From owner-p4-projects Fri Sep 6 19:34:36 2002 Delivered-To: p4-projects@freebsd.org Received: by hub.freebsd.org (Postfix, from userid 32767) id 1982A37B401; Fri, 6 Sep 2002 19:34:30 -0700 (PDT) Delivered-To: perforce@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7ED2E37B400; Fri, 6 Sep 2002 19:34:29 -0700 (PDT) Received: from fledge.watson.org (fledge.watson.org [204.156.12.50]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7EA5643E6A; Fri, 6 Sep 2002 19:34:28 -0700 (PDT) (envelope-from robert@fledge.watson.org) Received: from fledge.watson.org (fledge.pr.watson.org [192.0.2.3]) by fledge.watson.org (8.12.4/8.12.4) with SMTP id g872XsOo090173; Fri, 6 Sep 2002 22:33:55 -0400 (EDT) (envelope-from robert@fledge.watson.org) Date: Fri, 6 Sep 2002 22:33:54 -0400 (EDT) From: Robert Watson X-Sender: robert@fledge.watson.org To: Chris Costello Cc: Perforce Change Reviews Subject: Re: PERFORCE change 16684 for review In-Reply-To: <20020906012608.GH41454@holly.calldei.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-p4-projects@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Thu, 5 Sep 2002, Chris Costello wrote: > On Tuesday, August 27, 2002, Robert Watson wrote: > > http://people.freebsd.org/~peter/p4db/chv.cgi?CH=16684 > > > > Change 16684 by rwatson@rwatson_paprika on 2002/08/27 22:16:33 > > > > Adopt consistent sorting of new pre-syscall entry point > > as found in mac (store with other process-related entry > > points rather than in the access control section). > > What does this help, and can/will it be broken up into a set of entry > points more in-line with what we have now? This seems to stick out like > a sore thumb... We have a bunch of functional changes in the queue, but once those are in the tree, I'd actually like to do another pass at renaming and reordering the entry points. The access control entry points are now largely right (there are a few oddities involving the VM calls though). I'd like to make the event entry points sort in a similar manner. In particular, sorted by object type in the form: mac__ Similar to the checks, which are in the form: mac_check__ Before that we have at least the following in the queue: Port of lomac to the MAC framework Pipe lock fixing Merge new userland API to the trustedbsd_mac tree Fix VFS locking and handling of labels on vnodes Right now all that's really holding up the userland code is that it requires certain binaries that are currently statically linked to be able to dlopen() MAC modules, which we can't do right now. This will be required to do the nsswitch support also, as well as certain classes of internationalization. It's not quite clear what the answer is right now--at least temporarily, it may be to break out this functionality into a seperate usr.sbin/macctl, which is a shame, since interface labeling really does belong in ifconfig. Robert N M Watson FreeBSD Core Team, TrustedBSD Projects robert@fledge.watson.org Network Associates Laboratories To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe p4-projects" in the body of the message