upstream/opnsense-src
1
0
Fork 0
mirror of https://github.com/opnsense/src.git synced 2026-05-28 04:12:45 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

Improve comments for label data structure.

Browse source
This commit is contained in:
Robert Watson 2006-07-23 19:26:32 +00:00
parent 27a9d57fed
commit ba68fd5b2f
1 changed files with 10 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
sys/sys/_label.h
View file

@ -1,5 +1,5 @@
/*-
* Copyright (c) 1999-2002 Robert N. M. Watson
* Copyright (c) 1999-2002, 2006 Robert N. M. Watson
* Copyright (c) 2001-2002 Networks Associates Technology, Inc.
* All rights reserved.
*
@ -37,6 +37,15 @@
#define _SYS__LABEL_H_
/*
* Definition for the 'struct label' in-kernel MAC label data structure.
* In general, struct label pointers are embedded in kernel data structures
* representing objects that may be labeled (and protected). It is not
* directly embedded in order to avoid encoding this definition into modules
* unnecessarily. Currently, only the MAC Framework and MAC policy modules
* dereference this data structure. In the future, we would like struct
* label to also be opaque to policies. Each policy requesting a label slot
* can store one long or void pointer in their slot.
*
* XXXMAC: This shouldn't be exported to userland, but is because of ucred.h
* and various other messes.
*/