mac_framework.h (106212) | mac_framework.h (106308) |
---|---|
1/*- 2 * Copyright (c) 1999, 2000, 2001, 2002 Robert N. M. Watson 3 * Copyright (c) 2001, 2002 Networks Associates Technology, Inc. 4 * All rights reserved. 5 * 6 * This software was developed by Robert Watson for the TrustedBSD Project. 7 * 8 * This software was developed for the FreeBSD Project in part by NAI Labs, --- 20 unchanged lines hidden (view full) --- 29 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 30 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 31 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 32 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 33 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 34 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 35 * SUCH DAMAGE. 36 * | 1/*- 2 * Copyright (c) 1999, 2000, 2001, 2002 Robert N. M. Watson 3 * Copyright (c) 2001, 2002 Networks Associates Technology, Inc. 4 * All rights reserved. 5 * 6 * This software was developed by Robert Watson for the TrustedBSD Project. 7 * 8 * This software was developed for the FreeBSD Project in part by NAI Labs, --- 20 unchanged lines hidden (view full) --- 29 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 30 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 31 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 32 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 33 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 34 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 35 * SUCH DAMAGE. 36 * |
37 * $FreeBSD: head/sys/security/mac/mac_framework.h 106212 2002-10-30 17:56:57Z rwatson $ | 37 * $FreeBSD: head/sys/security/mac/mac_framework.h 106308 2002-11-01 20:46:53Z rwatson $ |
38 */ 39/* 40 * Userland/kernel interface for Mandatory Access Control. 41 * 42 * The POSIX.1e implementation page may be reached at: 43 * http://www.trustedbsd.org/ 44 */ 45#ifndef _SYS_MAC_H --- 179 unchanged lines hidden (view full) --- 225void mac_create_proc0(struct ucred *cred); 226void mac_create_proc1(struct ucred *cred); 227void mac_thread_userret(struct thread *td); 228 229/* Access control checks. */ 230int mac_check_bpfdesc_receive(struct bpf_d *bpf_d, struct ifnet *ifnet); 231int mac_check_cred_visible(struct ucred *u1, struct ucred *u2); 232int mac_check_ifnet_transmit(struct ifnet *ifnet, struct mbuf *m); | 38 */ 39/* 40 * Userland/kernel interface for Mandatory Access Control. 41 * 42 * The POSIX.1e implementation page may be reached at: 43 * http://www.trustedbsd.org/ 44 */ 45#ifndef _SYS_MAC_H --- 179 unchanged lines hidden (view full) --- 225void mac_create_proc0(struct ucred *cred); 226void mac_create_proc1(struct ucred *cred); 227void mac_thread_userret(struct thread *td); 228 229/* Access control checks. */ 230int mac_check_bpfdesc_receive(struct bpf_d *bpf_d, struct ifnet *ifnet); 231int mac_check_cred_visible(struct ucred *u1, struct ucred *u2); 232int mac_check_ifnet_transmit(struct ifnet *ifnet, struct mbuf *m); |
233int mac_check_kenv_dump(struct ucred *cred); 234int mac_check_kenv_get(struct ucred *cred, char *name); 235int mac_check_kenv_set(struct ucred *cred, char *name, char *value); 236int mac_check_kenv_unset(struct ucred *cred, char *name); |
|
233int mac_check_mount_stat(struct ucred *cred, struct mount *mp); 234int mac_check_pipe_ioctl(struct ucred *cred, struct pipe *pipe, 235 unsigned long cmd, void *data); 236int mac_check_pipe_poll(struct ucred *cred, struct pipe *pipe); 237int mac_check_pipe_read(struct ucred *cred, struct pipe *pipe); 238int mac_check_pipe_stat(struct ucred *cred, struct pipe *pipe); 239int mac_check_pipe_write(struct ucred *cred, struct pipe *pipe); 240int mac_check_proc_debug(struct ucred *cred, struct proc *proc); --- 91 unchanged lines hidden --- | 237int mac_check_mount_stat(struct ucred *cred, struct mount *mp); 238int mac_check_pipe_ioctl(struct ucred *cred, struct pipe *pipe, 239 unsigned long cmd, void *data); 240int mac_check_pipe_poll(struct ucred *cred, struct pipe *pipe); 241int mac_check_pipe_read(struct ucred *cred, struct pipe *pipe); 242int mac_check_pipe_stat(struct ucred *cred, struct pipe *pipe); 243int mac_check_pipe_write(struct ucred *cred, struct pipe *pipe); 244int mac_check_proc_debug(struct ucred *cred, struct proc *proc); --- 91 unchanged lines hidden --- |