d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
e65b213768
freebsd-dev/sys/security
History
Robert Watson eb8c7f9992 Introduce two new MAC Framework and MAC policy entry points: 
mac_reflect_mbuf_icmp()
  mac_reflect_mbuf_tcp()

These entry points permit MAC policies to do "update in place"
changes to the labels on ICMP and TCP mbuf headers when an ICMP or
TCP response is generated to a packet outside of the context of
an existing socket.  For example, in respond to a ping or a RST
packet to a SYN on a closed port.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, Network Associates Laboratories
2003-08-21 18:21:22 +00:00
..
mac Introduce two new MAC Framework and MAC policy entry points: 2003-08-21 18:21:22 +00:00
mac_biba Implementations of mpo_check_vnode_deleteextattr() and 2003-08-21 14:34:54 +00:00
mac_bsdextended Implementations of mpo_check_vnode_deleteextattr() and 2003-08-21 14:34:54 +00:00
mac_ifoff Remove trailing whitespace. 2003-07-05 01:24:36 +00:00
mac_lomac Correct logic for filling out a "new" label during a credential 2003-08-21 18:07:52 +00:00
mac_mls Implementations of mpo_check_vnode_deleteextattr() and 2003-08-21 14:34:54 +00:00
mac_none mac_none is now the null policy, not a stub policy, so remove the 2003-08-21 16:19:17 +00:00
mac_partition Redesign the externalization APIs from the MAC Framework to 2003-06-23 01:26:34 +00:00
mac_portacl Including <sys/stdint.h> is (almost?) universally only to be able to use 2003-03-18 08:45:25 +00:00
mac_seeotheruids Trim "trustedbsd_" from the front of the policy module "short names"; 2003-03-27 19:26:39 +00:00
mac_stub Add stub entries for new MAC framework entry points: 2003-08-21 17:05:36 +00:00
mac_test Retrofit of mac_test regression and consistency test module for MAC 2003-08-21 17:28:45 +00:00