From owner-p4-projects  Wed Dec 18 10:54:31 2002
Delivered-To: p4-projects@freebsd.org
Received: by hub.freebsd.org (Postfix, from userid 32767)
	id 6AFEC37B404; Wed, 18 Dec 2002 10:54:28 -0800 (PST)
Delivered-To: perforce@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id DFB3A37B401
	for <perforce@freebsd.org>; Wed, 18 Dec 2002 10:54:27 -0800 (PST)
Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 8C9B943ED4
	for <perforce@freebsd.org>; Wed, 18 Dec 2002 10:54:27 -0800 (PST)
	(envelope-from green@freebsd.org)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.12.6/8.12.6) with ESMTP id gBIIsRmV066351
	for <perforce@freebsd.org>; Wed, 18 Dec 2002 10:54:27 -0800 (PST)
	(envelope-from green@freebsd.org)
Received: (from perforce@localhost)
	by repoman.freebsd.org (8.12.6/8.12.6/Submit) id gBIIsR2V066348
	for perforce@freebsd.org; Wed, 18 Dec 2002 10:54:27 -0800 (PST)
Date: Wed, 18 Dec 2002 10:54:27 -0800 (PST)
Message-Id: <200212181854.gBIIsR2V066348@repoman.freebsd.org>
X-Authentication-Warning: repoman.freebsd.org: perforce set sender to green@freebsd.org using -f
From: Brian Feldman <green@FreeBSD.org>
Subject: PERFORCE change 22473 for review
To: Perforce Change Reviews <perforce@freebsd.org>
Sender: owner-p4-projects@FreeBSD.ORG
Precedence: bulk
List-ID: <p4-projects.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20p4-projects>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20p4-projects>
X-Loop: FreeBSD.ORG

http://perforce.freebsd.org/chv.cgi?CH=22473

Change 22473 by green@green_laptop_2 on 2002/12/18 10:54:02

	Implement security_get_user_contexts() and
	get_ordered_context_list() in much less code than in the
	SELinux sid-based libsecure implementation.  This is mostly
	what's necessary for the authentication framework's SEBSD
	needs.

Affected files ...

.. //depot/projects/trustedbsd/mac/lib/libsebsd/Makefile#2 edit
.. //depot/projects/trustedbsd/mac/lib/libsebsd/sebsd_ss.h#4 edit
.. //depot/projects/trustedbsd/mac/lib/libsebsd/security_get_user_contexts.c#2 edit

Differences ...

==== //depot/projects/trustedbsd/mac/lib/libsebsd/Makefile#2 (text+ko) ====

@@ -10,7 +10,7 @@
 CFLAGS+=-I${.CURDIR}/../../sys
 NOMAN=
 
-SRCS=	system.c
+SRCS=	system.c security_get_user_contexts.c get_ordered_context_list.c
 INCS=	sebsd_context.h sebsd_ss.h sebsd_proc.h sebsd_fs.h sebsd.h \
 	sebsd_syscalls.h flask_types.h
 

==== //depot/projects/trustedbsd/mac/lib/libsebsd/sebsd_ss.h#4 (text+ko) ====

@@ -86,6 +86,11 @@
     				      const char *const **retcontexts,
 				      size_t *ncontexts);
 
+/* XXX: do we need its header file? */
+extern int get_ordered_context_list(const char *user_name,
+				    const char *from_context,
+				    char ***ordered_list,
+				    size_t *length);
 
 extern int security_mls(void);
 

==== //depot/projects/trustedbsd/mac/lib/libsebsd/security_get_user_contexts.c#2 (text+ko) ====

@@ -1,3 +1,39 @@
+/*-
+ * Copyright (c) 2002 Networks Associates Technologies, Inc.
+ * All rights reserved.
+ *
+ * This software was developed for the FreeBSD Project by NAI Labs, the
+ * Security Research Division of Network Associates, Inc. under
+ * DARPA/SPAWAR contract N66001-01-C-8035 ("CBOSS"), as part of the DARPA
+ * CHATS research program.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the above copyright
+ *    notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in the
+ *    documentation and/or other materials provided with the distribution.
+ * 3. The names of the authors may not be used to endorse or promote
+ *    products derived from this software without specific prior written
+ *    permission.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
+ * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
+ * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
+ * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
+ * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
+ * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+ * SUCH DAMAGE.
+ *
+ * $FreeBSD$
+ */
+
 #include <sys/types.h>
 #include <sys/sysctl.h>
 

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe p4-projects" in the body of the message