xref: /illumos-gate/usr/src/uts/common/sys/policy.h (revision ef8846857fcf954444cdc77e72249afef48377d2)
1 /*
2  * CDDL HEADER START
3  *
4  * The contents of this file are subject to the terms of the
5  * Common Development and Distribution License (the "License").
6  * You may not use this file except in compliance with the License.
7  *
8  * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
9  * or http://www.opensolaris.org/os/licensing.
10  * See the License for the specific language governing permissions
11  * and limitations under the License.
12  *
13  * When distributing Covered Code, include this CDDL HEADER in each
14  * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
15  * If applicable, add the following below this CDDL HEADER, with the
16  * fields enclosed by brackets "[]" replaced with your own identifying
17  * information: Portions Copyright [yyyy] [name of copyright owner]
18  *
19  * CDDL HEADER END
20  */
21 /*
22  * Copyright 2007 Sun Microsystems, Inc.  All rights reserved.
23  * Use is subject to license terms.
24  */
25 
26 #ifndef	_SYS_POLICY_H
27 #define	_SYS_POLICY_H
28 
29 #pragma ident	"%Z%%M%	%I%	%E% SMI"	/* TSOL 8 */
30 
31 #include <sys/types.h>
32 #include <sys/cred.h>
33 #include <sys/vnode.h>
34 #include <sys/fs/snode.h>
35 
36 #ifdef	__cplusplus
37 extern "C" {
38 #endif
39 
40 #ifdef _KERNEL
41 
42 #ifndef _IN_PORT_T
43 #define	_IN_PORT_T
44 typedef uint16_t in_port_t;
45 #endif
46 
47 /*
48  * Policy routines; in case we check privileges in-line.
49  *
50  * priv_policy
51  *		privilege debugging
52  *		audits success & failure
53  *		returns 0 on success, error on failure
54  *
55  * priv_policy_choice
56  *		determines extend of operation
57  *		audit on success
58  * 		returns a boolean_t indicating success (B_TRUE) or failure.
59  *
60  * priv_policy_only
61  *		when auditing is in appropriate (interrupt context)
62  *		to determine context of operation
63  * 		returns a boolean_t indicating success (B_TRUE) or failure.
64  *
65  */
66 int priv_policy(const cred_t *, int, boolean_t, int, const char *);
67 boolean_t priv_policy_only(const cred_t *, int, boolean_t);
68 boolean_t priv_policy_choice(const cred_t *, int, boolean_t);
69 
70 struct kipc_perm;
71 struct vfs;
72 struct proc;
73 
74 int secpolicy_acct(const cred_t *);
75 int secpolicy_allow_setid(const cred_t *, uid_t, boolean_t);
76 int secpolicy_audit_config(const cred_t *);
77 int secpolicy_audit_getattr(const cred_t *);
78 int secpolicy_audit_modify(const cred_t *);
79 int secpolicy_blacklist(const cred_t *);
80 int secpolicy_chroot(const cred_t *);
81 int secpolicy_clock_highres(const cred_t *);
82 int secpolicy_console(const cred_t *);
83 int secpolicy_contract_observer(const cred_t *, struct contract *);
84 boolean_t secpolicy_contract_observer_choice(const cred_t *);
85 int secpolicy_contract_event(const cred_t *);
86 boolean_t secpolicy_contract_event_choice(const cred_t *);
87 int secpolicy_coreadm(const cred_t *);
88 int secpolicy_cpc_cpu(const cred_t *);
89 int secpolicy_dispadm(const cred_t *);
90 int secpolicy_error_inject(const cred_t *);
91 int secpolicy_excl_open(const cred_t *);
92 int secpolicy_fs_mount(cred_t *, vnode_t *, struct vfs *);
93 int secpolicy_fs_unmount(cred_t *, struct vfs *);
94 int secpolicy_fs_config(const cred_t *, const struct vfs *);
95 int secpolicy_fs_linkdir(const cred_t *, const struct vfs *);
96 int secpolicy_fs_minfree(const cred_t *, const struct vfs *);
97 int secpolicy_fs_quota(const cred_t *, const struct vfs *);
98 int secpolicy_ip(const cred_t *, int, boolean_t);
99 int secpolicy_ip_config(const cred_t *, boolean_t);
100 int secpolicy_ipc_access(const cred_t *, const struct kipc_perm *, mode_t);
101 int secpolicy_ipc_config(const cred_t *);
102 int secpolicy_ipc_owner(const cred_t *, const struct kipc_perm *);
103 int secpolicy_kmdb(const cred_t *);
104 int secpolicy_lock_memory(const cred_t *);
105 int secpolicy_modctl(const cred_t *, int);
106 int secpolicy_net(const cred_t *, int, boolean_t);
107 int secpolicy_net_bindmlp(const cred_t *);
108 int secpolicy_net_config(const cred_t *, boolean_t);
109 int secpolicy_net_icmpaccess(const cred_t *);
110 int secpolicy_net_mac_aware(const cred_t *);
111 int secpolicy_net_privaddr(const cred_t *, in_port_t);
112 int secpolicy_net_rawaccess(const cred_t *);
113 boolean_t secpolicy_net_reply_equal(const cred_t *);
114 int secpolicy_newproc(const cred_t *);
115 int secpolicy_nfs(const cred_t *);
116 int secpolicy_pcfs_modify_bootpartition(const cred_t *);
117 int secpolicy_ponline(const cred_t *);
118 int secpolicy_pool(const cred_t *);
119 int secpolicy_power_mgmt(const cred_t *);
120 int secpolicy_proc_access(const cred_t *);
121 int secpolicy_proc_excl_open(const cred_t *);
122 int secpolicy_proc_owner(const cred_t *, const cred_t *, int);
123 int secpolicy_proc_zone(const cred_t *);
124 int secpolicy_pset(const cred_t *);
125 int secpolicy_rctlsys(const cred_t *, boolean_t);
126 int secpolicy_resource(const cred_t *);
127 int secpolicy_rpcmod_open(const cred_t *);
128 int secpolicy_rsm_access(const cred_t *, uid_t, mode_t);
129 int secpolicy_setpriority(const cred_t *);
130 int secpolicy_settime(const cred_t *);
131 int secpolicy_spec_open(const cred_t *, struct vnode *, int);
132 int secpolicy_sti(const cred_t *);
133 int secpolicy_swapctl(const cred_t *);
134 int secpolicy_sys_config(const cred_t *, boolean_t);
135 int secpolicy_zone_admin(const cred_t *, boolean_t);
136 int secpolicy_zone_config(const cred_t *);
137 int secpolicy_sys_devices(const cred_t *);
138 int secpolicy_systeminfo(const cred_t *);
139 int secpolicy_tasksys(const cred_t *);
140 int secpolicy_vnode_access(const cred_t *, vnode_t *, uid_t, mode_t);
141 int secpolicy_vnode_create_gid(const cred_t *);
142 int secpolicy_vnode_owner(const cred_t *, uid_t);
143 int secpolicy_vnode_remove(const cred_t *);
144 int secpolicy_vnode_setdac(const cred_t *, uid_t);
145 int secpolicy_vnode_setid_retain(const cred_t *, boolean_t);
146 int secpolicy_vnode_setids_setgids(const cred_t *, gid_t);
147 int secpolicy_vnode_stky_modify(const cred_t *);
148 int secpolicy_zinject(const cred_t *);
149 int secpolicy_zfs(const cred_t *);
150 void secpolicy_setid_clear(vattr_t *, cred_t *);
151 int secpolicy_setid_setsticky_clear(vnode_t *, vattr_t *,
152     const vattr_t *, cred_t *);
153 
154 int secpolicy_basic_exec(const cred_t *);
155 int secpolicy_basic_fork(const cred_t *);
156 int secpolicy_basic_proc(const cred_t *);
157 int secpolicy_basic_procinfo(const cred_t *, struct proc *, struct proc *);
158 int secpolicy_basic_link(const cred_t *);
159 
160 int secpolicy_gart_access(const cred_t *);
161 int secpolicy_gart_map(const cred_t *);
162 /*
163  * This function to be called from xxfs_setattr().
164  * Must be called with the node's attributes read-write locked.
165  *
166  *		cred_t *		- acting credentials
167  *		struct vnode *		- vnode we're operating on
168  *		struct vattr *va	- new attributes, va_mask may be
169  *					  changed on return from a call
170  *		struct vattr *oldva	- old attributes, need include owner
171  *					  and mode only
172  *		int flags		- setattr flags
173  *		int iaccess(void *node, int mode, cred_t *cr)
174  *					- non-locking internal access function
175  *						mode be checked
176  *						w/ VREAD|VWRITE|VEXEC, not fs
177  *						internal mode encoding.
178  *
179  *		void *node		- internal node (inode, tmpnode) to
180  *					  pass as arg to iaccess
181  */
182 int secpolicy_vnode_setattr(cred_t *, struct vnode *, struct vattr *,
183     const struct vattr *, int, int (void *, int, cred_t *), void *);
184 
185 /*
186  * Test privilege. Audit success or failure, allow privilege debugging.
187  * Returns 0 for success, err for failure.
188  */
189 #define	PRIV_POLICY(cred, priv, all, err, reason) \
190 		priv_policy((cred), (priv), (all), (err), (reason))
191 
192 /*
193  * Test privilege. Audit success only, no privilege debugging.
194  * Returns 1 for success, and 0 for failure.
195  */
196 #define	PRIV_POLICY_CHOICE(cred, priv, all) \
197 		priv_policy_choice((cred), (priv), (all))
198 
199 /*
200  * Test privilege. No priv_debugging, no auditing.
201  * Returns 1 for success, and 0 for failure.
202  */
203 
204 #define	PRIV_POLICY_ONLY(cred, priv, all) \
205 		priv_policy_only((cred), (priv), (all))
206 
207 
208 #endif
209 
210 #ifdef	__cplusplus
211 }
212 #endif
213 
214 #endif	/* _SYS_POLICY_H */
215