| mac_lomac.c (151897) | mac_lomac.c (162238) |
|---|---|
| 1/*- 2 * Copyright (c) 1999-2002 Robert N. M. Watson 3 * Copyright (c) 2001-2005 Networks Associates Technology, Inc. 4 * All rights reserved. 5 * 6 * This software was developed by Robert Watson for the TrustedBSD Project. 7 * 8 * This software was developed for the FreeBSD Project in part by NAI Labs, --- 17 unchanged lines hidden (view full) --- 26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 * | 1/*- 2 * Copyright (c) 1999-2002 Robert N. M. Watson 3 * Copyright (c) 2001-2005 Networks Associates Technology, Inc. 4 * All rights reserved. 5 * 6 * This software was developed by Robert Watson for the TrustedBSD Project. 7 * 8 * This software was developed for the FreeBSD Project in part by NAI Labs, --- 17 unchanged lines hidden (view full) --- 26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 * |
| 34 * $FreeBSD: head/sys/security/mac_lomac/mac_lomac.c 151897 2005-10-31 15:41:29Z rwatson $ | 34 * $FreeBSD: head/sys/security/mac_lomac/mac_lomac.c 162238 2006-09-12 04:25:13Z csjp $ |
| 35 */ 36 37/* 38 * Developed by the TrustedBSD Project. 39 * Low-watermark floating label mandatory integrity policy. 40 */ 41 42#include <sys/types.h> --- 1398 unchanged lines hidden (view full) --- 1441 struct mac_lomac *source, *dest; 1442 1443 source = SLOT(solabel); 1444 dest = SLOT(inplabel); 1445 1446 mac_lomac_copy_single(source, dest); 1447} 1448 | 35 */ 36 37/* 38 * Developed by the TrustedBSD Project. 39 * Low-watermark floating label mandatory integrity policy. 40 */ 41 42#include <sys/types.h> --- 1398 unchanged lines hidden (view full) --- 1441 struct mac_lomac *source, *dest; 1442 1443 source = SLOT(solabel); 1444 dest = SLOT(inplabel); 1445 1446 mac_lomac_copy_single(source, dest); 1447} 1448 |
| 1449static void 1450mac_lomac_create_mbuf_from_firewall(struct mbuf *m, struct label *label) 1451{ 1452 struct mac_lomac *dest; 1453 1454 dest = SLOT(label); 1455 1456 /* XXX: where is the label for the firewall really comming from? */ 1457 mac_lomac_set_single(dest, MAC_LOMAC_TYPE_EQUAL, 0); 1458} 1459 |
|
| 1449/* 1450 * Labeling event operations: processes. 1451 */ 1452static void 1453mac_lomac_execve_transition(struct ucred *old, struct ucred *new, 1454 struct vnode *vp, struct label *vnodelabel, 1455 struct label *interpvnodelabel, struct image_params *imgp, 1456 struct label *execlabel) --- 1223 unchanged lines hidden (view full) --- 2680 .mpo_check_vnode_setacl = mac_lomac_check_vnode_setacl, 2681 .mpo_check_vnode_setextattr = mac_lomac_check_vnode_setextattr, 2682 .mpo_check_vnode_setflags = mac_lomac_check_vnode_setflags, 2683 .mpo_check_vnode_setmode = mac_lomac_check_vnode_setmode, 2684 .mpo_check_vnode_setowner = mac_lomac_check_vnode_setowner, 2685 .mpo_check_vnode_setutimes = mac_lomac_check_vnode_setutimes, 2686 .mpo_check_vnode_write = mac_lomac_check_vnode_write, 2687 .mpo_thread_userret = mac_lomac_thread_userret, | 1460/* 1461 * Labeling event operations: processes. 1462 */ 1463static void 1464mac_lomac_execve_transition(struct ucred *old, struct ucred *new, 1465 struct vnode *vp, struct label *vnodelabel, 1466 struct label *interpvnodelabel, struct image_params *imgp, 1467 struct label *execlabel) --- 1223 unchanged lines hidden (view full) --- 2691 .mpo_check_vnode_setacl = mac_lomac_check_vnode_setacl, 2692 .mpo_check_vnode_setextattr = mac_lomac_check_vnode_setextattr, 2693 .mpo_check_vnode_setflags = mac_lomac_check_vnode_setflags, 2694 .mpo_check_vnode_setmode = mac_lomac_check_vnode_setmode, 2695 .mpo_check_vnode_setowner = mac_lomac_check_vnode_setowner, 2696 .mpo_check_vnode_setutimes = mac_lomac_check_vnode_setutimes, 2697 .mpo_check_vnode_write = mac_lomac_check_vnode_write, 2698 .mpo_thread_userret = mac_lomac_thread_userret, |
| 2699 .mpo_create_mbuf_from_firewall = mac_lomac_create_mbuf_from_firewall, |
|
| 2688}; 2689 2690MAC_POLICY_SET(&mac_lomac_ops, mac_lomac, "TrustedBSD MAC/LOMAC", 2691 MPC_LOADTIME_FLAG_NOTLATE | MPC_LOADTIME_FLAG_LABELMBUFS, 2692 &mac_lomac_slot); | 2700}; 2701 2702MAC_POLICY_SET(&mac_lomac_ops, mac_lomac, "TrustedBSD MAC/LOMAC", 2703 MPC_LOADTIME_FLAG_NOTLATE | MPC_LOADTIME_FLAG_LABELMBUFS, 2704 &mac_lomac_slot); |