| mac_policy.h (db33c6f3ae9d1231087710068ee4ea5398aacca7) | mac_policy.h (ddb3eb4efe55e57c206f3534263c77b837aff1dc) |
|---|---|
| 1/*- 2 * Copyright (c) 1999-2002, 2007-2011 Robert N. M. Watson 3 * Copyright (c) 2001-2005 Networks Associates Technology, Inc. 4 * Copyright (c) 2005-2006 SPARTA, Inc. 5 * Copyright (c) 2008 Apple Inc. 6 * All rights reserved. 7 * 8 * This software was developed by Robert Watson for the TrustedBSD Project. --- 130 unchanged lines hidden (view full) --- 139typedef void (*mpo_cred_associate_nfsd_t)(struct ucred *cred); 140typedef int (*mpo_cred_check_relabel_t)(struct ucred *cred, 141 struct label *newlabel); 142typedef int (*mpo_cred_check_setaudit_t)(struct ucred *cred, 143 struct auditinfo *ai); 144typedef int (*mpo_cred_check_setaudit_addr_t)(struct ucred *cred, 145 struct auditinfo_addr *aia); 146typedef int (*mpo_cred_check_setauid_t)(struct ucred *cred, uid_t auid); | 1/*- 2 * Copyright (c) 1999-2002, 2007-2011 Robert N. M. Watson 3 * Copyright (c) 2001-2005 Networks Associates Technology, Inc. 4 * Copyright (c) 2005-2006 SPARTA, Inc. 5 * Copyright (c) 2008 Apple Inc. 6 * All rights reserved. 7 * 8 * This software was developed by Robert Watson for the TrustedBSD Project. --- 130 unchanged lines hidden (view full) --- 139typedef void (*mpo_cred_associate_nfsd_t)(struct ucred *cred); 140typedef int (*mpo_cred_check_relabel_t)(struct ucred *cred, 141 struct label *newlabel); 142typedef int (*mpo_cred_check_setaudit_t)(struct ucred *cred, 143 struct auditinfo *ai); 144typedef int (*mpo_cred_check_setaudit_addr_t)(struct ucred *cred, 145 struct auditinfo_addr *aia); 146typedef int (*mpo_cred_check_setauid_t)(struct ucred *cred, uid_t auid); |
| 147typedef void (*mpo_cred_setcred_enter_t)(void); 148typedef int (*mpo_cred_check_setcred_t)(u_int flags, 149 const struct ucred *old_cred, struct ucred *new_cred); 150typedef void (*mpo_cred_setcred_exit_t)(void); |
|
| 147typedef int (*mpo_cred_check_setegid_t)(struct ucred *cred, gid_t egid); 148typedef int (*mpo_cred_check_seteuid_t)(struct ucred *cred, uid_t euid); 149typedef int (*mpo_cred_check_setgid_t)(struct ucred *cred, gid_t gid); 150typedef int (*mpo_cred_check_setgroups_t)(struct ucred *cred, int ngroups, 151 gid_t *gidset); 152typedef int (*mpo_cred_check_setregid_t)(struct ucred *cred, gid_t rgid, 153 gid_t egid); 154typedef int (*mpo_cred_check_setresgid_t)(struct ucred *cred, gid_t rgid, --- 560 unchanged lines hidden (view full) --- 715 mpo_bpfdesc_destroy_label_t mpo_bpfdesc_destroy_label; 716 mpo_bpfdesc_init_label_t mpo_bpfdesc_init_label; 717 718 mpo_cred_associate_nfsd_t mpo_cred_associate_nfsd; 719 mpo_cred_check_relabel_t mpo_cred_check_relabel; 720 mpo_cred_check_setaudit_t mpo_cred_check_setaudit; 721 mpo_cred_check_setaudit_addr_t mpo_cred_check_setaudit_addr; 722 mpo_cred_check_setauid_t mpo_cred_check_setauid; | 151typedef int (*mpo_cred_check_setegid_t)(struct ucred *cred, gid_t egid); 152typedef int (*mpo_cred_check_seteuid_t)(struct ucred *cred, uid_t euid); 153typedef int (*mpo_cred_check_setgid_t)(struct ucred *cred, gid_t gid); 154typedef int (*mpo_cred_check_setgroups_t)(struct ucred *cred, int ngroups, 155 gid_t *gidset); 156typedef int (*mpo_cred_check_setregid_t)(struct ucred *cred, gid_t rgid, 157 gid_t egid); 158typedef int (*mpo_cred_check_setresgid_t)(struct ucred *cred, gid_t rgid, --- 560 unchanged lines hidden (view full) --- 719 mpo_bpfdesc_destroy_label_t mpo_bpfdesc_destroy_label; 720 mpo_bpfdesc_init_label_t mpo_bpfdesc_init_label; 721 722 mpo_cred_associate_nfsd_t mpo_cred_associate_nfsd; 723 mpo_cred_check_relabel_t mpo_cred_check_relabel; 724 mpo_cred_check_setaudit_t mpo_cred_check_setaudit; 725 mpo_cred_check_setaudit_addr_t mpo_cred_check_setaudit_addr; 726 mpo_cred_check_setauid_t mpo_cred_check_setauid; |
| 727 mpo_cred_setcred_enter_t mpo_cred_setcred_enter; 728 mpo_cred_check_setcred_t mpo_cred_check_setcred; 729 mpo_cred_setcred_exit_t mpo_cred_setcred_exit; |
|
| 723 mpo_cred_check_setuid_t mpo_cred_check_setuid; 724 mpo_cred_check_seteuid_t mpo_cred_check_seteuid; 725 mpo_cred_check_setgid_t mpo_cred_check_setgid; 726 mpo_cred_check_setegid_t mpo_cred_check_setegid; 727 mpo_cred_check_setgroups_t mpo_cred_check_setgroups; 728 mpo_cred_check_setreuid_t mpo_cred_check_setreuid; 729 mpo_cred_check_setregid_t mpo_cred_check_setregid; 730 mpo_cred_check_setresuid_t mpo_cred_check_setresuid; --- 297 unchanged lines hidden (view full) --- 1028 * exactly match. The following major versions have been defined to date: 1029 * 1030 * MAC version FreeBSD versions 1031 * 1 5.x 1032 * 2 6.x 1033 * 3 7.x 1034 * 4 8.x 1035 * 5 14.x | 730 mpo_cred_check_setuid_t mpo_cred_check_setuid; 731 mpo_cred_check_seteuid_t mpo_cred_check_seteuid; 732 mpo_cred_check_setgid_t mpo_cred_check_setgid; 733 mpo_cred_check_setegid_t mpo_cred_check_setegid; 734 mpo_cred_check_setgroups_t mpo_cred_check_setgroups; 735 mpo_cred_check_setreuid_t mpo_cred_check_setreuid; 736 mpo_cred_check_setregid_t mpo_cred_check_setregid; 737 mpo_cred_check_setresuid_t mpo_cred_check_setresuid; --- 297 unchanged lines hidden (view full) --- 1035 * exactly match. The following major versions have been defined to date: 1036 * 1037 * MAC version FreeBSD versions 1038 * 1 5.x 1039 * 2 6.x 1040 * 3 7.x 1041 * 4 8.x 1042 * 5 14.x |
| 1043 * 6 15.x |
|
| 1036 */ | 1044 */ |
| 1037#define MAC_VERSION 5 | 1045#define MAC_VERSION 6 |
| 1038 1039#define MAC_POLICY_SET(mpops, mpname, mpfullname, mpflags, privdata_wanted) \ 1040 static struct mac_policy_conf mpname##_mac_policy_conf = { \ 1041 .mpc_name = #mpname, \ 1042 .mpc_fullname = mpfullname, \ 1043 .mpc_ops = mpops, \ 1044 .mpc_loadtime_flags = mpflags, \ 1045 .mpc_field_off = privdata_wanted, \ --- 37 unchanged lines hidden --- | 1046 1047#define MAC_POLICY_SET(mpops, mpname, mpfullname, mpflags, privdata_wanted) \ 1048 static struct mac_policy_conf mpname##_mac_policy_conf = { \ 1049 .mpc_name = #mpname, \ 1050 .mpc_fullname = mpfullname, \ 1051 .mpc_ops = mpops, \ 1052 .mpc_loadtime_flags = mpflags, \ 1053 .mpc_field_off = privdata_wanted, \ --- 37 unchanged lines hidden --- |