cvs commit: src/sys/coda coda_vfsops.c src/sys/conf files options src/sys/contrib/softupdates ffs_softdep.c src/sys/i386/conf LINT src/sys/ufs/ffs ffs_alloc.c ffs_inode.c ffs_vfsops.c ffs_vnops.c src/sys/ufs/mfs mfs_vfsops.c src/sys/ufs/ufs extattr.h ... (fwd)

Robert Watson robert at cyrus.watson.org
Sat Apr 15 04:24:25 GMT 2000


FYI: extended attribute support was committed to the base FreeBSD CVS repo
this evening--a few more things have to go in (userland utils, man pages
for userland utils), but otherwise it's there for people to work with.  A
few bugs will no doubt need to work themselves out :-).

Now that this framework is in place, we can move pretty quickly towards
introducing support for binaries with capabilities set, and on-disk
storage of ACLs and MAC labels.

For those not familiar with the FreeBSD development environment, FreeBSD
maintains all source in a CVS repository with a number of branches.  The
source head is named 5.0-CURRENT (currently :-), there are also two other
live development branches, RELENG_4 which is the 4.x-STABLE branch, and
RELENG_3, which is the 4.x-STABLE branch.  Releases are typically tags
along a RELENG_x branch.  I currently have no plans to backport extended
attribute support to any RELENG_x branch; at some point in the future, a
RELENG_5 branch will be spun off, and at that point the base FreeBSD
releases will include extended attributes.  At that point, they will also
include many other TrustedBSD features.

For those wanting to work with the current committed code base (and the
base against which we currently distribute patches, such as
capability/acl/mac/auditing), please check out the FreeBSD development
head--this can be done using authenticated CVS for FreeBSD committers,
anoncvs, or using cvsup, a high speed checkout/repo mirroring tool that is
far more scalable than CVS itself.  Information about all this is
available on the FreeBSD web page.

  Robert N M Watson 

robert at fledge.watson.org              http://www.watson.org/~robert/
PGP key fingerprint: AF B5 5F FF A6 4A 79 37  ED 5F 55 E9 58 04 6A B1
TIS Labs at Network Associates, Safeport Network Services

---------- Forwarded message ----------
Date: Fri, 14 Apr 2000 20:34:29 -0700 (PDT)
From: Robert Watson <rwatson at FreeBSD.org>
To: cvs-committers at FreeBSD.org, cvs-all at FreeBSD.org
Subject: cvs commit: src/sys/coda coda_vfsops.c src/sys/conf files options         src/sys/contrib/softupdates ffs_softdep.c src/sys/i386/conf LINT         src/sys/ufs/ffs ffs_alloc.c ffs_inode.c ffs_vfsops.c ffs_vnops.c         src/sys/ufs/mfs mfs_vfsops.c src/sys/ufs/ufs extattr.h ...

rwatson     2000/04/14 20:34:29 PDT

  Modified files:
    sys/coda             coda_vfsops.c 
    sys/conf             files options 
    sys/contrib/softupdates ffs_softdep.c 
    sys/i386/conf        LINT 
    sys/ufs/ffs          ffs_alloc.c ffs_inode.c ffs_vfsops.c 
                         ffs_vnops.c 
    sys/ufs/mfs          mfs_vfsops.c 
    sys/ufs/ufs          ufs_bmap.c ufs_inode.c ufs_lookup.c 
                         ufs_quota.c ufs_vfsops.c ufs_vnops.c 
                         ufsmount.h 
  Added files:
    sys/ufs/ufs          extattr.h ufs_extattr.c 
  Log:
  Introduce extended attribute support for FFS, allowing arbitrary
  (name, value) pairs to be associated with inodes.  This support is
  used for ACLs, MAC labels, and Capabilities in the TrustedBSD
  security extensions, which are currently under development.
  
  In this implementation, attributes are backed to data vnodes in the
  style of the quota support in FFS.  Support for FFS extended
  attributes may be enabled using the FFS_EXTATTR kernel option
  (disabled by default).  Userland utilities and man pages will be
  committed in the next batch.  VFS interfaces and man pages have
  been in the repo since 4.0-RELEASE and are unchanged.
  
  o ufs/ufs/extattr.h: UFS-specific extattr defines
  o ufs/ufs/ufs_extattr.c: bulk of support routines
  o ufs/{ufs,ffs,mfs}/*.[ch]: hooks and extattr.h includes
  o contrib/softupdates/ffs_softdep.c: extattr.h includes
  o conf/options, conf/files, i386/conf/LINT: added FFS_EXTATTR
  
  o coda/coda_vfsops.c: XXX required extattr.h due to ufsmount.h
  (This should not be the case, and will be fixed in a future commit)
  
  Currently attributes are not supported in MFS.  This will be fixed.
  
  Reviewed by:	adrian, bp, freebsd-fs, other unthanked souls
  Obtained from:	TrustedBSD Project
  
  Revision  Changes    Path
  1.25      +2 -1      src/sys/coda/coda_vfsops.c
  1.353     +2 -1      src/sys/conf/files
  1.197     +6 -1      src/sys/conf/options
  1.61      +2 -1      src/sys/contrib/softupdates/ffs_softdep.c
  1.768     +6 -1      src/sys/i386/conf/LINT
  1.66      +2 -1      src/sys/ufs/ffs/ffs_alloc.c
  1.60      +2 -1      src/sys/ufs/ffs/ffs_inode.c
  1.118     +15 -1     src/sys/ufs/ffs/ffs_vfsops.c
  1.65      +8 -1      src/sys/ufs/ffs/ffs_vnops.c
  1.82      +2 -1      src/sys/ufs/mfs/mfs_vfsops.c
  1.39      +2 -1      src/sys/ufs/ufs/ufs_bmap.c
  1.26      +6 -1      src/sys/ufs/ufs/ufs_inode.c
  1.36      +2 -1      src/sys/ufs/ufs/ufs_lookup.c
  1.28      +2 -1      src/sys/ufs/ufs/ufs_quota.c
  1.18      +2 -1      src/sys/ufs/ufs/ufs_vfsops.c
  1.134     +2 -1      src/sys/ufs/ufs/ufs_vnops.c
  1.18      +3 -1      src/sys/ufs/ufs/ufsmount.h



To Unsubscribe: send mail to majordomo at trustedbsd.org
with "unsubscribe trustedbsd-discuss" in the body of the message



More information about the trustedbsd-discuss mailing list