From owner-p4-projects@FreeBSD.ORG  Sat Jul  9 19:41:06 2005
Return-Path: <owner-p4-projects@FreeBSD.ORG>
X-Original-To: p4-projects@freebsd.org
Delivered-To: p4-projects@freebsd.org
Received: by hub.freebsd.org (Postfix, from userid 32767)
	id F3C5D16A420; Sat,  9 Jul 2005 19:41:05 +0000 (GMT)
X-Original-To: perforce@freebsd.org
Delivered-To: perforce@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id B294D16A41C
	for <perforce@freebsd.org>; Sat,  9 Jul 2005 19:41:05 +0000 (GMT)
	(envelope-from bb+lists.freebsd.perforce@cyrus.watson.org)
Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 7C73343D53
	for <perforce@freebsd.org>; Sat,  9 Jul 2005 19:41:05 +0000 (GMT)
	(envelope-from bb+lists.freebsd.perforce@cyrus.watson.org)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.13.1/8.13.1) with ESMTP id j69Jf5hw085188
	for <perforce@freebsd.org>; Sat, 9 Jul 2005 19:41:05 GMT
	(envelope-from bb+lists.freebsd.perforce@cyrus.watson.org)
Received: (from perforce@localhost)
	by repoman.freebsd.org (8.13.1/8.13.1/Submit) id j69Jf5e9085185
	for perforce@freebsd.org; Sat, 9 Jul 2005 19:41:05 GMT
	(envelope-from bb+lists.freebsd.perforce@cyrus.watson.org)
Date: Sat, 9 Jul 2005 19:41:05 GMT
Message-Id: <200507091941.j69Jf5e9085185@repoman.freebsd.org>
X-Authentication-Warning: repoman.freebsd.org: perforce set sender to
	bb+lists.freebsd.perforce@cyrus.watson.org using -f
From: Robert Watson <rwatson@FreeBSD.org>
To: Perforce Change Reviews <perforce@freebsd.org>
Cc: 
Subject: PERFORCE change 79863 for review
X-BeenThere: p4-projects@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: p4 projects tree changes <p4-projects.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/p4-projects>,
	<mailto:p4-projects-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/p4-projects>
List-Post: <mailto:p4-projects@freebsd.org>
List-Help: <mailto:p4-projects-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/p4-projects>,
	<mailto:p4-projects-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 09 Jul 2005 19:41:06 -0000

http://perforce.freebsd.org/chv.cgi?CH=79863

Change 79863 by rwatson@rwatson_zoo on 2005/07/09 19:40:47

	Update SEBSD policy for a number of MAC Framework entry point
	changes:
	
	- dev_t has become struct cdev *. 
	- sysctl() check now accepts complete oid context.
	- mmap() check accepts a flags argument that includes information on    
	  whether the map will be shared.  Only if it's shared should we
	  check for write access (otherwise it's copy-on-write and private).
	- The mprotect() check is not currently implemented, and the
	  prototype now diffs from mmap(), so leave it commented out for now.
	
	Update the copyright to reflect recent work.

Affected files ...

.. //depot/projects/trustedbsd/sebsd/sys/security/sebsd/sebsd.c#37 edit

Differences ...

==== //depot/projects/trustedbsd/sebsd/sys/security/sebsd/sebsd.c#37 (text+ko) ====

@@ -1,5 +1,6 @@
 /*-
  * Copyright (c) 2002, 2003 Networks Associates Technology, Inc.
+ * Copyright (c) 2005 SPARTA, Inc.
  * All rights reserved.
  *
  * This software was developed for the FreeBSD Project by NAI Labs, the
@@ -7,6 +8,9 @@
  * DARPA/SPAWAR contract N66001-01-C-8035 ("CBOSS"), as part of the DARPA
  * CHATS research program.
  *
+ * This software was enhanced by SPARTA ISSO under SPAWAR contract 
+ * N66001-04-C-6019 ("SEFOS").
+ *
  * Redistribution and use in source and binary forms, with or without
  * modification, are permitted provided that the following conditions
  * are met:
@@ -620,8 +624,8 @@
 }
 
 static void
-sebsd_create_devfs_device(struct ucred *cr, struct mount *mp, dev_t dev,
-    struct devfs_dirent *devfs_dirent, struct label *label,
+sebsd_create_devfs_device(struct ucred *cr, struct mount *mp,
+    struct cdev *dev, struct devfs_dirent *devfs_dirent, struct label *label,
     const char *fullpath)
 {
 	char *path;
@@ -1838,9 +1842,8 @@
  * TBD: Sysctl access control is not currently implemented
  */
 static int
-sebsd_check_system_sysctl(struct ucred *cred, int *name,
-    u_int namelen, void *old, size_t *oldlenp, int inkernel, void *new,
-    size_t newlen)
+sebsd_check_system_sysctl(struct ucred *cred, struct sysctl_oid *oidp,
+    void *arg1, int arg2, struct sysctl_req *req)
 {
 
   return (0);
@@ -1859,7 +1862,7 @@
  */
 static int
 sebsd_check_vnode_mmap(struct ucred *cred, struct vnode *vp,
-    struct label *label, int newmapping)
+    struct label *label, int prot, int flags)
 {
 	access_vector_t av;
 
@@ -1870,10 +1873,10 @@
 	if (vp) {
 		av = FILE__READ;
 
-		if (newmapping & PROT_WRITE)
+		if (prot & PROT_WRITE && flags & MAP_SHARED)
 			av |= FILE__WRITE;
 
-		if (newmapping & PROT_EXEC)
+		if (prot & PROT_EXEC)
 			av |= FILE__EXECUTE;
 
 		return (vnode_has_perm(cred, vp, av, NULL));
@@ -2534,7 +2537,10 @@
 	.mpo_check_vnode_link = sebsd_check_vnode_link,
 	.mpo_check_vnode_lookup = sebsd_check_vnode_lookup,
 	.mpo_check_vnode_mmap = sebsd_check_vnode_mmap,
+#if 0
+	/* XXXMAC: mprotect() is not checked by the MAC Framework. */
 	.mpo_check_vnode_mprotect = sebsd_check_vnode_mmap,
+#endif
 	.mpo_check_vnode_open = sebsd_check_vnode_open,
 	.mpo_check_vnode_poll = sebsd_check_vnode_poll,
 	.mpo_check_vnode_read = sebsd_check_vnode_read,