| mac_net.c (119198) | mac_net.c (119244) |
|---|---|
| 1/*- 2 * Copyright (c) 1999, 2000, 2001, 2002 Robert N. M. Watson 3 * Copyright (c) 2001 Ilmar S. Habibulin 4 * Copyright (c) 2001, 2002, 2003 Networks Associates Technology, Inc. 5 * All rights reserved. 6 * 7 * This software was developed by Robert Watson and Ilmar Habibulin for the 8 * TrustedBSD Project. --- 26 unchanged lines hidden (view full) --- 35 */ 36 37/* 38 * Framework for extensible kernel access control. Kernel and userland 39 * interface to the framework, policy registration and composition. 40 */ 41 42#include <sys/cdefs.h> | 1/*- 2 * Copyright (c) 1999, 2000, 2001, 2002 Robert N. M. Watson 3 * Copyright (c) 2001 Ilmar S. Habibulin 4 * Copyright (c) 2001, 2002, 2003 Networks Associates Technology, Inc. 5 * All rights reserved. 6 * 7 * This software was developed by Robert Watson and Ilmar Habibulin for the 8 * TrustedBSD Project. --- 26 unchanged lines hidden (view full) --- 35 */ 36 37/* 38 * Framework for extensible kernel access control. Kernel and userland 39 * interface to the framework, policy registration and composition. 40 */ 41 42#include <sys/cdefs.h> |
| 43__FBSDID("$FreeBSD: head/sys/security/mac/mac_net.c 119198 2003-08-21 13:53:01Z rwatson $"); | 43__FBSDID("$FreeBSD: head/sys/security/mac/mac_net.c 119244 2003-08-21 18:21:22Z rwatson $"); |
| 44 45#include "opt_mac.h" 46#include "opt_devfs.h" 47 48#include <sys/param.h> 49#include <sys/condvar.h> 50#include <sys/extattr.h> 51#include <sys/imgact.h> --- 2341 unchanged lines hidden (view full) --- 2393 result = 1; 2394 MAC_BOOLEAN(fragment_match, &&, fragment, label, ipq, 2395 &ipq->ipq_label); 2396 2397 return (result); 2398} 2399 2400void | 44 45#include "opt_mac.h" 46#include "opt_devfs.h" 47 48#include <sys/param.h> 49#include <sys/condvar.h> 50#include <sys/extattr.h> 51#include <sys/imgact.h> --- 2341 unchanged lines hidden (view full) --- 2393 result = 1; 2394 MAC_BOOLEAN(fragment_match, &&, fragment, label, ipq, 2395 &ipq->ipq_label); 2396 2397 return (result); 2398} 2399 2400void |
| 2401mac_reflect_mbuf_icmp(struct mbuf *m) 2402{ 2403 struct label *label; 2404 2405 label = mbuf_to_label(m); 2406 2407 MAC_PERFORM(reflect_mbuf_icmp, m, label); 2408} 2409void 2410mac_reflect_mbuf_tcp(struct mbuf *m) 2411{ 2412 struct label *label; 2413 2414 label = mbuf_to_label(m); 2415 2416 MAC_PERFORM(reflect_mbuf_tcp, m, label); 2417} 2418 2419void |
|
| 2401mac_update_ipq(struct mbuf *fragment, struct ipq *ipq) 2402{ 2403 struct label *label; 2404 2405 label = mbuf_to_label(fragment); 2406 2407 MAC_PERFORM(update_ipq, fragment, label, ipq, &ipq->ipq_label); 2408} --- 1530 unchanged lines hidden --- | 2420mac_update_ipq(struct mbuf *fragment, struct ipq *ipq) 2421{ 2422 struct label *label; 2423 2424 label = mbuf_to_label(fragment); 2425 2426 MAC_PERFORM(update_ipq, fragment, label, ipq, &ipq->ipq_label); 2427} --- 1530 unchanged lines hidden --- |