| mac_policy.h (126097) | mac_policy.h (126121) |
|---|---|
| 1/*- 2 * Copyright (c) 1999-2002 Robert N. M. Watson 3 * Copyright (c) 2001-2003 Networks Associates Technology, Inc. 4 * All rights reserved. 5 * 6 * This software was developed by Robert Watson for the TrustedBSD Project. 7 * 8 * This software was developed for the FreeBSD Project in part by Network --- 17 unchanged lines hidden (view full) --- 26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 * | 1/*- 2 * Copyright (c) 1999-2002 Robert N. M. Watson 3 * Copyright (c) 2001-2003 Networks Associates Technology, Inc. 4 * All rights reserved. 5 * 6 * This software was developed by Robert Watson for the TrustedBSD Project. 7 * 8 * This software was developed for the FreeBSD Project in part by Network --- 17 unchanged lines hidden (view full) --- 26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 * |
| 34 * $FreeBSD: head/sys/security/mac/mac_policy.h 126097 2004-02-22 00:33:12Z rwatson $ | 34 * $FreeBSD: head/sys/security/mac/mac_policy.h 126121 2004-02-22 12:31:44Z pjd $ |
| 35 */ 36/* 37 * Kernel interface for MAC policy modules. 38 */ 39#ifndef _SYS_MAC_POLICY_H 40#define _SYS_MAC_POLICY_H 41 42/*- --- 15 unchanged lines hidden (view full) --- 58struct ipq; 59struct label; 60struct mac_policy_conf; 61struct mbuf; 62struct mount; 63struct pipepair; 64struct sbuf; 65struct socket; | 35 */ 36/* 37 * Kernel interface for MAC policy modules. 38 */ 39#ifndef _SYS_MAC_POLICY_H 40#define _SYS_MAC_POLICY_H 41 42/*- --- 15 unchanged lines hidden (view full) --- 58struct ipq; 59struct label; 60struct mac_policy_conf; 61struct mbuf; 62struct mount; 63struct pipepair; 64struct sbuf; 65struct socket; |
| 66struct sysctl_oid; 67struct sysctl_req; |
|
| 66struct ucred; 67struct uio; 68struct vnode; 69struct mac_policy_ops { 70 /* 71 * Policy module operations. 72 */ 73 void (*mpo_destroy)(struct mac_policy_conf *mpc); --- 283 unchanged lines hidden (view full) --- 357 struct vnode *vp, struct label *vlabel); 358 int (*mpo_check_system_nfsd)(struct ucred *cred); 359 int (*mpo_check_system_reboot)(struct ucred *cred, int howto); 360 int (*mpo_check_system_settime)(struct ucred *cred); 361 int (*mpo_check_system_swapon)(struct ucred *cred, 362 struct vnode *vp, struct label *label); 363 int (*mpo_check_system_swapoff)(struct ucred *cred, 364 struct vnode *vp, struct label *label); | 68struct ucred; 69struct uio; 70struct vnode; 71struct mac_policy_ops { 72 /* 73 * Policy module operations. 74 */ 75 void (*mpo_destroy)(struct mac_policy_conf *mpc); --- 283 unchanged lines hidden (view full) --- 359 struct vnode *vp, struct label *vlabel); 360 int (*mpo_check_system_nfsd)(struct ucred *cred); 361 int (*mpo_check_system_reboot)(struct ucred *cred, int howto); 362 int (*mpo_check_system_settime)(struct ucred *cred); 363 int (*mpo_check_system_swapon)(struct ucred *cred, 364 struct vnode *vp, struct label *label); 365 int (*mpo_check_system_swapoff)(struct ucred *cred, 366 struct vnode *vp, struct label *label); |
| 365 int (*mpo_check_system_sysctl)(struct ucred *cred, int *name, 366 u_int namelen, void *old, size_t *oldlenp, int inkernel, 367 void *new, size_t newlen); | 367 int (*mpo_check_system_sysctl)(struct ucred *cred, 368 struct sysctl_oid *oidp, void *arg1, int arg2, 369 struct sysctl_req *req); |
| 368 int (*mpo_check_vnode_access)(struct ucred *cred, 369 struct vnode *vp, struct label *label, int acc_mode); 370 int (*mpo_check_vnode_chdir)(struct ucred *cred, 371 struct vnode *dvp, struct label *dlabel); 372 int (*mpo_check_vnode_chroot)(struct ucred *cred, 373 struct vnode *dvp, struct label *dlabel); 374 int (*mpo_check_vnode_create)(struct ucred *cred, 375 struct vnode *dvp, struct label *dlabel, --- 121 unchanged lines hidden --- | 370 int (*mpo_check_vnode_access)(struct ucred *cred, 371 struct vnode *vp, struct label *label, int acc_mode); 372 int (*mpo_check_vnode_chdir)(struct ucred *cred, 373 struct vnode *dvp, struct label *dlabel); 374 int (*mpo_check_vnode_chroot)(struct ucred *cred, 375 struct vnode *dvp, struct label *dlabel); 376 int (*mpo_check_vnode_create)(struct ucred *cred, 377 struct vnode *dvp, struct label *dlabel, --- 121 unchanged lines hidden --- |