summaryrefslogtreecommitdiffstats
path: root/sys/security/mac_lomac/mac_lomac.c
diff options
context:
space:
mode:
Diffstat (limited to 'sys/security/mac_lomac/mac_lomac.c')
-rw-r--r--sys/security/mac_lomac/mac_lomac.c22
1 files changed, 21 insertions, 1 deletions
diff --git a/sys/security/mac_lomac/mac_lomac.c b/sys/security/mac_lomac/mac_lomac.c
index 25d6273..e1b53ff 100644
--- a/sys/security/mac_lomac/mac_lomac.c
+++ b/sys/security/mac_lomac/mac_lomac.c
@@ -2981,5 +2981,25 @@ static struct mac_policy_ops lomac_ops =
.mpo_vnode_setlabel_extattr = lomac_vnode_setlabel_extattr,
};
+#define LOMAC_OBJECTS (MPC_OBJECT_CRED | \
+ /* MPC_OBJECT_PROC | */ \
+ MPC_OBJECT_VNODE | \
+ MPC_OBJECT_INPCB | \
+ MPC_OBJECT_SOCKET | \
+ MPC_OBJECT_DEVFS | \
+ MPC_OBJECT_MBUF | \
+ MPC_OBJECT_IPQ | \
+ MPC_OBJECT_IFNET | \
+ MPC_OBJECT_BPFDESC | \
+ MPC_OBJECT_PIPE | \
+ MPC_OBJECT_MOUNT | \
+ /* MPC_OBJECT_POSIXSEM | */ \
+ /* MPC_OBJECT_POSIXSHM | */ \
+ /* MPC_OBJECT_SYSVMSG | */ \
+ /* MPC_OBJECT_SYSVMSQ | */ \
+ /* MPC_OBJECT_SYSVSEM | */ \
+ /* MPC_OBJECT_SYSVSHM | */ \
+ MPC_OBJECT_SYNCACHE)
+
MAC_POLICY_SET(&lomac_ops, mac_lomac, "TrustedBSD MAC/LOMAC",
- MPC_LOADTIME_FLAG_NOTLATE | MPC_LOADTIME_FLAG_LABELMBUFS, &lomac_slot);
+ MPC_LOADTIME_FLAG_NOTLATE, &lomac_slot, LOMAC_OBJECTS);
OpenPOWER on IntegriCloud