PERFORCE change 93032 for review

Robert Watson rwatson at FreeBSD.org
Thu Mar 9 03:10:16 PST 2006 

http://perforce.freebsd.org/chv.cgi?CH=93032

Change 93032 by rwatson at rwatson_peppercorn on 2006/03/09 11:09:13

	- Handle VMARKER in vnode access control switch by panicking: we
	  should not see access control checks on marker vnodes.
	
	- Rename sysv_sem entry points to their new, more consistent
	  naming scheme.
	
	- Remove sebsd_create_root_mount(), it was unused, and now isn't
	  defined in the MPO API.

Affected files ...

.. //depot/projects/trustedbsd/sebsd/sys/security/sebsd/sebsd.c#39 edit

Differences ...

==== //depot/projects/trustedbsd/sebsd/sys/security/sebsd/sebsd.c#39 (text+ko) ====

@@ -198,6 +198,8 @@
 	case VNON:
 	case VBAD:
 		return SECCLASS_FILE;
+	case VMARKER:
+		panic("vnode_type_to_security_class: VMARKER");
 	}
 
 	return SECCLASS_FILE;
@@ -582,7 +584,7 @@
 }
 
 static void
-sebsd_create_sysv_sema(struct ucred *cred, struct semid_kernel *semakptr,
+sebsd_create_sysv_sem(struct ucred *cred, struct semid_kernel *semakptr,
    struct label *semalabel)
 {
 	struct task_security_struct *tsec;
@@ -874,13 +876,6 @@
 	}
 }
 
-static void
-sebsd_create_root_mount(struct ucred *cred, struct mount *mp,
-    struct label *mntlabel, struct label *fslabel)
-{
-
-}
-
 static int
 sebsd_create_vnode_extattr(struct ucred *cred, struct mount *mp,
     struct label *fslabel, struct vnode *parent, struct label *parentlabel,
@@ -2373,7 +2368,7 @@
 	.mpo_init_ifnet_label = sebsd_init_network_label,
 	.mpo_init_sysv_msgmsg_label = sebsd_init_sysv_label,
 	.mpo_init_sysv_msgqueue_label = sebsd_init_sysv_label,
-	.mpo_init_sysv_sema_label = sebsd_init_sysv_label,
+	.mpo_init_sysv_sem_label = sebsd_init_sysv_label,
 	.mpo_init_sysv_shm_label = sebsd_init_sysv_label,
 	.mpo_init_ipq_label = sebsd_init_network_label_waitcheck,
 	.mpo_init_mbuf_label = sebsd_init_network_label_waitcheck,
@@ -2393,7 +2388,7 @@
 	.mpo_destroy_ifnet_label = sebsd_destroy_label,
 	.mpo_destroy_sysv_msgmsg_label = sebsd_destroy_label,
 	.mpo_destroy_sysv_msgqueue_label = sebsd_destroy_label,
-	.mpo_destroy_sysv_sema_label = sebsd_destroy_label,
+	.mpo_destroy_sysv_sem_label = sebsd_destroy_label,
 	.mpo_destroy_sysv_shm_label = sebsd_destroy_label,
 	.mpo_destroy_ipq_label = sebsd_destroy_label,
 	.mpo_destroy_mbuf_label = sebsd_destroy_label,
@@ -2453,7 +2448,7 @@
 	.mpo_create_file = sebsd_create_file,
 	.mpo_create_sysv_msgmsg = sebsd_create_sysv_msgmsg,
 	.mpo_create_sysv_msgqueue = sebsd_create_sysv_msgqueue,
-	.mpo_create_sysv_sema = sebsd_create_sysv_sema,
+	.mpo_create_sysv_sem = sebsd_create_sysv_sem,
 	.mpo_create_sysv_shm = sebsd_create_sysv_shm,
 	/* .mpo_create_mbuf_from_socket = sebsd_create_mbuf_from_socket, */
 	.mpo_create_mount = sebsd_create_mount,
@@ -2461,7 +2456,6 @@
 	.mpo_create_posix_sem = sebsd_create_posix_sem,
 	.mpo_create_proc0 = sebsd_create_proc0,
 	.mpo_create_proc1 = sebsd_create_proc1,
-	.mpo_create_root_mount = sebsd_create_root_mount,
 	/* .mpo_create_socket = sebsd_create_socket, */
 	/* .mpo_create_socket_from_socket = sebsd_create_socket_from_socket, */
 	.mpo_create_vnode_extattr = sebsd_create_vnode_extattr,
@@ -2572,7 +2566,7 @@
 	/*.mpo_set_socket_peer_from_socket = sebsd_set_socket_peer_from_socket,*/
 	.mpo_cleanup_sysv_msgmsg = sebsd_cleanup_sysv_label,
 	.mpo_cleanup_sysv_msgqueue = sebsd_cleanup_sysv_label,
-	.mpo_cleanup_sysv_sema = sebsd_cleanup_sysv_label,
+	.mpo_cleanup_sysv_sem = sebsd_cleanup_sysv_label,
 	.mpo_cleanup_sysv_shm = sebsd_cleanup_sysv_label,
 	.mpo_syscall = sebsd_syscall,
 };

More information about the trustedbsd-cvs mailing list