From owner-p4-projects  Mon Nov  4 12:58:31 2002
Delivered-To: p4-projects@freebsd.org
Received: by hub.freebsd.org (Postfix, from userid 32767)
	id B99D537B404; Mon,  4 Nov 2002 12:58:29 -0800 (PST)
Delivered-To: perforce@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 4B37D37B401; Mon,  4 Nov 2002 12:58:29 -0800 (PST)
Received: from fledge.watson.org (fledge.watson.org [204.156.12.50])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 2B2DE43E3B; Mon,  4 Nov 2002 12:58:28 -0800 (PST)
	(envelope-from robert@fledge.watson.org)
Received: from fledge.watson.org (fledge.pr.watson.org [192.0.2.3])
	by fledge.watson.org (8.12.4/8.12.4) with SMTP id gA4KvpOo054768;
	Mon, 4 Nov 2002 15:57:51 -0500 (EST)
	(envelope-from robert@fledge.watson.org)
Date: Mon, 4 Nov 2002 15:57:51 -0500 (EST)
From: Robert Watson <rwatson@freebsd.org>
X-Sender: robert@fledge.watson.org
To: "Brian F. Feldman" <green@freebsd.org>
Cc: Perforce Change Reviews <perforce@freebsd.org>
Subject: Re: PERFORCE change 20657 for review 
In-Reply-To: <200211041953.gA4Jr8PW076997@green.bikeshed.org>
Message-ID: <Pine.NEB.3.96L.1021104155537.19506G-100000@fledge.watson.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-p4-projects@FreeBSD.ORG
Precedence: bulk
List-ID: <p4-projects.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20p4-projects>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20p4-projects>
X-Loop: FreeBSD.ORG

On Mon, 4 Nov 2002, Brian F. Feldman wrote:

> Brian Feldman <green@FreeBSD.org> wrote:
> > http://perforce.freebsd.org/chv.cgi?CH=20657
> > 
> > Change 20657 by green@green_laptop_2 on 2002/11/04 11:34:53
> > 
> > 	Be resilient to relabel operations on mac_lomac objects by
> > 	always blanking the destination and copying the old label,
> > 	but only if the new label "appears" internalized.
> 
> BTW, this really does apply to all policies, and needs to be documented
> as such.  Biba/MLS got it "not totally wrong" because they don't bzero
> the label they're overwriting, so in the case where there's nothing to
> copy they just overwrite nothing on the target label. 

I guess I would interpret the Biba and MLS behavior a little differently: 
Biba and MLS labels optionally have 0, 1, or 2 of their components defined
(single, range).  Biba and MLS will avoid updating any component that
hasn't had an update requested, and the conditional copy implements this
behavior.  I.e., if you don't request single be updated, it won't replace
the single component.  That representation does coincide with the
initialized and not internalized/created definition intentionally -- are
you suggesting that we just need to add a comment indicating as much, or
that we need to change behavior?

Robert N M Watson             FreeBSD Core Team, TrustedBSD Projects
robert@fledge.watson.org      Network Associates Laboratories



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe p4-projects" in the body of the message