Site Navigation

Date:      Wed, 1 May 2002 14:06:31 -0700 (PDT)
From:      Robert Watson <rwatson@FreeBSD.org>
To:        Perforce Change Reviews <perforce@freebsd.org>
Subject:   PERFORCE change 10595 for review
Message-ID:  <200205012106.g41L6Vi80690@freefall.freebsd.org>

---

next in thread | raw e-mail | index | archive | help

---

http://people.freebsd.org/~peter/p4db/chv.cgi?CH=10595

Change 10595 by rwatson@rwatson_curry on 2002/05/01 14:05:37

	Create a new MAC/policy entry point: mac_accept_socket() --
	similar to mac_create_socket, except for taking a socket rather
	than a credential as the first argument.

Affected files ...

... //depot/projects/trustedbsd/mac/sys/kern/kern_mac.c#130 edit
... //depot/projects/trustedbsd/mac/sys/sys/mac.h#95 edit
... //depot/projects/trustedbsd/mac/sys/sys/mac_policy.h#58 edit

Differences ...

==== //depot/projects/trustedbsd/mac/sys/kern/kern_mac.c#130 (text+ko) ====

@@ -303,6 +303,9 @@
 			mpc->mpc_ops.mpo_create_mbuf_from_socket =
 			    mpe->mpe_function;
 			break;
+		case MAC_ACCEPT_SOCKET:
+			mpc->mpc_ops.mpo_accept_socket = mpe->mpe_function;
+			break;
 		case MAC_CREATE_SOCKET:
 			mpc->mpc_ops.mpo_create_socket = mpe->mpe_function;
 			break;
@@ -1251,6 +1254,13 @@
 }
 
 void
+mac_accept_socket(struct socket *listenso, struct socket *acceptso)
+{
+
+	MAC_PERFORM(accept_socket, listenso, acceptso);
+}
+
+void
 mac_create_socket(struct ucred *cred, struct socket *socket)
 {
 

==== //depot/projects/trustedbsd/mac/sys/sys/mac.h#95 (text+ko) ====

@@ -292,6 +292,7 @@
 	    struct ifnet *ifnet);
 
 /* Label creation events. */
+void	mac_accept_socket(struct socket *listenso, struct socket *acceptso);
 void	mac_create_bpfdesc(struct ucred *cred, struct bpf_d *bpf_d);
 void	mac_create_devfs_device(dev_t dev, struct mac *devicelabel);
 void	mac_create_devfs_directory(char *dirname, int dirnamelen,

==== //depot/projects/trustedbsd/mac/sys/sys/mac_policy.h#58 (text+ko) ====

@@ -87,6 +87,8 @@
 	/*
 	 * Labeling event operations: IPC objects.
 	 */
+	void	(*mpo_accept_socket)(struct socket *listenso,
+		    struct socket *acceptso);
 	void	(*mpo_create_mbuf_from_socket)(struct socket *so,
 		    struct mbuf *m);
 	void	(*mpo_create_socket)(struct ucred *cred,
@@ -226,6 +228,7 @@
 	MAC_CREATE_MOUNT,
 	MAC_CREATE_ROOT_MOUNT,
 	MAC_CREATE_MBUF_FROM_SOCKET,
+	MAC_ACCEPT_SOCKET,
 	MAC_CREATE_SOCKET,
 	MAC_RELABEL_SOCKET,
 	MAC_CREATE_BPFDESC,

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe p4-projects" in the body of the message

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200205012106.g41L6Vi80690>

Legal Notices | © 1995-2024 The FreeBSD Project. All rights reserved.

Contact