Add a placeholder for the execve_mac() system call, similar to SELinux's

execve_secure() system call, which permits a process to pass in a label for a label change during exec. This permits SELinux to change the label for the resulting exec without a race following a manual label change on the process. Because this interface uses our general purpose MAC label abstraction, we call it execve_mac(), and wrap our port of SELinux's execve_secure() around it with appropriate sid mappings. Obtained from: TrustedBSD Project Sponsored by: DARPA, Network Associates Laboratories
author: rwatson <rwatson@FreeBSD.org> 2002-10-19 21:06:57 +0000
committer: rwatson <rwatson@FreeBSD.org> 2002-10-19 21:06:57 +0000
commit: f3cd77cf07c034f4fe24a432a18d80b63379f1b6 (patch)
tree: 8f273e59ba9a98f138e7e3d337421bc7a0ba6172 /sys/kern/syscalls.master
parent: ae81971478e11f94e571b00cea3b72e3a147afa0 (diff)
download: FreeBSD-src-f3cd77cf07c034f4fe24a432a18d80b63379f1b6.zip
FreeBSD-src-f3cd77cf07c034f4fe24a432a18d80b63379f1b6.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/sys/kern/syscalls.master b/sys/kern/syscalls.master
index 190405c..f1b5db6 100644
--- a/sys/kern/syscalls.master
+++ b/sys/kern/syscalls.master
@@ -598,6 +598,7 @@
 			    void *data, size_t nbytes); }
 414	STD	BSD	{ int extattr_delete_link(const char *path, \
 			    int attrnamespace, const char *attrname); }
+415	UNIMPL	BSD	__execve_mac
 
 ; Please copy any additions and changes to the following compatability tables:
 ; sys/ia64/ia32/syscalls.master  (take a best guess)
author	rwatson <rwatson@FreeBSD.org>	2002-10-19 21:06:57 +0000
committer	rwatson <rwatson@FreeBSD.org>	2002-10-19 21:06:57 +0000
commit	f3cd77cf07c034f4fe24a432a18d80b63379f1b6 (patch)
tree	8f273e59ba9a98f138e7e3d337421bc7a0ba6172 /sys/kern/syscalls.master
parent	ae81971478e11f94e571b00cea3b72e3a147afa0 (diff)
download	FreeBSD-src-f3cd77cf07c034f4fe24a432a18d80b63379f1b6.zip FreeBSD-src-f3cd77cf07c034f4fe24a432a18d80b63379f1b6.tar.gz