mac_framework.h (172990) | mac_framework.h (173018) |
---|---|
1/*- 2 * Copyright (c) 1999-2002 Robert N. M. Watson 3 * Copyright (c) 2001-2005 Networks Associates Technology, Inc. 4 * Copyright (c) 2005-2006 SPARTA, Inc. 5 * All rights reserved. 6 * 7 * This software was developed by Robert Watson for the TrustedBSD Project. 8 * --- 21 unchanged lines hidden (view full) --- 30 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 31 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 32 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 33 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 34 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 35 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 36 * SUCH DAMAGE. 37 * | 1/*- 2 * Copyright (c) 1999-2002 Robert N. M. Watson 3 * Copyright (c) 2001-2005 Networks Associates Technology, Inc. 4 * Copyright (c) 2005-2006 SPARTA, Inc. 5 * All rights reserved. 6 * 7 * This software was developed by Robert Watson for the TrustedBSD Project. 8 * --- 21 unchanged lines hidden (view full) --- 30 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 31 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 32 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 33 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 34 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 35 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 36 * SUCH DAMAGE. 37 * |
38 * $FreeBSD: head/sys/security/mac/mac_framework.h 172990 2007-10-25 22:45:25Z rwatson $ | 38 * $FreeBSD: head/sys/security/mac/mac_framework.h 173018 2007-10-26 13:18:38Z rwatson $ |
39 */ 40 41/* 42 * Kernel interface for Mandatory Access Control -- how kernel services 43 * interact with the TrustedBSD MAC Framework. 44 */ 45 46#ifndef _SYS_SECURITY_MAC_MAC_FRAMEWORK_H_ --- 95 unchanged lines hidden (view full) --- 142int mac_kenv_check_get(struct ucred *cred, char *name); 143int mac_kenv_check_set(struct ucred *cred, char *name, char *value); 144int mac_kenv_check_unset(struct ucred *cred, char *name); 145 146int mac_kld_check_load(struct ucred *cred, struct vnode *vp); 147int mac_kld_check_stat(struct ucred *cred); 148 149void mac_mbuf_copy(struct mbuf *, struct mbuf *); | 39 */ 40 41/* 42 * Kernel interface for Mandatory Access Control -- how kernel services 43 * interact with the TrustedBSD MAC Framework. 44 */ 45 46#ifndef _SYS_SECURITY_MAC_MAC_FRAMEWORK_H_ --- 95 unchanged lines hidden (view full) --- 142int mac_kenv_check_get(struct ucred *cred, char *name); 143int mac_kenv_check_set(struct ucred *cred, char *name, char *value); 144int mac_kenv_check_unset(struct ucred *cred, char *name); 145 146int mac_kld_check_load(struct ucred *cred, struct vnode *vp); 147int mac_kld_check_stat(struct ucred *cred); 148 149void mac_mbuf_copy(struct mbuf *, struct mbuf *); |
150void mac_mbuf_create_from_firewall(struct mbuf *m); 151void mac_create_mbuf_linklayer(struct ifnet *ifp, struct mbuf *m); | 150void mac_mbuf_create_linklayer(struct ifnet *ifp, struct mbuf *m); |
152void mac_mbuf_create_multicast_encap(struct mbuf *m, struct ifnet *ifp, 153 struct mbuf *mnew); 154void mac_mbuf_create_netlayer(struct mbuf *m, struct mbuf *mnew); 155int mac_mbuf_init(struct mbuf *, int); 156 157void mac_mbuf_tag_copy(struct m_tag *, struct m_tag *); 158void mac_mbuf_tag_destroy(struct m_tag *); 159int mac_mbuf_tag_init(struct m_tag *, int); 160 161int mac_mount_check_stat(struct ucred *cred, struct mount *mp); 162void mac_mount_create(struct ucred *cred, struct mount *mp); 163void mac_mount_destroy(struct mount *); 164void mac_mount_init(struct mount *); 165 | 151void mac_mbuf_create_multicast_encap(struct mbuf *m, struct ifnet *ifp, 152 struct mbuf *mnew); 153void mac_mbuf_create_netlayer(struct mbuf *m, struct mbuf *mnew); 154int mac_mbuf_init(struct mbuf *, int); 155 156void mac_mbuf_tag_copy(struct m_tag *, struct m_tag *); 157void mac_mbuf_tag_destroy(struct m_tag *); 158int mac_mbuf_tag_init(struct m_tag *, int); 159 160int mac_mount_check_stat(struct ucred *cred, struct mount *mp); 161void mac_mount_create(struct ucred *cred, struct mount *mp); 162void mac_mount_destroy(struct mount *); 163void mac_mount_init(struct mount *); 164 |
165void mac_netinet_firewall_send(struct mbuf *m); |
|
166void mac_netinet_fragment(struct mbuf *m, struct mbuf *frag); 167void mac_netinet_icmp_reply(struct mbuf *m); 168void mac_netinet_tcp_reply(struct mbuf *m); 169 170int mac_pipe_check_ioctl(struct ucred *cred, struct pipepair *pp, 171 unsigned long cmd, void *data); 172int mac_pipe_check_poll(struct ucred *cred, struct pipepair *pp); 173int mac_pipe_check_read(struct ucred *cred, struct pipepair *pp); --- 239 unchanged lines hidden --- | 166void mac_netinet_fragment(struct mbuf *m, struct mbuf *frag); 167void mac_netinet_icmp_reply(struct mbuf *m); 168void mac_netinet_tcp_reply(struct mbuf *m); 169 170int mac_pipe_check_ioctl(struct ucred *cred, struct pipepair *pp, 171 unsigned long cmd, void *data); 172int mac_pipe_check_poll(struct ucred *cred, struct pipepair *pp); 173int mac_pipe_check_read(struct ucred *cred, struct pipepair *pp); --- 239 unchanged lines hidden --- |