG_9_0_BP:1.2
	RELENG_9:1.2.0.10
	RELENG_9_BP:1.2
	RELENG_7_4_0_RELEASE:1.1.1.1
	RELENG_8_2_0_RELEASE:1.2
	RELENG_7_4:1.1.1.1.0.14
	RELENG_7_4_BP:1.1.1.1
	RELENG_8_2:1.2.0.8
	RELENG_8_2_BP:1.2
	RELENG_8_1_0_RELEASE:1.2
	RELENG_8_1:1.2.0.6
	RELENG_8_1_BP:1.2
	RELENG_7_3_0_RELEASE:1.1.1.1
	RELENG_7_3:1.1.1.1.0.12
	RELENG_7_3_BP:1.1.1.1
	RELENG_8_0_0_RELEASE:1.2
	RELENG_8_0:1.2.0.4
	RELENG_8_0_BP:1.2
	RELENG_8:1.2.0.2
	RELENG_8_BP:1.2
	RELENG_7_2_0_RELEASE:1.1.1.1
	RELENG_7_2:1.1.1.1.0.10
	RELENG_7_2_BP:1.1.1.1
	RELENG_7_1_0_RELEASE:1.1.1.1
	RELENG_6_4_0_RELEASE:1.1.1.1.2.1
	RELENG_7_1:1.1.1.1.0.8
	RELENG_7_1_BP:1.1.1.1
	RELENG_6_4:1.1.1.1.2.1.0.6
	RELENG_6_4_BP:1.1.1.1.2.1
	RELENG_7_0_0_RELEASE:1.1.1.1
	RELENG_6_3_0_RELEASE:1.1.1.1.2.1
	RELENG_7_0:1.1.1.1.0.6
	RELENG_7_0_BP:1.1.1.1
	RELENG_6_3:1.1.1.1.2.1.0.4
	RELENG_6_3_BP:1.1.1.1.2.1
	OPENBSM_1_0:1.1.1.1
	RELENG_7:1.1.1.1.0.4
	RELENG_7_BP:1.1.1.1
	OPENBSM_1_0_ALPHA_15:1.1.1.1
	OPENBSM_1_0_ALPHA_14:1.1.1.1
	RELENG_6_2_0_RELEASE:1.1.1.1.2.1
	RELENG_6_2:1.1.1.1.2.1.0.2
	RELENG_6_2_BP:1.1.1.1.2.1
	OPENBSM_1_0_ALPHA_12:1.1.1.1
	OPENBSM_1_0_ALPHA_11:1.1.1.1
	RELENG_6:1.1.1.1.0.2
	OPENBSM_1_0_ALPHA_10:1.1.1.1
	OPENBSM_1_0_ALPHA_9:1.1.1.1
	OPENBSM_1_0_ALPHA_7:1.1.1.1
	OPENBSM_1_0_ALPHA_6:1.1.1.1
	OPENBSM_1_0_ALPHA_5:1.1.1.1
	OPENBSM_1_0_ALPHA_4:1.1.1.1
	OPENBSM_1_0_ALPHA_3:1.1.1.1
	OPENBSM_1_0_ALPHA_2:1.1.1.1
	OPENBSM_1_0_ALPHA_1:1.1.1.1
	TrustedBSD:1.1.1;
locks; strict;
comment	@# @;


1.3
date	2012.12.01.12.01.17;	author svnexp;	state Exp;
branches
	1.3.2.1;
next	1.2;

1.2
date	2008.12.02.23.26.43;	author rwatson;	state Exp;
branches
	1.2.10.1;
next	1.1;

1.1
date	2006.01.31.19.40.10;	author rwatson;	state Exp;
branches
	1.1.1.1;
next	;

1.3.2.1
date	2012.12.01.12.01.17;	author svnexp;	state dead;
branches;
next	1.3.2.2;

1.3.2.2
date	2013.03.28.13.01.52;	author svnexp;	state Exp;
branches;
next	;

1.2.10.1
date	2012.12.18.09.35.26;	author svnexp;	state Exp;
branches;
next	;

1.1.1.1
date	2006.01.31.19.40.10;	author rwatson;	state Exp;
branches
	1.1.1.1.2.1;
next	;

1.1.1.1.2.1
date	2006.09.02.10.45.57;	author rwatson;	state Exp;
branches;
next	;


desc
@@


1.3
log
@## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/243750
## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
@
text
@OpenBSM Copyrights and Licensing

OpenBSM is covered by a number of copyrights, with licenses being either two
or three clause BSD licenses.  Individual file headers should be consulted
for copyrights on specific elements of the distribution.

The following copyright and license are asserted over the OpenBSM distribution
as a whole:

  Copyright (c) 2005-2012 Robert N.M. Watson
  All rights reserved.

  Redistribution and use in source and binary forms, with or without
  modification, are permitted provided that the following conditions
  are met:
  1. Redistributions of source code must retain the above copyright
     notice, this list of conditions and the following disclaimer.
  2. Redistributions in binary form must reproduce the above copyright
     notice, this list of conditions and the following disclaimer in the
     documentation and/or other materials provided with the distribution.

  THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
  ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
  ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
  FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
  DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
  OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
  LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
  OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
  SUCH DAMAGE.

The TrustedBSD Project would appreciate the contribution of fixes and
enhancements under an identical license in order to avoid potentially
confusing license proliferation.

$P4: //depot/projects/trustedbsd/openbsm/LICENSE#6 $
@


1.3.2.1
log
@file LICENSE was added on branch RELENG_8_4 on 2013-03-28 13:01:52 +0000
@
text
@d1 38
@


1.3.2.2
log
@## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/248810
## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
@
text
@a0 35
OpenBSM Copyrights and Licensing

OpenBSM is covered by a number of copyrights, with licenses being either two
or three clause BSD licenses.  Individual file headers should be consulted
for specific copyrights on specific components.  The TrustedBSD Project would
appreciate the contribution of fixes and enhancements under identical or
substantially similar licenses:

 * Copyright (c) <year> <copyright holder>
 * All rights reserved.
 *
 * <any additional comments or credits>
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer.
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 *
 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
 * SUCH DAMAGE.

$P4: //depot/projects/trustedbsd/openbsm/LICENSE#5 $
@


1.2
log
@SVN rev 185573 on 2008-12-02 23:26:43Z by rwatson

Merge OpenBSM 1.1 alpha 2 from the OpenBSM vendor branch to head, both
contrib/openbsm (svn merge) and sys/{bsm,security/audit} (manual merge).

- Add OpenBSM contrib tree to include paths for audit(8) and auditd(8).
- Merge support for new tokens, fixes to existing token generation to
  audit_bsm_token.c.
- Synchronize bsm includes and definitions.

OpenBSM history for imported revisions below for reference.

MFC after:      1 month
Sponsored by:   Apple Inc.
Obtained from:  TrustedBSD Project

--

OpenBSM 1.1 alpha 2

- Include files in OpenBSM are now broken out into two parts: library builds
  required solely for user space, and system includes, which may also be
  required for use in the kernels of systems integrating OpenBSM.  Submitted
  by Stacey Son.
- Configure option --with-native-includes allows forcing the use of native
  include for system includes, rather than the versions bundled with OpenBSM.
  This is intended specifically for platforms that ship OpenBSM, have adapted
  versions of the system includes in a kernel source tree, and will use the
  OpenBSM build infrastructure with an unmodified OpenBSM distribution,
  allowing the customized system includes to be used with the OpenBSM build.
  Submitted by Stacey Son.
- Various strcpy()'s/strcat()'s have been changed to strlcpy()'s/strlcat()'s
  or asprintf().  Added compat/strlcpy.h for Linux.
- Remove compatibility defines for old Darwin token constant names; now only
  BSM token names are provided and used.
- Add support for extended header tokens, which contain space for information
  on the host generating the record.
- Add support for setting extended host information in the kernel, which is
  used for setting host information in extended header tokens.  The
  audit_control file now supports a "host" parameter which can be used by
  auditd to set the information; if not present, the kernel parameters won't
  be set and auditd uses unextended headers for records that it generates.

OpenBSM 1.1 alpha 1

- Add option to auditreduce(1) which allows users to invert sense of
  matching, such that BSM records that do not match, are selected.
- Fix bug in audit_write() where we commit an incomplete record in the
  event there is an error writing the subject token.  This was submitted
  by Diego Giagio.
- Build support for Mac OS X 10.5.1 submitted by Eric Hall.
- Fix a bug which resulted in host XML attributes not being arguments so
  that const strings can be passed as arguments to tokens.  This patch was
  submitted by Xin LI.
- Modify the -m option so users can select more then one audit event.
- For Mac OS X, added Mach IPC support for audit trigger messages.
- Fixed a bug in getacna() which resulted in a locking problem on Mac OS X.
- Added LOG_PERROR flag to openlog when -d option is used with auditd.
- AUE events added for Mac OS X Leopard system calls.
@
text
@d5 1
a5 29
for specific copyrights on specific components.  The TrustedBSD Project would
appreciate the contribution of fixes and enhancements under identical or
substantially similar licenses:

 * Copyright (c) <year> <copyright holder>
 * All rights reserved.
 *
 * <any additional comments or credits>
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer.
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 *
 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
 * SUCH DAMAGE.
d7 32
a38 1
$P4: //depot/projects/trustedbsd/openbsm/LICENSE#5 $
@


1.2.10.1
log
@## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/244390
## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
## SVN ##
## SVN ## ------------------------------------------------------------------------
## SVN ## r244390 | rwatson | 2012-12-18 09:32:44 +0000 (Tue, 18 Dec 2012) | 39 lines
## SVN ##
## SVN ## Merge OpenBSM 1.2-alpha3 from head to stable/9, upgrading from the previous
## SVN ## OpenBSM 1.1p2:
## SVN ##
## SVN ## OpenBSM 1.2 alpha 3
## SVN ##
## SVN ## - Various minor tweaks to the auditdistd build to make it fit the FreeBSD
## SVN ##   build environment better.
## SVN ## - AUE_WAIT6 merged from FreeBSD 9.
## SVN ##
## SVN ## OpenBSM 1.2 alpha 2
## SVN ##
## SVN ## - auditdistd, a distributed audit trail management daemon, has now been
## SVN ##   merged.  This allows trail files to be securely and reliably synced from
## SVN ##   audited hosts to an audit server, and employs TLS encryption.  Where
## SVN ##   available, it uses Capsicum to sandbox the service.  This work was
## SVN ##   contributed by Pawel Jakub Dawidek under sponsorship from the FreeBSD
## SVN ##   Foundation.
## SVN ##
## SVN ## OpenBSM 1.2 alpha 1
## SVN ##
## SVN ## - Add Capsicum-related error numbers for FreeBSD: ENOTCAPABLE, ECAPMODE.
## SVN ## - Add Capsicum, process descriptor audit events for FreeBSD.
## SVN ## - Allow 0% minspace.
## SVN ## - Fixes from the clang static analyser.
## SVN ## - Fix expiration of trail files when the host parameter is used.
## SVN ## - Various typo fixes.
## SVN ## - Support for Solaris privilege and privilege set tokens.
## SVN ## - Documentation for getachost(), improvements for getacfilesz().
## SVN ## - Fix a directory descriptor leak that happened when audit trail partitions
## SVN ##   filled.
## SVN ## - Support for more Linux distributions with a partial contemporary endian.h.
## SVN ## - Improved escaping of XML-encapsulated BSM.
## SVN ## - A variety of minor documentation, style, and functional.
## SVN ##
## SVN ## A separate commit will merge build changes to enable auditdistd, etc.
## SVN ##
## SVN ## Obtained from:	TrustedBSD Project
## SVN ## Sponsored by:	The FreeBSD Foundation (auditdistd)
## SVN ##
## SVN ## ------------------------------------------------------------------------
## SVN ##
@
text
@d5 29
a33 1
for copyrights on specific elements of the distribution.
d35 1
a35 32
The following copyright and license are asserted over the OpenBSM distribution
as a whole:

  Copyright (c) 2005-2012 Robert N.M. Watson
  All rights reserved.

  Redistribution and use in source and binary forms, with or without
  modification, are permitted provided that the following conditions
  are met:
  1. Redistributions of source code must retain the above copyright
     notice, this list of conditions and the following disclaimer.
  2. Redistributions in binary form must reproduce the above copyright
     notice, this list of conditions and the following disclaimer in the
     documentation and/or other materials provided with the distribution.

  THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
  ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
  ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
  FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
  DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
  OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
  LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
  OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
  SUCH DAMAGE.

The TrustedBSD Project would appreciate the contribution of fixes and
enhancements under an identical license in order to avoid potentially
confusing license proliferation.

$P4: //depot/projects/trustedbsd/openbsm/LICENSE#6 $
@


1.1
log
@Initial revision
@
text
@d1 2
d35 1
a35 1
$P4: //depot/projects/trustedbsd/openbsm/LICENSE#4 $
@


1.1.1.1
log
@Initial vendor import of the TrustedBSD OpenBSM distribution, version
1.0 alpha 1, an implementation of the documented Sun Basic Security
Module (BSM) Audit API and file format, as well as local extensions to
support the Mac OS X and FreeBSD operating systems.  Also included are
command line tools for audit trail reduction and conversion to text,
as well as documentation of the commands, file format, and APIs.  This
distribution is the foundation for the TrustedBSD Audit implementation,
and is a pre-release.

This is the first in a series of commits to introduce support for
Common Criteria CAPP security event audit support.

This software has been made possible through the generous
contributions of Apple Computer, Inc., SPARTA, Inc., as well as
members of the TrustedBSD Project, including Wayne Salamon <wsalamon>
and Tom Rhodes <trhodes>.  The original OpenBSM implementation was
created by McAfee Research under contract to Apple Computer, Inc., as
part of their CC CAPP security evaluation.

Many thanks to:	wsalamon, trhodes
Obtained from:	TrustedBSD Project
@
text
@@


1.1.1.1.2.1
log
@MFC OpenBSM 1.0 alpha 10 from HEAD to RELENG_6; OpenBSM is the user space
portion of the TrustedBSD audit implementation, which has now been
settling in 7-CURRENT for several months, and is intended to provide a
Common Criteria/CAPP-compliant fine-grained security event log subsystem.
OpenBSM includes libraries, documentation, configuration files, and audit
audit trail printing and audit trail reduction tools.

This code drop is based on Apple's BSM implementation, implemented by
McAfee Research, and has been substantially enhanced by the TrustedBSD
Project.

Audit support will be considered "experimental" for 6.2-RELEASE.

Obtained from:	TrustedBSD Project
@
text
@@

