PERFORCE change 52186 for review
Robert Watson
rwatson at FreeBSD.org
Tue May 4 01:22:27 GMT 2004
http://perforce.freebsd.org/chv.cgi?CH=52186
Change 52186 by rwatson at rwatson_tislabs on 2004/05/03 18:21:57
Integrate TrustedBSD base branch from FreeBSD CVS HEAD:
Backout of FORCECONSPEED.
Loop back inpcb lock assertions in raw_append() and udp_append()
from trustedbsd_mac.
Loop back mac_mbuf_to_label() fix for NULL tags from trustedbsd_mac.
Loop back id(1) -M MAC label support from trustedbsd_mac.
Affected files ...
.. //depot/projects/trustedbsd/base/share/man/man4/sio.4#10 integrate
.. //depot/projects/trustedbsd/base/sys/conf/NOTES#51 integrate
.. //depot/projects/trustedbsd/base/sys/conf/options#51 integrate
.. //depot/projects/trustedbsd/base/sys/dev/sio/sio.c#33 integrate
.. //depot/projects/trustedbsd/base/sys/kern/kern_mac.c#55 integrate
.. //depot/projects/trustedbsd/base/sys/netinet/raw_ip.c#26 integrate
.. //depot/projects/trustedbsd/base/sys/netinet/udp_usrreq.c#27 integrate
.. //depot/projects/trustedbsd/base/sys/security/mac/mac_net.c#8 integrate
.. //depot/projects/trustedbsd/base/usr.bin/id/id.1#2 integrate
.. //depot/projects/trustedbsd/base/usr.bin/id/id.c#6 integrate
.. //depot/projects/trustedbsd/base/usr.sbin/watchdogd/watchdogd.c#5 integrate
Differences ...
==== //depot/projects/trustedbsd/base/share/man/man4/sio.4#10 (text+ko) ====
@@ -34,7 +34,7 @@
.\"
.\" from: @(#)dca.4 5.2 (Berkeley) 3/27/91
.\" from: com.4,v 1.1 1993/08/06 11:19:07 cgd Exp
-.\" $FreeBSD: src/share/man/man4/sio.4,v 1.51 2004/04/30 21:16:52 ambrisko Exp $
+.\" $FreeBSD: src/share/man/man4/sio.4,v 1.52 2004/05/03 22:35:27 ambrisko Exp $
.\"
.Dd July 10, 2002
.Dt SIO 4
@@ -178,8 +178,6 @@
PPS timestamping on CTS instead of DCD
.It 0x20000
device is assumed to use a 16650A-type (extended FIFO) chip
-.It 0x400000
-If no comconsole found then mark as a comconsole
.El
.Pp
Minor numbering:
==== //depot/projects/trustedbsd/base/sys/conf/NOTES#51 (text+ko) ====
@@ -1,4 +1,4 @@
-# $FreeBSD: src/sys/conf/NOTES,v 1.1224 2004/05/03 21:18:55 pjd Exp $
+# $FreeBSD: src/sys/conf/NOTES,v 1.1225 2004/05/03 22:35:27 ambrisko Exp $
#
# NOTES -- Lines that can be cut/pasted into kernel and hints configs.
#
@@ -1468,8 +1468,6 @@
options COM_MULTIPORT # Code for some cards with shared IRQs.
options CONSPEED=115200 # Speed for serial console
# (default 9600).
-options FORCECONSPEED # no matter what use CONSPEED for
- # console.
# `flags' specific to sio(4). See below for flags used by both sio(4) and
# uart(4).
==== //depot/projects/trustedbsd/base/sys/conf/options#51 (text+ko) ====
@@ -1,4 +1,4 @@
-# $FreeBSD: src/sys/conf/options,v 1.448 2004/05/03 21:18:56 pjd Exp $
+# $FreeBSD: src/sys/conf/options,v 1.449 2004/05/03 22:35:27 ambrisko Exp $
#
# On the handling of kernel options
#
@@ -522,7 +522,6 @@
# options for serial support
COM_ESP opt_sio.h
COM_MULTIPORT opt_sio.h
-FORCECONSPEED opt_sio.h
BREAK_TO_DEBUGGER opt_comconsole.h
ALT_BREAK_TO_DEBUGGER opt_comconsole.h
==== //depot/projects/trustedbsd/base/sys/dev/sio/sio.c#33 (text+ko) ====
@@ -31,7 +31,7 @@
*/
#include <sys/cdefs.h>
-__FBSDID("$FreeBSD: src/sys/dev/sio/sio.c,v 1.428 2004/04/30 21:16:52 ambrisko Exp $");
+__FBSDID("$FreeBSD: src/sys/dev/sio/sio.c,v 1.429 2004/05/03 22:35:28 ambrisko Exp $");
#include "opt_comconsole.h"
#include "opt_compat.h"
@@ -123,7 +123,6 @@
#define COM_PPSCTS(flags) ((flags) & 0x10000)
#define COM_ST16650A(flags) ((flags) & 0x20000)
#define COM_TI16754(flags) ((flags) & 0x200000)
-#define COM_ALTCONSOLE(flags) ((flags) & 0x400000)
#define sio_getreg(com, off) \
(bus_space_read_1((com)->bst, (com)->bsh, (off)))
@@ -750,7 +749,7 @@
sio_setreg(com, com_cfcr, CFCR_8BITS);
mtx_unlock_spin(&sio_lock);
bus_release_resource(dev, SYS_RES_IOPORT, rid, port);
- if (comconsole != -1 && iobase == siocniobase)
+ if (iobase == siocniobase)
result = 0;
if (result != 0) {
device_set_softc(dev, NULL);
@@ -796,7 +795,6 @@
mtx_unlock_spin(&sio_lock);
- result = 0;
irqs = irqmap[1] & ~irqmap[0];
if (bus_get_resource(idev, SYS_RES_IRQ, 0, &xirq, NULL) == 0 &&
((1 << xirq) & irqs) == 0) {
@@ -806,14 +804,14 @@
printf(
"sio%d: port may not be enabled\n",
device_get_unit(dev));
- result = ENXIO;
}
if (bootverbose)
printf("sio%d: irq maps: %#x %#x %#x %#x\n",
device_get_unit(dev),
irqmap[0], irqmap[1], irqmap[2], irqmap[3]);
- for (fn = 0; result == 0 && fn < sizeof failures; ++fn)
+ result = 0;
+ for (fn = 0; fn < sizeof failures; ++fn)
if (failures[fn]) {
sio_setreg(com, com_mcr, 0);
result = ENXIO;
@@ -828,7 +826,7 @@
break;
}
bus_release_resource(dev, SYS_RES_IOPORT, rid, port);
- if (comconsole != -1 && iobase == siocniobase)
+ if (iobase == siocniobase)
result = 0;
if (result != 0) {
device_set_softc(dev, NULL);
@@ -2816,9 +2814,6 @@
u_char cfcr;
cfcr = inb(iobase + com_cfcr);
- outb(iobase + com_cfcr, 0x0e);
- if (inb(iobase + com_cfcr) != 0x0e)
- return (0);
outb(iobase + com_cfcr, CFCR_DLAB | cfcr);
dlbl = inb(iobase + com_dlbl);
@@ -2831,12 +2826,7 @@
/* XXX there should be more sanity checking. */
if (divisor == 0)
return (CONSPEED);
-
-#ifdef FORCECONSPEED
- return (CONSPEED);
-#else
return (rclk / (16UL * divisor));
-#endif
}
#endif
@@ -2917,7 +2907,7 @@
speed_t boot_speed;
u_char cfcr;
u_int divisor;
- int s, unit, check_flags;
+ int s, unit;
struct siocnstate sp;
/*
@@ -2936,42 +2926,28 @@
*/
cp->cn_pri = CN_DEAD;
- siocniobase = 0;
- for(check_flags = 1; check_flags >= 0 && !siocniobase; check_flags--) {
- for (unit = 0; unit < 16; unit++) { /* XXX need to know how
- many */
- int flags;
+ for (unit = 0; unit < 16; unit++) { /* XXX need to know how many */
+ int flags;
+
+ if (resource_disabled("sio", unit))
+ continue;
+ if (resource_int_value("sio", unit, "flags", &flags))
+ continue;
+ if (COM_CONSOLE(flags) || COM_DEBUGGER(flags)) {
+ int port;
+ Port_t iobase;
- if (resource_disabled("sio", unit))
+ if (resource_int_value("sio", unit, "port", &port))
continue;
- if (resource_int_value("sio", unit, "flags", &flags))
- continue;
-
- if (!check_flags && COM_ALTCONSOLE(flags)
- && !siocniobase){
- flags |= 0x10;
+ iobase = port;
+ s = spltty();
+ if (boothowto & RB_SERIAL) {
+ boot_speed =
+ siocngetspeed(iobase, comdefaultrclk);
+ if (boot_speed)
+ comdefaultrate = boot_speed;
}
- if (COM_CONSOLE(flags) || COM_DEBUGGER(flags)) {
- int port;
- Port_t iobase;
-
- if (resource_int_value("sio", unit, "port",
- &port))
- continue;
- iobase = port;
- s = spltty();
- if (boothowto & RB_SERIAL) {
- boot_speed = siocngetspeed(iobase,
- comdefaultrclk);
- if (boot_speed)
- comdefaultrate = boot_speed;
- else {
- splx(s);
- continue;
- }
- }
-
/*
* Initialize the divisor latch. We can't rely on
* siocnopen() to do this the first time, since it
@@ -2981,37 +2957,34 @@
* need to set the speed in hardware so that
* switching it later is null.
*/
- cfcr = inb(iobase + com_cfcr);
- outb(iobase + com_cfcr, CFCR_DLAB | cfcr);
- divisor = siodivisor(comdefaultrclk, comdefaultrate);
- outb(iobase + com_dlbl, divisor & 0xff);
- outb(iobase + com_dlbh, divisor >> 8);
- outb(iobase + com_cfcr, cfcr);
+ cfcr = inb(iobase + com_cfcr);
+ outb(iobase + com_cfcr, CFCR_DLAB | cfcr);
+ divisor = siodivisor(comdefaultrclk, comdefaultrate);
+ outb(iobase + com_dlbl, divisor & 0xff);
+ outb(iobase + com_dlbh, divisor >> 8);
+ outb(iobase + com_cfcr, cfcr);
- siocnopen(&sp, iobase, comdefaultrate);
+ siocnopen(&sp, iobase, comdefaultrate);
- splx(s);
- if (!siocniobase && COM_CONSOLE(flags)
- && !COM_LLCONSOLE(flags)) {
- siocnset(cp, unit);
- cp->cn_pri = COM_FORCECONSOLE(flags)
- || boothowto & RB_SERIAL
- ? CN_REMOTE : CN_NORMAL;
- siocniobase = iobase;
- siocnunit = unit;
- }
- if (COM_DEBUGGER(flags)) {
- printf("sio%d: gdb debugging port\n",
- unit);
- siogdbiobase = iobase;
- siogdbunit = unit;
+ splx(s);
+ if (COM_CONSOLE(flags) && !COM_LLCONSOLE(flags)) {
+ siocnset(cp, unit);
+ cp->cn_pri = COM_FORCECONSOLE(flags)
+ || boothowto & RB_SERIAL
+ ? CN_REMOTE : CN_NORMAL;
+ siocniobase = iobase;
+ siocnunit = unit;
+ }
+ if (COM_DEBUGGER(flags)) {
+ printf("sio%d: gdb debugging port\n", unit);
+ siogdbiobase = iobase;
+ siogdbunit = unit;
#if DDB > 0
- siocnset(&gdbconsdev, unit);
- gdb_arg = &gdbconsdev;
- gdb_getc = siocngetc;
- gdb_putc = siocnputc;
+ siocnset(&gdbconsdev, unit);
+ gdb_arg = &gdbconsdev;
+ gdb_getc = siocngetc;
+ gdb_putc = siocnputc;
#endif
- }
}
}
}
==== //depot/projects/trustedbsd/base/sys/kern/kern_mac.c#55 (text+ko) ====
@@ -42,7 +42,7 @@
*/
#include <sys/cdefs.h>
-__FBSDID("$FreeBSD: src/sys/kern/kern_mac.c,v 1.111 2004/05/03 20:53:27 rwatson Exp $");
+__FBSDID("$FreeBSD: src/sys/kern/kern_mac.c,v 1.112 2004/05/03 22:54:46 rwatson Exp $");
#include "opt_mac.h"
#include "opt_devfs.h"
@@ -1231,4 +1231,4 @@
return (ENOSYS);
}
-#endif
+#endif /* !MAC */
==== //depot/projects/trustedbsd/base/sys/netinet/raw_ip.c#26 (text+ko) ====
@@ -27,7 +27,7 @@
* SUCH DAMAGE.
*
* @(#)raw_ip.c 8.7 (Berkeley) 5/15/95
- * $FreeBSD: src/sys/netinet/raw_ip.c,v 1.130 2004/05/03 17:15:34 maxim Exp $
+ * $FreeBSD: src/sys/netinet/raw_ip.c,v 1.131 2004/05/04 00:10:16 rwatson Exp $
*/
#include "opt_inet6.h"
@@ -142,6 +142,8 @@
{
int policyfail = 0;
+ INP_LOCK_ASSERT(last);
+
#if defined(IPSEC) || defined(FAST_IPSEC)
/* check AH/ESP integrity. */
if (ipsec4_in_reject(n, last)) {
==== //depot/projects/trustedbsd/base/sys/netinet/udp_usrreq.c#27 (text+ko) ====
@@ -27,7 +27,7 @@
* SUCH DAMAGE.
*
* @(#)udp_usrreq.c 8.6 (Berkeley) 5/23/95
- * $FreeBSD: src/sys/netinet/udp_usrreq.c,v 1.151 2004/04/07 20:46:14 imp Exp $
+ * $FreeBSD: src/sys/netinet/udp_usrreq.c,v 1.152 2004/05/04 01:08:15 rwatson Exp $
*/
#include "opt_ipsec.h"
@@ -449,6 +449,8 @@
struct sockaddr *append_sa;
struct mbuf *opts = 0;
+ INP_LOCK_ASSERT(last);
+
#if defined(IPSEC) || defined(FAST_IPSEC)
/* check AH/ESP integrity. */
if (ipsec4_in_reject(n, last)) {
==== //depot/projects/trustedbsd/base/sys/security/mac/mac_net.c#8 (text+ko) ====
@@ -35,7 +35,7 @@
*/
#include <sys/cdefs.h>
-__FBSDID("$FreeBSD: src/sys/security/mac/mac_net.c,v 1.114 2004/02/29 15:33:56 rwatson Exp $");
+__FBSDID("$FreeBSD: src/sys/security/mac/mac_net.c,v 1.115 2004/05/03 23:37:48 rwatson Exp $");
#include "opt_mac.h"
@@ -89,9 +89,12 @@
struct m_tag *tag;
struct label *label;
+ if (mbuf == NULL)
+ return (NULL);
tag = m_tag_find(mbuf, PACKET_TAG_MACLABEL, NULL);
+ if (tag == NULL)
+ return (NULL);
label = (struct label *)(tag+1);
-
return (label);
}
==== //depot/projects/trustedbsd/base/usr.bin/id/id.1#2 (text+ko) ====
@@ -33,7 +33,7 @@
.\" SUCH DAMAGE.
.\"
.\" @(#)id.1 8.1 (Berkeley) 6/6/93
-.\" $FreeBSD: src/usr.bin/id/id.1,v 1.11 2001/08/15 09:09:41 ru Exp $
+.\" $FreeBSD: src/usr.bin/id/id.1,v 1.12 2004/05/03 22:50:23 rwatson Exp $
.\"
.Dd June 6, 1993
.Dt ID 1
@@ -48,6 +48,8 @@
.Fl G Op Fl n
.Op Ar user
.Nm
+.Fl M
+.Nm
.Fl P
.Op Ar user
.Nm
@@ -78,6 +80,8 @@
.It Fl G
Display the different group IDs (effective, real and supplementary)
as white-space separated numbers, in no particular order.
+.It Fl M
+Display the MAC label of the current prorcess.
.It Fl P
Display the id as a password file entry.
.It Fl g
==== //depot/projects/trustedbsd/base/usr.bin/id/id.c#6 (text+ko) ====
@@ -43,11 +43,13 @@
#endif
#endif /* not lint */
#include <sys/cdefs.h>
-__FBSDID("$FreeBSD: src/usr.bin/id/id.c,v 1.19 2002/09/04 23:29:02 dwmalone Exp $");
+__FBSDID("$FreeBSD: src/usr.bin/id/id.c,v 1.20 2004/05/03 22:50:23 rwatson Exp $");
#include <sys/param.h>
+#include <sys/mac.h>
#include <err.h>
+#include <errno.h>
#include <grp.h>
#include <pwd.h>
#include <stdio.h>
@@ -59,6 +61,7 @@
void pline(struct passwd *);
void pretty(struct passwd *);
void group(struct passwd *, int);
+void maclabel(void);
void usage(void);
void user(struct passwd *);
struct passwd *
@@ -71,10 +74,10 @@
{
struct group *gr;
struct passwd *pw;
- int Gflag, Pflag, ch, gflag, id, nflag, pflag, rflag, uflag;
+ int Gflag, Mflag, Pflag, ch, gflag, id, nflag, pflag, rflag, uflag;
const char *myname;
- Gflag = Pflag = gflag = nflag = pflag = rflag = uflag = 0;
+ Gflag = Mflag = Pflag = gflag = nflag = pflag = rflag = uflag = 0;
myname = strrchr(argv[0], '/');
myname = (myname != NULL) ? myname + 1 : argv[0];
@@ -88,11 +91,14 @@
}
while ((ch = getopt(argc, argv,
- (isgroups || iswhoami) ? "" : "PGgnpru")) != -1)
+ (isgroups || iswhoami) ? "" : "PGMgnpru")) != -1)
switch(ch) {
case 'G':
Gflag = 1;
break;
+ case 'M':
+ Mflag = 1;
+ break;
case 'P':
Pflag = 1;
break;
@@ -134,6 +140,9 @@
pw = *argv ? who(*argv) : NULL;
+ if (Mflag && pw != NULL)
+ usage();
+
if (gflag) {
id = pw ? pw->pw_gid : rflag ? getgid() : getegid();
if (nflag && (gr = getgrgid(id)))
@@ -157,6 +166,11 @@
exit(0);
}
+ if (Mflag) {
+ maclabel();
+ exit(0);
+ }
+
if (Pflag) {
pline(pw);
exit(0);
@@ -317,6 +331,30 @@
(void)printf("\n");
}
+void
+maclabel(void)
+{
+ char *string;
+ mac_t label;
+ int error;
+
+ error = mac_prepare_process_label(&label);
+ if (error == -1)
+ errx(1, "mac_prepare_type: %s", strerror(errno));
+
+ error = mac_get_proc(label);
+ if (error == -1)
+ errx(1, "mac_get_proc: %s", strerror(errno));
+
+ error = mac_to_text(label, &string);
+ if (error == -1)
+ errx(1, "mac_to_text: %s", strerror(errno));
+
+ (void)printf("%s\n", string);
+ mac_free(label);
+ free(string);
+}
+
struct passwd *
who(char *u)
{
@@ -366,6 +404,7 @@
(void)fprintf(stderr, "%s\n%s\n%s\n%s\n%s\n%s\n",
"usage: id [user]",
" id -G [-n] [user]",
+ " id -M",
" id -P [user]",
" id -g [-nr] [user]",
" id -p [user]",
==== //depot/projects/trustedbsd/base/usr.sbin/watchdogd/watchdogd.c#5 (text+ko) ====
@@ -1,5 +1,5 @@
/*
- * Copyright (c) 2003 Sean M. Kelly <smkelly at FreeBSD.org>
+ * Copyright (c) 2003-2004 Sean M. Kelly <smkelly at FreeBSD.org>
* All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
@@ -29,7 +29,7 @@
*/
#include <sys/types.h>
-__FBSDID("$FreeBSD: src/usr.sbin/watchdogd/watchdogd.c,v 1.6 2004/04/28 07:35:03 smkelly Exp $");
+__FBSDID("$FreeBSD: src/usr.sbin/watchdogd/watchdogd.c,v 1.7 2004/05/03 21:41:02 smkelly Exp $");
#include <sys/rtprio.h>
#include <sys/stat.h>
To Unsubscribe: send mail to majordomo at trustedbsd.org
with "unsubscribe trustedbsd-cvs" in the body of the message
More information about the trustedbsd-cvs
mailing list