From owner-cvs-src@FreeBSD.ORG Wed May 4 10:39:51 2005 Return-Path: Delivered-To: cvs-src@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 46B4E16A4CE; Wed, 4 May 2005 10:39:51 +0000 (GMT) Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115]) by mx1.FreeBSD.org (Postfix) with ESMTP id C062A43D88; Wed, 4 May 2005 10:39:50 +0000 (GMT) (envelope-from rwatson@FreeBSD.org) Received: from repoman.freebsd.org (localhost [127.0.0.1]) by repoman.freebsd.org (8.13.1/8.13.1) with ESMTP id j44AdF1S036002; Wed, 4 May 2005 10:39:15 GMT (envelope-from rwatson@repoman.freebsd.org) Received: (from rwatson@localhost) by repoman.freebsd.org (8.13.1/8.13.1/Submit) id j44AdFHO036001; Wed, 4 May 2005 10:39:15 GMT (envelope-from rwatson) Message-Id: <200505041039.j44AdFHO036001@repoman.freebsd.org> From: Robert Watson Date: Wed, 4 May 2005 10:39:15 +0000 (UTC) To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org X-FreeBSD-CVS-Branch: HEAD Subject: cvs commit: src/sys/conf files src/sys/kern uipc_sem.c src/sys/modules/sem Makefile src/sys/posix4 ksem.h src/sys/sys mac.h mac_policy.h src/sys/security/mac mac_posix_sem.c src/sys/security/mac_biba mac_biba.c src/sys/security/mac_mls ... X-BeenThere: cvs-src@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: CVS commit messages for the src tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 May 2005 10:39:51 -0000 rwatson 2005-05-04 10:39:15 UTC FreeBSD src repository Modified files: sys/conf files sys/kern uipc_sem.c sys/modules/sem Makefile sys/posix4 ksem.h sys/sys mac.h mac_policy.h sys/security/mac_biba mac_biba.c sys/security/mac_mls mac_mls.c sys/security/mac_stub mac_stub.c sys/security/mac_test mac_test.c Added files: sys/security/mac mac_posix_sem.c Log: Introduce MAC Framework and MAC Policy entry points to label and control access to POSIX Semaphores: mac_init_posix_sem() Initialize label for POSIX semaphore mac_create_posix_sem() Create POSIX semaphore mac_destroy_posix_sem() Destroy POSIX semaphore mac_check_posix_sem_destroy() Check whether semaphore may be destroyed mac_check_posix_sem_getvalue() Check whether semaphore may be queried mac_check_possix_sem_open() Check whether semaphore may be opened mac_check_posix_sem_post() Check whether semaphore may be posted to mac_check_posix_sem_unlink() Check whether semaphore may be unlinked mac_check_posix_sem_wait() Check whether may wait on semaphore Update Biba, MLS, Stub, and Test policies to implement these entry points. For information flow policies, most semaphore operations are effectively read/write. Submitted by: Dandekar Hrishikesh Sponsored by: DARPA, McAfee, SPARTA Obtained from: TrustedBSD Project Revision Changes Path 1.1020 +1 -0 src/sys/conf/files 1.19 +56 -9 src/sys/kern/uipc_sem.c 1.2 +1 -1 src/sys/modules/sem/Makefile 1.2 +4 -0 src/sys/posix4/ksem.h 1.1 +181 -0 src/sys/security/mac/mac_posix_sem.c (new) 1.85 +59 -0 src/sys/security/mac_biba/mac_biba.c 1.70 +59 -0 src/sys/security/mac_mls/mac_mls.c 1.49 +66 -0 src/sys/security/mac_stub/mac_stub.c 1.58 +61 -0 src/sys/security/mac_test/mac_test.c 1.64 +15 -0 src/sys/sys/mac.h 1.63 +21 -0 src/sys/sys/mac_policy.h