audit_syscalls.c (185484) | audit_syscalls.c (189529) |
---|---|
1/*- 2 * Copyright (c) 1999-2005 Apple Inc. 3 * All rights reserved. 4 * 5 * Redistribution and use in source and binary forms, with or without 6 * modification, are permitted provided that the following conditions 7 * are met: 8 * 1. Redistributions of source code must retain the above copyright --- 14 unchanged lines hidden (view full) --- 23 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 24 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, 25 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING 26 * IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE 27 * POSSIBILITY OF SUCH DAMAGE. 28 */ 29 30#include <sys/cdefs.h> | 1/*- 2 * Copyright (c) 1999-2005 Apple Inc. 3 * All rights reserved. 4 * 5 * Redistribution and use in source and binary forms, with or without 6 * modification, are permitted provided that the following conditions 7 * are met: 8 * 1. Redistributions of source code must retain the above copyright --- 14 unchanged lines hidden (view full) --- 23 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 24 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, 25 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING 26 * IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE 27 * POSSIBILITY OF SUCH DAMAGE. 28 */ 29 30#include <sys/cdefs.h> |
31__FBSDID("$FreeBSD: head/sys/security/audit/audit_syscalls.c 185484 2008-11-30 19:58:03Z csjp $"); | 31__FBSDID("$FreeBSD: head/sys/security/audit/audit_syscalls.c 189529 2009-03-08 10:58:37Z rwatson $"); |
32 33#include "opt_mac.h" 34 35#include <sys/param.h> 36#include <sys/mount.h> 37#include <sys/namei.h> 38#include <sys/priv.h> 39#include <sys/proc.h> --- 429 unchanged lines hidden (view full) --- 469 if (error) 470 return (error); 471 audit_arg_auid(id); 472 newcred = crget(); 473 PROC_LOCK(td->td_proc); 474 oldcred = td->td_proc->p_ucred; 475 crcopy(newcred, oldcred); 476#ifdef MAC | 32 33#include "opt_mac.h" 34 35#include <sys/param.h> 36#include <sys/mount.h> 37#include <sys/namei.h> 38#include <sys/priv.h> 39#include <sys/proc.h> --- 429 unchanged lines hidden (view full) --- 469 if (error) 470 return (error); 471 audit_arg_auid(id); 472 newcred = crget(); 473 PROC_LOCK(td->td_proc); 474 oldcred = td->td_proc->p_ucred; 475 crcopy(newcred, oldcred); 476#ifdef MAC |
477 error = mac_proc_check_setauid(oldcred, id); | 477 error = mac_cred_check_setauid(oldcred, id); |
478 if (error) 479 goto fail; 480#endif 481 error = priv_check_cred(oldcred, PRIV_AUDIT_SETAUDIT, 0); 482 if (error) 483 goto fail; 484 newcred->cr_audit.ai_auid = id; 485 td->td_proc->p_ucred = newcred; --- 48 unchanged lines hidden (view full) --- 534 if (error) 535 return (error); 536 audit_arg_auditinfo(&ai); 537 newcred = crget(); 538 PROC_LOCK(td->td_proc); 539 oldcred = td->td_proc->p_ucred; 540 crcopy(newcred, oldcred); 541#ifdef MAC | 478 if (error) 479 goto fail; 480#endif 481 error = priv_check_cred(oldcred, PRIV_AUDIT_SETAUDIT, 0); 482 if (error) 483 goto fail; 484 newcred->cr_audit.ai_auid = id; 485 td->td_proc->p_ucred = newcred; --- 48 unchanged lines hidden (view full) --- 534 if (error) 535 return (error); 536 audit_arg_auditinfo(&ai); 537 newcred = crget(); 538 PROC_LOCK(td->td_proc); 539 oldcred = td->td_proc->p_ucred; 540 crcopy(newcred, oldcred); 541#ifdef MAC |
542 error = mac_proc_check_setaudit(oldcred, &ai); | 542 error = mac_cred_check_setaudit(oldcred, &ai); |
543 if (error) 544 goto fail; 545#endif 546 error = priv_check_cred(oldcred, PRIV_AUDIT_SETAUDIT, 0); 547 if (error) 548 goto fail; 549 bzero(&newcred->cr_audit, sizeof(newcred->cr_audit)); 550 newcred->cr_audit.ai_auid = ai.ai_auid; --- 46 unchanged lines hidden (view full) --- 597 if (aia.ai_termid.at_type != AU_IPv6 && 598 aia.ai_termid.at_type != AU_IPv4) 599 return (EINVAL); 600 newcred = crget(); 601 PROC_LOCK(td->td_proc); 602 oldcred = td->td_proc->p_ucred; 603 crcopy(newcred, oldcred); 604#ifdef MAC | 543 if (error) 544 goto fail; 545#endif 546 error = priv_check_cred(oldcred, PRIV_AUDIT_SETAUDIT, 0); 547 if (error) 548 goto fail; 549 bzero(&newcred->cr_audit, sizeof(newcred->cr_audit)); 550 newcred->cr_audit.ai_auid = ai.ai_auid; --- 46 unchanged lines hidden (view full) --- 597 if (aia.ai_termid.at_type != AU_IPv6 && 598 aia.ai_termid.at_type != AU_IPv4) 599 return (EINVAL); 600 newcred = crget(); 601 PROC_LOCK(td->td_proc); 602 oldcred = td->td_proc->p_ucred; 603 crcopy(newcred, oldcred); 604#ifdef MAC |
605 error = mac_proc_check_setaudit_addr(oldcred, &aia); | 605 error = mac_cred_check_setaudit_addr(oldcred, &aia); |
606 if (error) 607 goto fail; 608#endif 609 error = priv_check_cred(oldcred, PRIV_AUDIT_SETAUDIT, 0); 610 if (error) 611 goto fail; 612 newcred->cr_audit = aia; 613 td->td_proc->p_ucred = newcred; --- 146 unchanged lines hidden --- | 606 if (error) 607 goto fail; 608#endif 609 error = priv_check_cred(oldcred, PRIV_AUDIT_SETAUDIT, 0); 610 if (error) 611 goto fail; 612 newcred->cr_audit = aia; 613 td->td_proc->p_ucred = newcred; --- 146 unchanged lines hidden --- |