summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--sys/security/mac_none/mac_none.c29
-rw-r--r--sys/security/mac_stub/mac_stub.c29
2 files changed, 58 insertions, 0 deletions
diff --git a/sys/security/mac_none/mac_none.c b/sys/security/mac_none/mac_none.c
index 913fba2..4bcf21f 100644
--- a/sys/security/mac_none/mac_none.c
+++ b/sys/security/mac_none/mac_none.c
@@ -617,6 +617,29 @@ mac_none_check_socket_visible(struct ucred *cred, struct socket *socket,
}
static int
+mac_none_check_system_reboot(struct ucred *cred, int how)
+{
+
+ return (0);
+}
+
+static int
+mac_none_check_system_swapon(struct ucred *cred, struct vnode *vp,
+ struct label *label)
+{
+
+ return (0);
+}
+
+static int
+mac_none_check_system_sysctl(struct ucred *cred, int *name, u_int namelen,
+ void *old, size_t *oldlenp, int inkernel, void *new, size_t newlen)
+{
+
+ return (0);
+}
+
+static int
mac_none_check_vnode_access(struct ucred *cred, struct vnode *vp,
struct label *label, mode_t flags)
{
@@ -1064,6 +1087,12 @@ static struct mac_policy_op_entry mac_none_ops[] =
(macop_t)mac_none_check_socket_relabel },
{ MAC_CHECK_SOCKET_VISIBLE,
(macop_t)mac_none_check_socket_visible },
+ { MAC_CHECK_SYSTEM_REBOOT,
+ (macop_t)mac_none_check_system_reboot },
+ { MAC_CHECK_SYSTEM_SWAPON,
+ (macop_t)mac_none_check_system_swapon },
+ { MAC_CHECK_SYSTEM_SYSCTL,
+ (macop_t)mac_none_check_system_sysctl },
{ MAC_CHECK_VNODE_ACCESS,
(macop_t)mac_none_check_vnode_access },
{ MAC_CHECK_VNODE_CHDIR,
diff --git a/sys/security/mac_stub/mac_stub.c b/sys/security/mac_stub/mac_stub.c
index 913fba2..4bcf21f 100644
--- a/sys/security/mac_stub/mac_stub.c
+++ b/sys/security/mac_stub/mac_stub.c
@@ -617,6 +617,29 @@ mac_none_check_socket_visible(struct ucred *cred, struct socket *socket,
}
static int
+mac_none_check_system_reboot(struct ucred *cred, int how)
+{
+
+ return (0);
+}
+
+static int
+mac_none_check_system_swapon(struct ucred *cred, struct vnode *vp,
+ struct label *label)
+{
+
+ return (0);
+}
+
+static int
+mac_none_check_system_sysctl(struct ucred *cred, int *name, u_int namelen,
+ void *old, size_t *oldlenp, int inkernel, void *new, size_t newlen)
+{
+
+ return (0);
+}
+
+static int
mac_none_check_vnode_access(struct ucred *cred, struct vnode *vp,
struct label *label, mode_t flags)
{
@@ -1064,6 +1087,12 @@ static struct mac_policy_op_entry mac_none_ops[] =
(macop_t)mac_none_check_socket_relabel },
{ MAC_CHECK_SOCKET_VISIBLE,
(macop_t)mac_none_check_socket_visible },
+ { MAC_CHECK_SYSTEM_REBOOT,
+ (macop_t)mac_none_check_system_reboot },
+ { MAC_CHECK_SYSTEM_SWAPON,
+ (macop_t)mac_none_check_system_swapon },
+ { MAC_CHECK_SYSTEM_SYSCTL,
+ (macop_t)mac_none_check_system_sysctl },
{ MAC_CHECK_VNODE_ACCESS,
(macop_t)mac_none_check_vnode_access },
{ MAC_CHECK_VNODE_CHDIR,
OpenPOWER on IntegriCloud