From sds at tycho.nsa.gov  Thu Dec 18 11:14:24 2008
From: sds at tycho.nsa.gov (sds at tycho.nsa.gov)
Date: Thu, 18 Dec 2008 11:14:24 -0800 (PST)
Subject: [fmac-notify] [fmac-discuss] [PATCH v2] Replace
	PRIV_ALL/PRIV_FULLSET tests with
Message-ID: <200812181914.mBIJEOI0023434@oss-app2.opensolaris.org>

Author: Stephen Smalley <sds at tycho.nsa.gov>
Repository: /hg/fmac/fmac-gate
Latest revision: db26d3243ce7f95b379513caa80f6b4ac86ef06d
Total changesets: 1
Log message:
[fmac-discuss] [PATCH v2] Replace PRIV_ALL/PRIV_FULLSET tests with
 specific privileges, mediate secpolicy_require_set
Second version of a patch that replaces PRIV_ALL and PRIV_FULLSET checks
with specific privilege checks and introduces FMAC mediation of
secpolicy_require_set().  These changes complete the support for further
restricting the use of privileges via FMAC.

Changes since the prior version:
- Fixed firmware update comment.
- Introduce separate privileges for kmdb vs error_inject (I don't see
any callers of the latter, btw).
- Rename a couple of the new privileges for clarity.

In running the resulting system, I noticed that the initial ifconfig
invocation triggers a require_set check on all privileges when opening
the udp pseudo device.  If I understand correctly, this is because it
accesses the device before device policy has been loaded and the initial
default policy requires all privs for any device access.  Hopefully we
can alleviate that problem in some manner so that we don't have to allow
the ifconfig_t domain all privileges in policy, possibly by moving up
the loading of device policy.

(updated) Webrev available at:  http://cr.opensolaris.org/~sds/privall/

Files:
	update: usr/src/uts/common/dtrace/dtrace.c
	update: usr/src/uts/common/dtrace/fasttrap.c
	update: usr/src/uts/common/fmac/fmac.c
	update: usr/src/uts/common/os/policy.c
	update: usr/src/uts/common/os/priv_defs
	update: usr/src/uts/common/sys/fmac/fmac.h
	update: usr/src/uts/intel/io/dktp/dcdev/dadk.c


From john.weeks at sun.com  Fri Dec 19 07:53:04 2008
From: john.weeks at sun.com (john.weeks at sun.com)
Date: Fri, 19 Dec 2008 07:53:04 -0800 (PST)
Subject: [fmac-notify] Gate merge
Message-ID: <200812191553.mBJFr49Y011935@oss-app2.opensolaris.org>

Author: John Weeks <john.weeks at sun.com>
Repository: /hg/fmac/fmac-gate
Latest revision: cc909c8184bbc05604f6f4441c6c4f2707c3d5d5
Total changesets: 1
Log message:
Gate merge

Files:


From john.weeks at sun.com  Fri Dec 19 07:53:03 2008
From: john.weeks at sun.com (john.weeks at sun.com)
Date: Fri, 19 Dec 2008 07:53:03 -0800 (PST)
Subject: [fmac-notify] [PATCH] Add user space context routines
Message-ID: <200812191553.mBJFr3E4011932@oss-app2.opensolaris.org>

Author: John Weeks <john.weeks at sun.com>
Repository: /hg/fmac/fmac-gate
Latest revision: f609ea95b4c3700f0c575a60874f61c1c6b6a2e7
Total changesets: 1
Log message:
[PATCH] Add user space context routines

This patch adds user space functionality for manipulating security contexts and includes the following new libc routines:

#include <fmac/fmac_context.h>

fmac_context_t fmac_context_new(const char *);
void fmac_context_free(fmac_context_t);
char *fmac_context_str(fmac_context_t);
const char *fmac_context_user_get(fmac_context_t);
const char *fmac_context_role_get(fmac_context_t);
const char *fmac_context_type_get(fmac_context_t);
const char *fmac_context_range_get(fmac_context_t);
int fmac_context_user_set(fmac_context_t, const char *);
int fmac_context_type_set(fmac_context_t, const char *);
int fmac_context_role_set(fmac_context_t, const char *);
int fmac_context_range_set(fmac_context_t, const char *);

Files:
	create: usr/src/head/fmac/fmac_context.h
	create: usr/src/lib/libc/port/gen/fmac_context.c
	update: usr/src/head/Makefile
	update: usr/src/lib/libc/amd64/Makefile
	update: usr/src/lib/libc/i386/Makefile.com
	update: usr/src/lib/libc/port/llib-lc
	update: usr/src/lib/libc/port/mapfile-vers
	update: usr/src/lib/libc/sparc/Makefile
	update: usr/src/lib/libc/sparcv9/Makefile
	update: usr/src/pkgdefs/SUNWhea/prototype_com


From sds at tycho.nsa.gov  Fri Dec 19 10:36:50 2008
From: sds at tycho.nsa.gov (sds at tycho.nsa.gov)
Date: Fri, 19 Dec 2008 10:36:50 -0800 (PST)
Subject: [fmac-notify] [fmac-discuss] [PATCH] Change newrole to use the
	fmac_context
Message-ID: <200812191836.mBJIaoEb019020@oss-app2.opensolaris.org>

Author: Stephen Smalley <sds at tycho.nsa.gov>
Repository: /hg/fmac/fmac-gate
Latest revision: 4a27f1dbbae1d178b7aa09b9bdabdd96915c8adb
Total changesets: 1
Log message:
[fmac-discuss] [PATCH] Change newrole to use the fmac_context
 functions
Change newrole to use the fmac_context functions for manipulating the
security context.

Files:
	update: usr/src/cmd/fmac/newrole/newrole.c