Date: Tue, 16 Jul 2019 10:51:54 +0530 From: Shivank Garg <shivank@freebsd.org> To: soc-status@freebsd.org, "Bjoern A. Zeeb" <bz+soc@freebsd.org> Subject: [GSoC'19 Weekly Update] MAC policy on IP addresses in Jail Message-ID: <CAOVCmzHEBDqx96qsbMKU0G8bu-=2F0YbnMaCCB=GeuXMz_W0cQ@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
Hi everyone! This project is aimed at developing a loadable MAC module with the "The TrustedBSD MAC Framework" to limit the set of IP addresses a VNET-enabled Jail can choose from. This week I made the following progress- * Added checks to allow/deny IPv4 and IPv6 subnets. * Added more variety of tests to verify features of the module and integrated it with Kyua * Added bits of Documentation about using the module. Do Check this project on Github: https://github.com/shivankgarg98/freebsd/tree/shivank_MACPolicyIPAddressJail/sys/security/mac_ipacl FreeBSD wiki: https://wiki.freebsd.org/SummerOfCode2019Projects/MACPolicyIPAddressJail Please feel free to share your ideas and feedback on this project. Regards, Shivank Garg
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAOVCmzHEBDqx96qsbMKU0G8bu-=2F0YbnMaCCB=GeuXMz_W0cQ>