From owner-p4-projects@FreeBSD.ORG  Wed Aug 27 12:51:56 2003
Return-Path: <owner-p4-projects@FreeBSD.ORG>
Delivered-To: p4-projects@freebsd.org
Received: by hub.freebsd.org (Postfix, from userid 32767)
	id B8AF716A4C1; Wed, 27 Aug 2003 12:51:56 -0700 (PDT)
Delivered-To: perforce@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 9267D16A4BF
	for <perforce@freebsd.org>; Wed, 27 Aug 2003 12:51:56 -0700 (PDT)
Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115])
	by mx1.FreeBSD.org (Postfix) with ESMTP id DA50A43F85
	for <perforce@freebsd.org>; Wed, 27 Aug 2003 12:51:55 -0700 (PDT)
	(envelope-from cvance@nailabs.com)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.12.6/8.12.6) with ESMTP id h7RJpt0U018901
	for <perforce@freebsd.org>; Wed, 27 Aug 2003 12:51:55 -0700 (PDT)
	(envelope-from cvance@nailabs.com)
Received: (from perforce@localhost)
	by repoman.freebsd.org (8.12.6/8.12.6/Submit) id h7RJptFT018898
	for perforce@freebsd.org; Wed, 27 Aug 2003 12:51:55 -0700 (PDT)
Date: Wed, 27 Aug 2003 12:51:55 -0700 (PDT)
Message-Id: <200308271951.h7RJptFT018898@repoman.freebsd.org>
X-Authentication-Warning: repoman.freebsd.org: perforce set sender to
	cvance@nailabs.com using -f
From: Chris Vance <cvance@FreeBSD.org>
To: Perforce Change Reviews <perforce@freebsd.org>
Subject: PERFORCE change 37033 for review
X-BeenThere: p4-projects@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: p4 projects tree changes <p4-projects.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/p4-projects>,
	<mailto:p4-projects-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/p4-projects>
List-Post: <mailto:p4-projects@freebsd.org>
List-Help: <mailto:p4-projects-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/p4-projects>,
	<mailto:p4-projects-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 27 Aug 2003 19:51:57 -0000

http://perforce.freebsd.org/chv.cgi?CH=37033

Change 37033 by cvance@cvance_release on 2003/08/27 12:51:09

	Add support for the get_default_type call, when provided with a
	user role, it will attempt to find a corresponding type.  This 
	source was "ported" from SELinux; essentially no changes were made.

Affected files ...

.. //depot/projects/trustedbsd/sebsd/lib/libsebsd/Makefile#4 edit
.. //depot/projects/trustedbsd/sebsd/lib/libsebsd/get_default_type.c#1 add
.. //depot/projects/trustedbsd/sebsd/lib/libsebsd/sebsd.h#3 edit

Differences ...

==== //depot/projects/trustedbsd/sebsd/lib/libsebsd/Makefile#4 (text+ko) ====

@@ -14,7 +14,8 @@
 
 SRCS=	system.c security_get_user_contexts.c get_ordered_context_list.c \
 	getseccontext.c query_user_context.c security_change_context.c \
-	string_to_security_class.c security_compute_av.c context.c
+	string_to_security_class.c security_compute_av.c context.c \
+	get_default_type.c
 INCS=	sebsd_context.h sebsd_ss.h sebsd_proc.h sebsd_fs.h sebsd.h \
 	sebsd_syscalls.h flask_types.h
 

==== //depot/projects/trustedbsd/sebsd/lib/libsebsd/sebsd.h#3 (text+ko) ====

@@ -70,4 +70,14 @@
 int security_compute_av(struct security_query *query, 
 	    struct security_response *response);
 
+
+
+/* 
+ * Get the default type (domain) for 'role' and set 'type' to refer to it.
+ * Caller must free via free().
+ * Return 0 on success or -1 otherwise. 
+ */
+#define _DEFTYPE_PATH "/etc/security/sebsd/default_type"
+int get_default_type (const char* role, char** type);
+
 #endif /* _SEBSD_H */