| mac_mls.c (145855) | mac_mls.c (147091) |
|---|---|
| 1/*- 2 * Copyright (c) 1999-2002 Robert N. M. Watson 3 * Copyright (c) 2001-2005 McAfee, Inc. 4 * All rights reserved. 5 * 6 * This software was developed by Robert Watson for the TrustedBSD Project. 7 * 8 * This software was developed for the FreeBSD Project in part by McAfee --- 17 unchanged lines hidden (view full) --- 26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 * | 1/*- 2 * Copyright (c) 1999-2002 Robert N. M. Watson 3 * Copyright (c) 2001-2005 McAfee, Inc. 4 * All rights reserved. 5 * 6 * This software was developed by Robert Watson for the TrustedBSD Project. 7 * 8 * This software was developed for the FreeBSD Project in part by McAfee --- 17 unchanged lines hidden (view full) --- 26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 * |
| 34 * $FreeBSD: head/sys/security/mac_mls/mac_mls.c 145855 2005-05-04 10:39:15Z rwatson $ | 34 * $FreeBSD: head/sys/security/mac_mls/mac_mls.c 147091 2005-06-07 05:03:28Z rwatson $ |
| 35 */ 36 37/* 38 * Developed by the TrustedBSD Project. 39 * MLS fixed label mandatory confidentiality policy. 40 */ 41 42#include <sys/types.h> --- 1048 unchanged lines hidden (view full) --- 1091 1092 source = SLOT(cred->cr_label); 1093 dest = SLOT(msqlabel); 1094 1095 mac_mls_copy_effective(source, dest); 1096} 1097 1098static void | 35 */ 36 37/* 38 * Developed by the TrustedBSD Project. 39 * MLS fixed label mandatory confidentiality policy. 40 */ 41 42#include <sys/types.h> --- 1048 unchanged lines hidden (view full) --- 1091 1092 source = SLOT(cred->cr_label); 1093 dest = SLOT(msqlabel); 1094 1095 mac_mls_copy_effective(source, dest); 1096} 1097 1098static void |
| 1099mac_mls_create_sysv_sema(struct ucred *cred, struct semid_kernel *semakptr, | 1099mac_mls_create_sysv_sem(struct ucred *cred, struct semid_kernel *semakptr, |
| 1100 struct label *semalabel) 1101{ 1102 struct mac_mls *source, *dest; 1103 1104 source = SLOT(cred->cr_label); 1105 dest = SLOT(semalabel); 1106 1107 mac_mls_copy_effective(source, dest); --- 281 unchanged lines hidden (view full) --- 1389static void 1390mac_mls_cleanup_sysv_msgqueue(struct label *msqlabel) 1391{ 1392 1393 bzero(SLOT(msqlabel), sizeof(struct mac_mls)); 1394} 1395 1396static void | 1100 struct label *semalabel) 1101{ 1102 struct mac_mls *source, *dest; 1103 1104 source = SLOT(cred->cr_label); 1105 dest = SLOT(semalabel); 1106 1107 mac_mls_copy_effective(source, dest); --- 281 unchanged lines hidden (view full) --- 1389static void 1390mac_mls_cleanup_sysv_msgqueue(struct label *msqlabel) 1391{ 1392 1393 bzero(SLOT(msqlabel), sizeof(struct mac_mls)); 1394} 1395 1396static void |
| 1397mac_mls_cleanup_sysv_sema(struct label *semalabel) | 1397mac_mls_cleanup_sysv_sem(struct label *semalabel) |
| 1398{ 1399 1400 bzero(SLOT(semalabel), sizeof(struct mac_mls)); 1401} 1402 1403static void 1404mac_mls_cleanup_sysv_shm(struct label *shmlabel) 1405{ --- 1420 unchanged lines hidden (view full) --- 2826 .mpo_init = mac_mls_init, 2827 .mpo_init_bpfdesc_label = mac_mls_init_label, 2828 .mpo_init_cred_label = mac_mls_init_label, 2829 .mpo_init_devfsdirent_label = mac_mls_init_label, 2830 .mpo_init_ifnet_label = mac_mls_init_label, 2831 .mpo_init_inpcb_label = mac_mls_init_label_waitcheck, 2832 .mpo_init_sysv_msgmsg_label = mac_mls_init_label, 2833 .mpo_init_sysv_msgqueue_label = mac_mls_init_label, | 1398{ 1399 1400 bzero(SLOT(semalabel), sizeof(struct mac_mls)); 1401} 1402 1403static void 1404mac_mls_cleanup_sysv_shm(struct label *shmlabel) 1405{ --- 1420 unchanged lines hidden (view full) --- 2826 .mpo_init = mac_mls_init, 2827 .mpo_init_bpfdesc_label = mac_mls_init_label, 2828 .mpo_init_cred_label = mac_mls_init_label, 2829 .mpo_init_devfsdirent_label = mac_mls_init_label, 2830 .mpo_init_ifnet_label = mac_mls_init_label, 2831 .mpo_init_inpcb_label = mac_mls_init_label_waitcheck, 2832 .mpo_init_sysv_msgmsg_label = mac_mls_init_label, 2833 .mpo_init_sysv_msgqueue_label = mac_mls_init_label, |
| 2834 .mpo_init_sysv_sema_label = mac_mls_init_label, | 2834 .mpo_init_sysv_sem_label = mac_mls_init_label, |
| 2835 .mpo_init_sysv_shm_label = mac_mls_init_label, 2836 .mpo_init_ipq_label = mac_mls_init_label_waitcheck, 2837 .mpo_init_mbuf_label = mac_mls_init_label_waitcheck, 2838 .mpo_init_mount_label = mac_mls_init_label, 2839 .mpo_init_mount_fs_label = mac_mls_init_label, 2840 .mpo_init_pipe_label = mac_mls_init_label, 2841 .mpo_init_posix_sem_label = mac_mls_init_label, 2842 .mpo_init_socket_label = mac_mls_init_label_waitcheck, 2843 .mpo_init_socket_peer_label = mac_mls_init_label_waitcheck, 2844 .mpo_init_vnode_label = mac_mls_init_label, 2845 .mpo_destroy_bpfdesc_label = mac_mls_destroy_label, 2846 .mpo_destroy_cred_label = mac_mls_destroy_label, 2847 .mpo_destroy_devfsdirent_label = mac_mls_destroy_label, 2848 .mpo_destroy_ifnet_label = mac_mls_destroy_label, 2849 .mpo_destroy_inpcb_label = mac_mls_destroy_label, 2850 .mpo_destroy_sysv_msgmsg_label = mac_mls_destroy_label, 2851 .mpo_destroy_sysv_msgqueue_label = mac_mls_destroy_label, | 2835 .mpo_init_sysv_shm_label = mac_mls_init_label, 2836 .mpo_init_ipq_label = mac_mls_init_label_waitcheck, 2837 .mpo_init_mbuf_label = mac_mls_init_label_waitcheck, 2838 .mpo_init_mount_label = mac_mls_init_label, 2839 .mpo_init_mount_fs_label = mac_mls_init_label, 2840 .mpo_init_pipe_label = mac_mls_init_label, 2841 .mpo_init_posix_sem_label = mac_mls_init_label, 2842 .mpo_init_socket_label = mac_mls_init_label_waitcheck, 2843 .mpo_init_socket_peer_label = mac_mls_init_label_waitcheck, 2844 .mpo_init_vnode_label = mac_mls_init_label, 2845 .mpo_destroy_bpfdesc_label = mac_mls_destroy_label, 2846 .mpo_destroy_cred_label = mac_mls_destroy_label, 2847 .mpo_destroy_devfsdirent_label = mac_mls_destroy_label, 2848 .mpo_destroy_ifnet_label = mac_mls_destroy_label, 2849 .mpo_destroy_inpcb_label = mac_mls_destroy_label, 2850 .mpo_destroy_sysv_msgmsg_label = mac_mls_destroy_label, 2851 .mpo_destroy_sysv_msgqueue_label = mac_mls_destroy_label, |
| 2852 .mpo_destroy_sysv_sema_label = mac_mls_destroy_label, | 2852 .mpo_destroy_sysv_sem_label = mac_mls_destroy_label, |
| 2853 .mpo_destroy_sysv_shm_label = mac_mls_destroy_label, 2854 .mpo_destroy_ipq_label = mac_mls_destroy_label, 2855 .mpo_destroy_mbuf_label = mac_mls_destroy_label, 2856 .mpo_destroy_mount_label = mac_mls_destroy_label, 2857 .mpo_destroy_mount_fs_label = mac_mls_destroy_label, 2858 .mpo_destroy_pipe_label = mac_mls_destroy_label, 2859 .mpo_destroy_posix_sem_label = mac_mls_destroy_label, 2860 .mpo_destroy_socket_label = mac_mls_destroy_label, --- 40 unchanged lines hidden (view full) --- 2901 .mpo_create_bpfdesc = mac_mls_create_bpfdesc, 2902 .mpo_create_datagram_from_ipq = mac_mls_create_datagram_from_ipq, 2903 .mpo_create_fragment = mac_mls_create_fragment, 2904 .mpo_create_ifnet = mac_mls_create_ifnet, 2905 .mpo_create_inpcb_from_socket = mac_mls_create_inpcb_from_socket, 2906 .mpo_create_ipq = mac_mls_create_ipq, 2907 .mpo_create_sysv_msgmsg = mac_mls_create_sysv_msgmsg, 2908 .mpo_create_sysv_msgqueue = mac_mls_create_sysv_msgqueue, | 2853 .mpo_destroy_sysv_shm_label = mac_mls_destroy_label, 2854 .mpo_destroy_ipq_label = mac_mls_destroy_label, 2855 .mpo_destroy_mbuf_label = mac_mls_destroy_label, 2856 .mpo_destroy_mount_label = mac_mls_destroy_label, 2857 .mpo_destroy_mount_fs_label = mac_mls_destroy_label, 2858 .mpo_destroy_pipe_label = mac_mls_destroy_label, 2859 .mpo_destroy_posix_sem_label = mac_mls_destroy_label, 2860 .mpo_destroy_socket_label = mac_mls_destroy_label, --- 40 unchanged lines hidden (view full) --- 2901 .mpo_create_bpfdesc = mac_mls_create_bpfdesc, 2902 .mpo_create_datagram_from_ipq = mac_mls_create_datagram_from_ipq, 2903 .mpo_create_fragment = mac_mls_create_fragment, 2904 .mpo_create_ifnet = mac_mls_create_ifnet, 2905 .mpo_create_inpcb_from_socket = mac_mls_create_inpcb_from_socket, 2906 .mpo_create_ipq = mac_mls_create_ipq, 2907 .mpo_create_sysv_msgmsg = mac_mls_create_sysv_msgmsg, 2908 .mpo_create_sysv_msgqueue = mac_mls_create_sysv_msgqueue, |
| 2909 .mpo_create_sysv_sema = mac_mls_create_sysv_sema, | 2909 .mpo_create_sysv_sem = mac_mls_create_sysv_sem, |
| 2910 .mpo_create_sysv_shm = mac_mls_create_sysv_shm, 2911 .mpo_create_mbuf_from_inpcb = mac_mls_create_mbuf_from_inpcb, 2912 .mpo_create_mbuf_from_mbuf = mac_mls_create_mbuf_from_mbuf, 2913 .mpo_create_mbuf_linklayer = mac_mls_create_mbuf_linklayer, 2914 .mpo_create_mbuf_from_bpfdesc = mac_mls_create_mbuf_from_bpfdesc, 2915 .mpo_create_mbuf_from_ifnet = mac_mls_create_mbuf_from_ifnet, 2916 .mpo_create_mbuf_multicast_encap = mac_mls_create_mbuf_multicast_encap, 2917 .mpo_create_mbuf_netlayer = mac_mls_create_mbuf_netlayer, 2918 .mpo_fragment_match = mac_mls_fragment_match, 2919 .mpo_relabel_ifnet = mac_mls_relabel_ifnet, 2920 .mpo_update_ipq = mac_mls_update_ipq, 2921 .mpo_inpcb_sosetlabel = mac_mls_inpcb_sosetlabel, 2922 .mpo_create_proc0 = mac_mls_create_proc0, 2923 .mpo_create_proc1 = mac_mls_create_proc1, 2924 .mpo_relabel_cred = mac_mls_relabel_cred, 2925 .mpo_cleanup_sysv_msgmsg = mac_mls_cleanup_sysv_msgmsg, 2926 .mpo_cleanup_sysv_msgqueue = mac_mls_cleanup_sysv_msgqueue, | 2910 .mpo_create_sysv_shm = mac_mls_create_sysv_shm, 2911 .mpo_create_mbuf_from_inpcb = mac_mls_create_mbuf_from_inpcb, 2912 .mpo_create_mbuf_from_mbuf = mac_mls_create_mbuf_from_mbuf, 2913 .mpo_create_mbuf_linklayer = mac_mls_create_mbuf_linklayer, 2914 .mpo_create_mbuf_from_bpfdesc = mac_mls_create_mbuf_from_bpfdesc, 2915 .mpo_create_mbuf_from_ifnet = mac_mls_create_mbuf_from_ifnet, 2916 .mpo_create_mbuf_multicast_encap = mac_mls_create_mbuf_multicast_encap, 2917 .mpo_create_mbuf_netlayer = mac_mls_create_mbuf_netlayer, 2918 .mpo_fragment_match = mac_mls_fragment_match, 2919 .mpo_relabel_ifnet = mac_mls_relabel_ifnet, 2920 .mpo_update_ipq = mac_mls_update_ipq, 2921 .mpo_inpcb_sosetlabel = mac_mls_inpcb_sosetlabel, 2922 .mpo_create_proc0 = mac_mls_create_proc0, 2923 .mpo_create_proc1 = mac_mls_create_proc1, 2924 .mpo_relabel_cred = mac_mls_relabel_cred, 2925 .mpo_cleanup_sysv_msgmsg = mac_mls_cleanup_sysv_msgmsg, 2926 .mpo_cleanup_sysv_msgqueue = mac_mls_cleanup_sysv_msgqueue, |
| 2927 .mpo_cleanup_sysv_sema = mac_mls_cleanup_sysv_sema, | 2927 .mpo_cleanup_sysv_sem = mac_mls_cleanup_sysv_sem, |
| 2928 .mpo_cleanup_sysv_shm = mac_mls_cleanup_sysv_shm, 2929 .mpo_check_bpfdesc_receive = mac_mls_check_bpfdesc_receive, 2930 .mpo_check_cred_relabel = mac_mls_check_cred_relabel, 2931 .mpo_check_cred_visible = mac_mls_check_cred_visible, 2932 .mpo_check_ifnet_relabel = mac_mls_check_ifnet_relabel, 2933 .mpo_check_ifnet_transmit = mac_mls_check_ifnet_transmit, 2934 .mpo_check_inpcb_deliver = mac_mls_check_inpcb_deliver, 2935 .mpo_check_sysv_msgrcv = mac_mls_check_sysv_msgrcv, --- 66 unchanged lines hidden --- | 2928 .mpo_cleanup_sysv_shm = mac_mls_cleanup_sysv_shm, 2929 .mpo_check_bpfdesc_receive = mac_mls_check_bpfdesc_receive, 2930 .mpo_check_cred_relabel = mac_mls_check_cred_relabel, 2931 .mpo_check_cred_visible = mac_mls_check_cred_visible, 2932 .mpo_check_ifnet_relabel = mac_mls_check_ifnet_relabel, 2933 .mpo_check_ifnet_transmit = mac_mls_check_ifnet_transmit, 2934 .mpo_check_inpcb_deliver = mac_mls_check_inpcb_deliver, 2935 .mpo_check_sysv_msgrcv = mac_mls_check_sysv_msgrcv, --- 66 unchanged lines hidden --- |