Changeset View
Changeset View
Standalone View
Standalone View
sys/security/mac/mac_policy.h
| Show First 20 Lines • Show All 98 Lines • ▼ Show 20 Lines | |||||
| struct socket; | struct socket; | ||||
| struct sysctl_oid; | struct sysctl_oid; | ||||
| struct sysctl_req; | struct sysctl_req; | ||||
| struct thread; | struct thread; | ||||
| struct ucred; | struct ucred; | ||||
| struct vattr; | struct vattr; | ||||
| struct vnode; | struct vnode; | ||||
| struct in_addr; | |||||
| struct in6_addr; | |||||
| /* | /* | ||||
| * Policy module operations. | * Policy module operations. | ||||
| */ | */ | ||||
| typedef void (*mpo_destroy_t)(struct mac_policy_conf *mpc); | typedef void (*mpo_destroy_t)(struct mac_policy_conf *mpc); | ||||
| typedef void (*mpo_init_t)(struct mac_policy_conf *mpc); | typedef void (*mpo_init_t)(struct mac_policy_conf *mpc); | ||||
| /* | /* | ||||
| * General policy-directed security system call so that policies may | * General policy-directed security system call so that policies may | ||||
| ▲ Show 20 Lines • Show All 128 Lines • ▼ Show 20 Lines | |||||
| typedef int (*mpo_ip6q_init_label_t)(struct label *label, int flag); | typedef int (*mpo_ip6q_init_label_t)(struct label *label, int flag); | ||||
| typedef int (*mpo_ip6q_match_t)(struct mbuf *m, struct label *mlabel, | typedef int (*mpo_ip6q_match_t)(struct mbuf *m, struct label *mlabel, | ||||
| struct ip6q *q6, struct label *q6label); | struct ip6q *q6, struct label *q6label); | ||||
| typedef void (*mpo_ip6q_reassemble)(struct ip6q *q6, struct label *q6label, | typedef void (*mpo_ip6q_reassemble)(struct ip6q *q6, struct label *q6label, | ||||
| struct mbuf *m, struct label *mlabel); | struct mbuf *m, struct label *mlabel); | ||||
| typedef void (*mpo_ip6q_update_t)(struct mbuf *m, struct label *mlabel, | typedef void (*mpo_ip6q_update_t)(struct mbuf *m, struct label *mlabel, | ||||
| struct ip6q *q6, struct label *q6label); | struct ip6q *q6, struct label *q6label); | ||||
| /* Policy ops checking IPv4 and IPv6 address for ipacl. */ | |||||
| typedef int (*mpo_ip4_check_jail_t)(struct ucred *cred, | |||||
| const struct in_addr *ia, struct ifnet *ifp); | |||||
| typedef int (*mpo_ip6_check_jail_t)(struct ucred *cred, | |||||
bz: Remove extra blank line? | |||||
| const struct in6_addr *ia6, struct ifnet *ifp); | |||||
| typedef void (*mpo_ipq_create_t)(struct mbuf *m, struct label *mlabel, | typedef void (*mpo_ipq_create_t)(struct mbuf *m, struct label *mlabel, | ||||
| struct ipq *q, struct label *qlabel); | struct ipq *q, struct label *qlabel); | ||||
| typedef void (*mpo_ipq_destroy_label_t)(struct label *label); | typedef void (*mpo_ipq_destroy_label_t)(struct label *label); | ||||
| typedef int (*mpo_ipq_init_label_t)(struct label *label, int flag); | typedef int (*mpo_ipq_init_label_t)(struct label *label, int flag); | ||||
| typedef int (*mpo_ipq_match_t)(struct mbuf *m, struct label *mlabel, | typedef int (*mpo_ipq_match_t)(struct mbuf *m, struct label *mlabel, | ||||
| struct ipq *q, struct label *qlabel); | struct ipq *q, struct label *qlabel); | ||||
| typedef void (*mpo_ipq_reassemble)(struct ipq *q, struct label *qlabel, | typedef void (*mpo_ipq_reassemble)(struct ipq *q, struct label *qlabel, | ||||
| struct mbuf *m, struct label *mlabel); | struct mbuf *m, struct label *mlabel); | ||||
| ▲ Show 20 Lines • Show All 497 Lines • ▼ Show 20 Lines | struct mac_policy_ops { | ||||
| mpo_inpcb_check_deliver_t mpo_inpcb_check_deliver; | mpo_inpcb_check_deliver_t mpo_inpcb_check_deliver; | ||||
| mpo_inpcb_check_visible_t mpo_inpcb_check_visible; | mpo_inpcb_check_visible_t mpo_inpcb_check_visible; | ||||
| mpo_inpcb_create_t mpo_inpcb_create; | mpo_inpcb_create_t mpo_inpcb_create; | ||||
| mpo_inpcb_create_mbuf_t mpo_inpcb_create_mbuf; | mpo_inpcb_create_mbuf_t mpo_inpcb_create_mbuf; | ||||
| mpo_inpcb_destroy_label_t mpo_inpcb_destroy_label; | mpo_inpcb_destroy_label_t mpo_inpcb_destroy_label; | ||||
| mpo_inpcb_init_label_t mpo_inpcb_init_label; | mpo_inpcb_init_label_t mpo_inpcb_init_label; | ||||
| mpo_inpcb_sosetlabel_t mpo_inpcb_sosetlabel; | mpo_inpcb_sosetlabel_t mpo_inpcb_sosetlabel; | ||||
| mpo_ip4_check_jail_t mpo_ip4_check_jail; | |||||
| mpo_ip6_check_jail_t mpo_ip6_check_jail; | |||||
| mpo_ip6q_create_t mpo_ip6q_create; | mpo_ip6q_create_t mpo_ip6q_create; | ||||
| mpo_ip6q_destroy_label_t mpo_ip6q_destroy_label; | mpo_ip6q_destroy_label_t mpo_ip6q_destroy_label; | ||||
| mpo_ip6q_init_label_t mpo_ip6q_init_label; | mpo_ip6q_init_label_t mpo_ip6q_init_label; | ||||
| mpo_ip6q_match_t mpo_ip6q_match; | mpo_ip6q_match_t mpo_ip6q_match; | ||||
| mpo_ip6q_reassemble mpo_ip6q_reassemble; | mpo_ip6q_reassemble mpo_ip6q_reassemble; | ||||
| mpo_ip6q_update_t mpo_ip6q_update; | mpo_ip6q_update_t mpo_ip6q_update; | ||||
| ▲ Show 20 Lines • Show All 286 Lines • Show Last 20 Lines | |||||
Remove extra blank line?