mac_cred.c (172930) | mac_cred.c (172957) |
---|---|
1/*- 2 * Copyright (c) 1999-2002 Robert N. M. Watson 3 * Copyright (c) 2001 Ilmar S. Habibulin 4 * Copyright (c) 2001-2003 Networks Associates Technology, Inc. 5 * Copyright (c) 2005 Samy Al Bahra 6 * Copyright (c) 2006 SPARTA, Inc. 7 * All rights reserved. 8 * --- 26 unchanged lines hidden (view full) --- 35 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 36 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 37 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 38 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 39 * SUCH DAMAGE. 40 */ 41 42#include <sys/cdefs.h> | 1/*- 2 * Copyright (c) 1999-2002 Robert N. M. Watson 3 * Copyright (c) 2001 Ilmar S. Habibulin 4 * Copyright (c) 2001-2003 Networks Associates Technology, Inc. 5 * Copyright (c) 2005 Samy Al Bahra 6 * Copyright (c) 2006 SPARTA, Inc. 7 * All rights reserved. 8 * --- 26 unchanged lines hidden (view full) --- 35 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 36 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 37 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 38 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 39 * SUCH DAMAGE. 40 */ 41 42#include <sys/cdefs.h> |
43__FBSDID("$FreeBSD: head/sys/security/mac/mac_process.c 172930 2007-10-24 19:04:04Z rwatson $"); | 43__FBSDID("$FreeBSD: head/sys/security/mac/mac_process.c 172957 2007-10-25 12:34:14Z rwatson $"); |
44 45#include "opt_mac.h" 46 47#include <sys/param.h> 48#include <sys/condvar.h> 49#include <sys/imgact.h> 50#include <sys/kernel.h> 51#include <sys/lock.h> --- 135 unchanged lines hidden (view full) --- 187 */ 188void 189mac_proc_create_init(struct ucred *cred) 190{ 191 192 MAC_PERFORM(proc_create_init, cred); 193} 194 | 44 45#include "opt_mac.h" 46 47#include <sys/param.h> 48#include <sys/condvar.h> 49#include <sys/imgact.h> 50#include <sys/kernel.h> 51#include <sys/lock.h> --- 135 unchanged lines hidden (view full) --- 187 */ 188void 189mac_proc_create_init(struct ucred *cred) 190{ 191 192 MAC_PERFORM(proc_create_init, cred); 193} 194 |
195/* 196 * When a thread becomes an NFS server daemon, its credential may need to be 197 * updated to reflect this so that policies can recognize when file system 198 * operations originate from the network. 199 * 200 * At some point, it would be desirable if the credential used for each NFS 201 * RPC could be set based on the RPC context (i.e., source system, etc) to 202 * provide more fine-grained access control. 203 */ |
|
195void | 204void |
205mac_proc_associate_nfsd(struct ucred *cred) 206{ 207 208 MAC_PERFORM(proc_associate_nfsd, cred); 209} 210 211void |
|
196mac_thread_userret(struct thread *td) 197{ 198 199 MAC_PERFORM(thread_userret, td); 200} 201 202/* 203 * When a new process is created, its label must be initialized. Generally, --- 414 unchanged lines hidden --- | 212mac_thread_userret(struct thread *td) 213{ 214 215 MAC_PERFORM(thread_userret, td); 216} 217 218/* 219 * When a new process is created, its label must be initialized. Generally, --- 414 unchanged lines hidden --- |