mac_framework.h (119198) | mac_framework.h (119244) |
---|---|
1/*- 2 * Copyright (c) 1999, 2000, 2001, 2002 Robert N. M. Watson 3 * Copyright (c) 2001, 2002, 2003 Networks Associates Technology, Inc. 4 * All rights reserved. 5 * 6 * This software was developed by Robert Watson for the TrustedBSD Project. 7 * 8 * This software was developed for the FreeBSD Project in part by Network --- 17 unchanged lines hidden (view full) --- 26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 * | 1/*- 2 * Copyright (c) 1999, 2000, 2001, 2002 Robert N. M. Watson 3 * Copyright (c) 2001, 2002, 2003 Networks Associates Technology, Inc. 4 * All rights reserved. 5 * 6 * This software was developed by Robert Watson for the TrustedBSD Project. 7 * 8 * This software was developed for the FreeBSD Project in part by Network --- 17 unchanged lines hidden (view full) --- 26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 * |
34 * $FreeBSD: head/sys/security/mac/mac_framework.h 119198 2003-08-21 13:53:01Z rwatson $ | 34 * $FreeBSD: head/sys/security/mac/mac_framework.h 119244 2003-08-21 18:21:22Z rwatson $ |
35 */ 36/* 37 * Userland/kernel interface for Mandatory Access Control. 38 * 39 * The POSIX.1e implementation page may be reached at: 40 * http://www.trustedbsd.org/ 41 */ 42#ifndef _SYS_MAC_H --- 162 unchanged lines hidden (view full) --- 205void mac_create_mbuf_from_mbuf(struct mbuf *oldmbuf, struct mbuf *newmbuf); 206void mac_create_mbuf_linklayer(struct ifnet *ifnet, struct mbuf *m); 207void mac_create_mbuf_from_bpfdesc(struct bpf_d *bpf_d, struct mbuf *m); 208void mac_create_mbuf_from_ifnet(struct ifnet *ifnet, struct mbuf *m); 209void mac_create_mbuf_multicast_encap(struct mbuf *oldmbuf, 210 struct ifnet *ifnet, struct mbuf *newmbuf); 211void mac_create_mbuf_netlayer(struct mbuf *oldmbuf, struct mbuf *newmbuf); 212int mac_fragment_match(struct mbuf *fragment, struct ipq *ipq); | 35 */ 36/* 37 * Userland/kernel interface for Mandatory Access Control. 38 * 39 * The POSIX.1e implementation page may be reached at: 40 * http://www.trustedbsd.org/ 41 */ 42#ifndef _SYS_MAC_H --- 162 unchanged lines hidden (view full) --- 205void mac_create_mbuf_from_mbuf(struct mbuf *oldmbuf, struct mbuf *newmbuf); 206void mac_create_mbuf_linklayer(struct ifnet *ifnet, struct mbuf *m); 207void mac_create_mbuf_from_bpfdesc(struct bpf_d *bpf_d, struct mbuf *m); 208void mac_create_mbuf_from_ifnet(struct ifnet *ifnet, struct mbuf *m); 209void mac_create_mbuf_multicast_encap(struct mbuf *oldmbuf, 210 struct ifnet *ifnet, struct mbuf *newmbuf); 211void mac_create_mbuf_netlayer(struct mbuf *oldmbuf, struct mbuf *newmbuf); 212int mac_fragment_match(struct mbuf *fragment, struct ipq *ipq); |
213void mac_reflect_mbuf_icmp(struct mbuf *m); 214void mac_reflect_mbuf_tcp(struct mbuf *m); |
|
213void mac_update_ipq(struct mbuf *fragment, struct ipq *ipq); 214 215/* 216 * Labeling event operations: processes. 217 */ 218void mac_create_cred(struct ucred *cred_parent, struct ucred *cred_child); 219int mac_execve_enter(struct image_params *imgp, struct mac *mac_p, 220 struct label *execlabel); --- 131 unchanged lines hidden --- | 215void mac_update_ipq(struct mbuf *fragment, struct ipq *ipq); 216 217/* 218 * Labeling event operations: processes. 219 */ 220void mac_create_cred(struct ucred *cred_parent, struct ucred *cred_child); 221int mac_execve_enter(struct image_params *imgp, struct mac *mac_p, 222 struct label *execlabel); --- 131 unchanged lines hidden --- |