HomeFreeBSD
Diffusion FreeBSD src repository - subversion rS102112

Break out mac_check_vnode_op() into three seperate checks:
rS102112Unpublished
Actions

Unpublished Commit ยท Learn More

No further details are available.

Description

Break out mac_check_vnode_op() into three seperate checks:
mac_check_vnode_poll(), mac_check_vnode_read(), mac_check_vnode_write().
This improves the consistency with other existing vnode checks, and
allows policies to avoid implementing switch statements to determine
what operations they do and do not want to authorize.

Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs

Details

Provenance
rwatsonAuthored on
Parents
rS102111: Add a new `-H' modifier, which when combined with `-p' or `-P' allows to dump
Branches
Unknown
Tags
Unknown

Event Timeline

Changes (23)

PathSize
head/
sys/
kern/
security/
mac/
mac_biba/
mac_mls/
mac_none/
mac_stub/
mac_test/
sys/

rS102112

View Options

head/sys/kern/kern_ktrace.c

Loading...
View Options

head/sys/kern/kern_mac.c

Loading...
View Options

head/sys/kern/tty_tty.c

Loading...
View Options

head/sys/kern/vfs_extattr.c

Loading...
View Options

head/sys/kern/vfs_syscalls.c

Loading...
View Options

head/sys/kern/vfs_vnops.c

Loading...
View Options

head/sys/security/mac/mac_framework.c

Loading...
View Options

head/sys/security/mac/mac_framework.h

Loading...
View Options

head/sys/security/mac/mac_internal.h

Loading...
View Options

head/sys/security/mac/mac_net.c

Loading...
View Options

head/sys/security/mac/mac_pipe.c

Loading...
View Options

head/sys/security/mac/mac_policy.h

Loading...
View Options

head/sys/security/mac/mac_process.c

Loading...
View Options

head/sys/security/mac/mac_syscalls.c

Loading...
View Options

head/sys/security/mac/mac_system.c

Loading...
View Options

head/sys/security/mac/mac_vfs.c

Loading...
View Options

head/sys/security/mac_biba/mac_biba.c

Loading...
View Options

head/sys/security/mac_mls/mac_mls.c

Loading...
View Options

head/sys/security/mac_none/mac_none.c

Loading...
View Options

head/sys/security/mac_stub/mac_stub.c

Loading...
View Options

head/sys/security/mac_test/mac_test.c

Loading...
View Options

head/sys/sys/mac.h

Loading...
View Options

head/sys/sys/mac_policy.h

Loading...