| mac_stub.c (122820) | mac_stub.c (122875) |
|---|---|
| 1/*- 2 * Copyright (c) 1999, 2000, 2001, 2002 Robert N. M. Watson 3 * Copyright (c) 2001, 2002, 2003 Networks Associates Technology, Inc. 4 * All rights reserved. 5 * 6 * This software was developed by Robert Watson for the TrustedBSD Project. 7 * 8 * This software was developed for the FreeBSD Project in part by Network --- 17 unchanged lines hidden (view full) --- 26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 * | 1/*- 2 * Copyright (c) 1999, 2000, 2001, 2002 Robert N. M. Watson 3 * Copyright (c) 2001, 2002, 2003 Networks Associates Technology, Inc. 4 * All rights reserved. 5 * 6 * This software was developed by Robert Watson for the TrustedBSD Project. 7 * 8 * This software was developed for the FreeBSD Project in part by Network --- 17 unchanged lines hidden (view full) --- 26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 * |
| 34 * $FreeBSD: head/sys/security/mac_stub/mac_stub.c 122820 2003-11-16 23:31:45Z rwatson $ | 34 * $FreeBSD: head/sys/security/mac_stub/mac_stub.c 122875 2003-11-18 00:39:07Z rwatson $ |
| 35 */ 36 37/* 38 * Developed by the TrustedBSD Project. 39 * 40 * Stub module that implements a NOOP for most (if not all) MAC Framework 41 * policy entry points. 42 */ --- 20 unchanged lines hidden (view full) --- 63#include <fs/devfs/devfs.h> 64 65#include <net/bpfdesc.h> 66#include <net/if.h> 67#include <net/if_types.h> 68#include <net/if_var.h> 69 70#include <netinet/in.h> | 35 */ 36 37/* 38 * Developed by the TrustedBSD Project. 39 * 40 * Stub module that implements a NOOP for most (if not all) MAC Framework 41 * policy entry points. 42 */ --- 20 unchanged lines hidden (view full) --- 63#include <fs/devfs/devfs.h> 64 65#include <net/bpfdesc.h> 66#include <net/if.h> 67#include <net/if_types.h> 68#include <net/if_var.h> 69 70#include <netinet/in.h> |
| 71#include <netinet/in_pcb.h> |
|
| 71#include <netinet/ip_var.h> 72 73#include <vm/vm.h> 74 75#include <sys/mac_policy.h> 76 77SYSCTL_DECL(_security_mac); 78 --- 252 unchanged lines hidden (view full) --- 331 332static void 333stub_create_ifnet(struct ifnet *ifnet, struct label *ifnetlabel) 334{ 335 336} 337 338static void | 72#include <netinet/ip_var.h> 73 74#include <vm/vm.h> 75 76#include <sys/mac_policy.h> 77 78SYSCTL_DECL(_security_mac); 79 --- 252 unchanged lines hidden (view full) --- 332 333static void 334stub_create_ifnet(struct ifnet *ifnet, struct label *ifnetlabel) 335{ 336 337} 338 339static void |
| 340stub_create_inpcb_from_socket(struct socket *so, struct label *solabel, 341 struct inpcb *inp, struct label *inplabel) 342{ 343 344} 345 346static void |
|
| 339stub_create_ipq(struct mbuf *fragment, struct label *fragmentlabel, 340 struct ipq *ipq, struct label *ipqlabel) 341{ 342 343} 344 345static void 346stub_create_mbuf_from_mbuf(struct mbuf *oldmbuf, --- 68 unchanged lines hidden (view full) --- 415 416static void 417stub_update_ipq(struct mbuf *fragment, struct label *fragmentlabel, 418 struct ipq *ipq, struct label *ipqlabel) 419{ 420 421} 422 | 347stub_create_ipq(struct mbuf *fragment, struct label *fragmentlabel, 348 struct ipq *ipq, struct label *ipqlabel) 349{ 350 351} 352 353static void 354stub_create_mbuf_from_mbuf(struct mbuf *oldmbuf, --- 68 unchanged lines hidden (view full) --- 423 424static void 425stub_update_ipq(struct mbuf *fragment, struct label *fragmentlabel, 426 struct ipq *ipq, struct label *ipqlabel) 427{ 428 429} 430 |
| 431static void 432stub_inpcb_sosetlabel(struct socket *so, struct label *solabel, 433 struct inpcb *inp, struct label *inplabel) 434{ 435 436} 437 |
|
| 423/* 424 * Labeling event operations: processes. 425 */ 426static void 427stub_create_cred(struct ucred *cred_parent, struct ucred *cred_child) 428{ 429 430} --- 77 unchanged lines hidden (view full) --- 508stub_check_ifnet_transmit(struct ifnet *ifnet, struct label *ifnetlabel, 509 struct mbuf *m, struct label *mbuflabel) 510{ 511 512 return (0); 513} 514 515static int | 438/* 439 * Labeling event operations: processes. 440 */ 441static void 442stub_create_cred(struct ucred *cred_parent, struct ucred *cred_child) 443{ 444 445} --- 77 unchanged lines hidden (view full) --- 523stub_check_ifnet_transmit(struct ifnet *ifnet, struct label *ifnetlabel, 524 struct mbuf *m, struct label *mbuflabel) 525{ 526 527 return (0); 528} 529 530static int |
| 531stub_check_inpcb_deliver(struct inpcb *inp, struct label *inplabel, 532 struct mbuf *m, struct label *mlabel) 533{ 534 535 return (0); 536} 537 538static int |
|
| 516stub_check_kenv_dump(struct ucred *cred) 517{ 518 519 return (0); 520} 521 522static int 523stub_check_kenv_get(struct ucred *cred, char *name) --- 481 unchanged lines hidden (view full) --- 1005{ 1006 .mpo_destroy = stub_destroy, 1007 .mpo_init = stub_init, 1008 .mpo_syscall = stub_syscall, 1009 .mpo_init_bpfdesc_label = stub_init_label, 1010 .mpo_init_cred_label = stub_init_label, 1011 .mpo_init_devfsdirent_label = stub_init_label, 1012 .mpo_init_ifnet_label = stub_init_label, | 539stub_check_kenv_dump(struct ucred *cred) 540{ 541 542 return (0); 543} 544 545static int 546stub_check_kenv_get(struct ucred *cred, char *name) --- 481 unchanged lines hidden (view full) --- 1028{ 1029 .mpo_destroy = stub_destroy, 1030 .mpo_init = stub_init, 1031 .mpo_syscall = stub_syscall, 1032 .mpo_init_bpfdesc_label = stub_init_label, 1033 .mpo_init_cred_label = stub_init_label, 1034 .mpo_init_devfsdirent_label = stub_init_label, 1035 .mpo_init_ifnet_label = stub_init_label, |
| 1036 .mpo_init_inpcb_label = stub_init_label_waitcheck, |
|
| 1013 .mpo_init_ipq_label = stub_init_label_waitcheck, 1014 .mpo_init_mbuf_label = stub_init_label_waitcheck, 1015 .mpo_init_mount_label = stub_init_label, 1016 .mpo_init_mount_fs_label = stub_init_label, 1017 .mpo_init_pipe_label = stub_init_label, 1018 .mpo_init_socket_label = stub_init_label_waitcheck, 1019 .mpo_init_socket_peer_label = stub_init_label_waitcheck, 1020 .mpo_init_vnode_label = stub_init_label, 1021 .mpo_destroy_bpfdesc_label = stub_destroy_label, 1022 .mpo_destroy_cred_label = stub_destroy_label, 1023 .mpo_destroy_devfsdirent_label = stub_destroy_label, 1024 .mpo_destroy_ifnet_label = stub_destroy_label, | 1037 .mpo_init_ipq_label = stub_init_label_waitcheck, 1038 .mpo_init_mbuf_label = stub_init_label_waitcheck, 1039 .mpo_init_mount_label = stub_init_label, 1040 .mpo_init_mount_fs_label = stub_init_label, 1041 .mpo_init_pipe_label = stub_init_label, 1042 .mpo_init_socket_label = stub_init_label_waitcheck, 1043 .mpo_init_socket_peer_label = stub_init_label_waitcheck, 1044 .mpo_init_vnode_label = stub_init_label, 1045 .mpo_destroy_bpfdesc_label = stub_destroy_label, 1046 .mpo_destroy_cred_label = stub_destroy_label, 1047 .mpo_destroy_devfsdirent_label = stub_destroy_label, 1048 .mpo_destroy_ifnet_label = stub_destroy_label, |
| 1049 .mpo_destroy_inpcb_label = stub_destroy_label, |
|
| 1025 .mpo_destroy_ipq_label = stub_destroy_label, 1026 .mpo_destroy_mbuf_label = stub_destroy_label, 1027 .mpo_destroy_mount_label = stub_destroy_label, 1028 .mpo_destroy_mount_fs_label = stub_destroy_label, 1029 .mpo_destroy_pipe_label = stub_destroy_label, 1030 .mpo_destroy_socket_label = stub_destroy_label, 1031 .mpo_destroy_socket_peer_label = stub_destroy_label, 1032 .mpo_destroy_vnode_label = stub_destroy_label, --- 29 unchanged lines hidden (view full) --- 1062 .mpo_create_socket = stub_create_socket, 1063 .mpo_create_socket_from_socket = stub_create_socket_from_socket, 1064 .mpo_relabel_pipe = stub_relabel_pipe, 1065 .mpo_relabel_socket = stub_relabel_socket, 1066 .mpo_set_socket_peer_from_mbuf = stub_set_socket_peer_from_mbuf, 1067 .mpo_set_socket_peer_from_socket = stub_set_socket_peer_from_socket, 1068 .mpo_create_bpfdesc = stub_create_bpfdesc, 1069 .mpo_create_ifnet = stub_create_ifnet, | 1050 .mpo_destroy_ipq_label = stub_destroy_label, 1051 .mpo_destroy_mbuf_label = stub_destroy_label, 1052 .mpo_destroy_mount_label = stub_destroy_label, 1053 .mpo_destroy_mount_fs_label = stub_destroy_label, 1054 .mpo_destroy_pipe_label = stub_destroy_label, 1055 .mpo_destroy_socket_label = stub_destroy_label, 1056 .mpo_destroy_socket_peer_label = stub_destroy_label, 1057 .mpo_destroy_vnode_label = stub_destroy_label, --- 29 unchanged lines hidden (view full) --- 1087 .mpo_create_socket = stub_create_socket, 1088 .mpo_create_socket_from_socket = stub_create_socket_from_socket, 1089 .mpo_relabel_pipe = stub_relabel_pipe, 1090 .mpo_relabel_socket = stub_relabel_socket, 1091 .mpo_set_socket_peer_from_mbuf = stub_set_socket_peer_from_mbuf, 1092 .mpo_set_socket_peer_from_socket = stub_set_socket_peer_from_socket, 1093 .mpo_create_bpfdesc = stub_create_bpfdesc, 1094 .mpo_create_ifnet = stub_create_ifnet, |
| 1095 .mpo_create_inpcb_from_socket = stub_create_inpcb_from_socket, |
|
| 1070 .mpo_create_ipq = stub_create_ipq, 1071 .mpo_create_datagram_from_ipq = stub_create_datagram_from_ipq, 1072 .mpo_create_fragment = stub_create_fragment, 1073 .mpo_create_ipq = stub_create_ipq, 1074 .mpo_create_mbuf_from_mbuf = stub_create_mbuf_from_mbuf, 1075 .mpo_create_mbuf_linklayer = stub_create_mbuf_linklayer, 1076 .mpo_create_mbuf_from_bpfdesc = stub_create_mbuf_from_bpfdesc, 1077 .mpo_create_mbuf_from_ifnet = stub_create_mbuf_from_ifnet, 1078 .mpo_create_mbuf_multicast_encap = stub_create_mbuf_multicast_encap, 1079 .mpo_create_mbuf_netlayer = stub_create_mbuf_netlayer, 1080 .mpo_fragment_match = stub_fragment_match, 1081 .mpo_reflect_mbuf_icmp = stub_reflect_mbuf_icmp, 1082 .mpo_reflect_mbuf_tcp = stub_reflect_mbuf_tcp, 1083 .mpo_relabel_ifnet = stub_relabel_ifnet, 1084 .mpo_update_ipq = stub_update_ipq, | 1096 .mpo_create_ipq = stub_create_ipq, 1097 .mpo_create_datagram_from_ipq = stub_create_datagram_from_ipq, 1098 .mpo_create_fragment = stub_create_fragment, 1099 .mpo_create_ipq = stub_create_ipq, 1100 .mpo_create_mbuf_from_mbuf = stub_create_mbuf_from_mbuf, 1101 .mpo_create_mbuf_linklayer = stub_create_mbuf_linklayer, 1102 .mpo_create_mbuf_from_bpfdesc = stub_create_mbuf_from_bpfdesc, 1103 .mpo_create_mbuf_from_ifnet = stub_create_mbuf_from_ifnet, 1104 .mpo_create_mbuf_multicast_encap = stub_create_mbuf_multicast_encap, 1105 .mpo_create_mbuf_netlayer = stub_create_mbuf_netlayer, 1106 .mpo_fragment_match = stub_fragment_match, 1107 .mpo_reflect_mbuf_icmp = stub_reflect_mbuf_icmp, 1108 .mpo_reflect_mbuf_tcp = stub_reflect_mbuf_tcp, 1109 .mpo_relabel_ifnet = stub_relabel_ifnet, 1110 .mpo_update_ipq = stub_update_ipq, |
| 1111 .mpo_inpcb_sosetlabel = stub_inpcb_sosetlabel, |
|
| 1085 .mpo_create_cred = stub_create_cred, 1086 .mpo_execve_transition = stub_execve_transition, 1087 .mpo_execve_will_transition = stub_execve_will_transition, 1088 .mpo_create_proc0 = stub_create_proc0, 1089 .mpo_create_proc1 = stub_create_proc1, 1090 .mpo_relabel_cred = stub_relabel_cred, 1091 .mpo_thread_userret = stub_thread_userret, 1092 .mpo_check_bpfdesc_receive = stub_check_bpfdesc_receive, 1093 .mpo_check_cred_relabel = stub_check_cred_relabel, 1094 .mpo_check_cred_visible = stub_check_cred_visible, 1095 .mpo_check_ifnet_relabel = stub_check_ifnet_relabel, 1096 .mpo_check_ifnet_transmit = stub_check_ifnet_transmit, | 1112 .mpo_create_cred = stub_create_cred, 1113 .mpo_execve_transition = stub_execve_transition, 1114 .mpo_execve_will_transition = stub_execve_will_transition, 1115 .mpo_create_proc0 = stub_create_proc0, 1116 .mpo_create_proc1 = stub_create_proc1, 1117 .mpo_relabel_cred = stub_relabel_cred, 1118 .mpo_thread_userret = stub_thread_userret, 1119 .mpo_check_bpfdesc_receive = stub_check_bpfdesc_receive, 1120 .mpo_check_cred_relabel = stub_check_cred_relabel, 1121 .mpo_check_cred_visible = stub_check_cred_visible, 1122 .mpo_check_ifnet_relabel = stub_check_ifnet_relabel, 1123 .mpo_check_ifnet_transmit = stub_check_ifnet_transmit, |
| 1124 .mpo_check_inpcb_deliver = stub_check_inpcb_deliver, |
|
| 1097 .mpo_check_kenv_dump = stub_check_kenv_dump, 1098 .mpo_check_kenv_get = stub_check_kenv_get, 1099 .mpo_check_kenv_set = stub_check_kenv_set, 1100 .mpo_check_kenv_unset = stub_check_kenv_unset, 1101 .mpo_check_kld_load = stub_check_kld_load, 1102 .mpo_check_kld_stat = stub_check_kld_stat, 1103 .mpo_check_kld_unload = stub_check_kld_unload, 1104 .mpo_check_mount_stat = stub_check_mount_stat, --- 58 unchanged lines hidden --- | 1125 .mpo_check_kenv_dump = stub_check_kenv_dump, 1126 .mpo_check_kenv_get = stub_check_kenv_get, 1127 .mpo_check_kenv_set = stub_check_kenv_set, 1128 .mpo_check_kenv_unset = stub_check_kenv_unset, 1129 .mpo_check_kld_load = stub_check_kld_load, 1130 .mpo_check_kld_stat = stub_check_kld_stat, 1131 .mpo_check_kld_unload = stub_check_kld_unload, 1132 .mpo_check_mount_stat = stub_check_mount_stat, --- 58 unchanged lines hidden --- |