| mac_lomac.c (122875) | mac_lomac.c (123173) |
|---|---|
| 1/*- 2 * Copyright (c) 1999, 2000, 2001, 2002 Robert N. M. Watson 3 * Copyright (c) 2001, 2002, 2003 Networks Associates Technology, Inc. 4 * All rights reserved. 5 * 6 * This software was developed by Robert Watson for the TrustedBSD Project. 7 * 8 * This software was developed for the FreeBSD Project in part by NAI Labs, --- 17 unchanged lines hidden (view full) --- 26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 * | 1/*- 2 * Copyright (c) 1999, 2000, 2001, 2002 Robert N. M. Watson 3 * Copyright (c) 2001, 2002, 2003 Networks Associates Technology, Inc. 4 * All rights reserved. 5 * 6 * This software was developed by Robert Watson for the TrustedBSD Project. 7 * 8 * This software was developed for the FreeBSD Project in part by NAI Labs, --- 17 unchanged lines hidden (view full) --- 26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 * |
| 34 * $FreeBSD: head/sys/security/mac_lomac/mac_lomac.c 122875 2003-11-18 00:39:07Z rwatson $ | 34 * $FreeBSD: head/sys/security/mac_lomac/mac_lomac.c 123173 2003-12-06 21:48:03Z rwatson $ |
| 35 */ 36 37/* 38 * Developed by the TrustedBSD Project. 39 * Low-watermark floating label mandatory integrity policy. 40 */ 41 42#include <sys/types.h> --- 1420 unchanged lines hidden (view full) --- 1463 1464 mac_lomac_copy_single(source, dest); 1465} 1466 1467/* 1468 * Labeling event operations: processes. 1469 */ 1470static void | 35 */ 36 37/* 38 * Developed by the TrustedBSD Project. 39 * Low-watermark floating label mandatory integrity policy. 40 */ 41 42#include <sys/types.h> --- 1420 unchanged lines hidden (view full) --- 1463 1464 mac_lomac_copy_single(source, dest); 1465} 1466 1467/* 1468 * Labeling event operations: processes. 1469 */ 1470static void |
| 1471mac_lomac_create_cred(struct ucred *cred_parent, struct ucred *cred_child) 1472{ 1473 struct mac_lomac *source, *dest; 1474 1475 source = SLOT(cred_parent->cr_label); 1476 dest = SLOT(cred_child->cr_label); 1477 1478 mac_lomac_copy_single(source, dest); 1479 mac_lomac_copy_range(source, dest); 1480} 1481 1482static void | |
| 1483mac_lomac_execve_transition(struct ucred *old, struct ucred *new, 1484 struct vnode *vp, struct label *vnodelabel, 1485 struct label *interpvnodelabel, struct image_params *imgp, 1486 struct label *execlabel) 1487{ 1488 struct mac_lomac *source, *dest, *obj, *robj; 1489 1490 source = SLOT(old->cr_label); --- 1152 unchanged lines hidden (view full) --- 2643 .mpo_destroy_mbuf_label = mac_lomac_destroy_label, 2644 .mpo_destroy_mount_label = mac_lomac_destroy_label, 2645 .mpo_destroy_mount_fs_label = mac_lomac_destroy_label, 2646 .mpo_destroy_pipe_label = mac_lomac_destroy_label, 2647 .mpo_destroy_proc_label = mac_lomac_destroy_proc_label, 2648 .mpo_destroy_socket_label = mac_lomac_destroy_label, 2649 .mpo_destroy_socket_peer_label = mac_lomac_destroy_label, 2650 .mpo_destroy_vnode_label = mac_lomac_destroy_label, | 1471mac_lomac_execve_transition(struct ucred *old, struct ucred *new, 1472 struct vnode *vp, struct label *vnodelabel, 1473 struct label *interpvnodelabel, struct image_params *imgp, 1474 struct label *execlabel) 1475{ 1476 struct mac_lomac *source, *dest, *obj, *robj; 1477 1478 source = SLOT(old->cr_label); --- 1152 unchanged lines hidden (view full) --- 2631 .mpo_destroy_mbuf_label = mac_lomac_destroy_label, 2632 .mpo_destroy_mount_label = mac_lomac_destroy_label, 2633 .mpo_destroy_mount_fs_label = mac_lomac_destroy_label, 2634 .mpo_destroy_pipe_label = mac_lomac_destroy_label, 2635 .mpo_destroy_proc_label = mac_lomac_destroy_proc_label, 2636 .mpo_destroy_socket_label = mac_lomac_destroy_label, 2637 .mpo_destroy_socket_peer_label = mac_lomac_destroy_label, 2638 .mpo_destroy_vnode_label = mac_lomac_destroy_label, |
| 2639 .mpo_copy_cred_label = mac_lomac_copy_label, |
|
| 2651 .mpo_copy_mbuf_label = mac_lomac_copy_label, 2652 .mpo_copy_pipe_label = mac_lomac_copy_label, 2653 .mpo_copy_socket_label = mac_lomac_copy_label, 2654 .mpo_copy_vnode_label = mac_lomac_copy_label, 2655 .mpo_externalize_cred_label = mac_lomac_externalize_label, 2656 .mpo_externalize_ifnet_label = mac_lomac_externalize_label, 2657 .mpo_externalize_pipe_label = mac_lomac_externalize_label, 2658 .mpo_externalize_socket_label = mac_lomac_externalize_label, --- 38 unchanged lines hidden (view full) --- 2697 .mpo_create_mbuf_from_ifnet = mac_lomac_create_mbuf_from_ifnet, 2698 .mpo_create_mbuf_multicast_encap = 2699 mac_lomac_create_mbuf_multicast_encap, 2700 .mpo_create_mbuf_netlayer = mac_lomac_create_mbuf_netlayer, 2701 .mpo_fragment_match = mac_lomac_fragment_match, 2702 .mpo_relabel_ifnet = mac_lomac_relabel_ifnet, 2703 .mpo_update_ipq = mac_lomac_update_ipq, 2704 .mpo_inpcb_sosetlabel = mac_lomac_inpcb_sosetlabel, | 2640 .mpo_copy_mbuf_label = mac_lomac_copy_label, 2641 .mpo_copy_pipe_label = mac_lomac_copy_label, 2642 .mpo_copy_socket_label = mac_lomac_copy_label, 2643 .mpo_copy_vnode_label = mac_lomac_copy_label, 2644 .mpo_externalize_cred_label = mac_lomac_externalize_label, 2645 .mpo_externalize_ifnet_label = mac_lomac_externalize_label, 2646 .mpo_externalize_pipe_label = mac_lomac_externalize_label, 2647 .mpo_externalize_socket_label = mac_lomac_externalize_label, --- 38 unchanged lines hidden (view full) --- 2686 .mpo_create_mbuf_from_ifnet = mac_lomac_create_mbuf_from_ifnet, 2687 .mpo_create_mbuf_multicast_encap = 2688 mac_lomac_create_mbuf_multicast_encap, 2689 .mpo_create_mbuf_netlayer = mac_lomac_create_mbuf_netlayer, 2690 .mpo_fragment_match = mac_lomac_fragment_match, 2691 .mpo_relabel_ifnet = mac_lomac_relabel_ifnet, 2692 .mpo_update_ipq = mac_lomac_update_ipq, 2693 .mpo_inpcb_sosetlabel = mac_lomac_inpcb_sosetlabel, |
| 2705 .mpo_create_cred = mac_lomac_create_cred, | |
| 2706 .mpo_execve_transition = mac_lomac_execve_transition, 2707 .mpo_execve_will_transition = mac_lomac_execve_will_transition, 2708 .mpo_create_proc0 = mac_lomac_create_proc0, 2709 .mpo_create_proc1 = mac_lomac_create_proc1, 2710 .mpo_relabel_cred = mac_lomac_relabel_cred, 2711 .mpo_check_bpfdesc_receive = mac_lomac_check_bpfdesc_receive, 2712 .mpo_check_cred_relabel = mac_lomac_check_cred_relabel, 2713 .mpo_check_cred_visible = mac_lomac_check_cred_visible, --- 44 unchanged lines hidden --- | 2694 .mpo_execve_transition = mac_lomac_execve_transition, 2695 .mpo_execve_will_transition = mac_lomac_execve_will_transition, 2696 .mpo_create_proc0 = mac_lomac_create_proc0, 2697 .mpo_create_proc1 = mac_lomac_create_proc1, 2698 .mpo_relabel_cred = mac_lomac_relabel_cred, 2699 .mpo_check_bpfdesc_receive = mac_lomac_check_bpfdesc_receive, 2700 .mpo_check_cred_relabel = mac_lomac_check_cred_relabel, 2701 .mpo_check_cred_visible = mac_lomac_check_cred_visible, --- 44 unchanged lines hidden --- |