| mac_framework.h (119317) | mac_framework.h (119546) |
|---|---|
| 1/*- 2 * Copyright (c) 1999, 2000, 2001, 2002 Robert N. M. Watson 3 * Copyright (c) 2001, 2002, 2003 Networks Associates Technology, Inc. 4 * All rights reserved. 5 * 6 * This software was developed by Robert Watson for the TrustedBSD Project. 7 * 8 * This software was developed for the FreeBSD Project in part by Network --- 17 unchanged lines hidden (view full) --- 26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 * | 1/*- 2 * Copyright (c) 1999, 2000, 2001, 2002 Robert N. M. Watson 3 * Copyright (c) 2001, 2002, 2003 Networks Associates Technology, Inc. 4 * All rights reserved. 5 * 6 * This software was developed by Robert Watson for the TrustedBSD Project. 7 * 8 * This software was developed for the FreeBSD Project in part by Network --- 17 unchanged lines hidden (view full) --- 26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 * |
| 34 * $FreeBSD: head/sys/security/mac/mac_framework.h 119317 2003-08-22 17:49:59Z rwatson $ | 34 * $FreeBSD: head/sys/security/mac/mac_framework.h 119546 2003-08-29 02:43:57Z rwatson $ |
| 35 */ 36/* 37 * Userland/kernel interface for Mandatory Access Control. 38 * 39 * The POSIX.1e implementation page may be reached at: 40 * http://www.trustedbsd.org/ 41 */ 42#ifndef _SYS_MAC_H --- 28 unchanged lines hidden (view full) --- 71 * as well as setting defaults for MAC-aware applications. 72 */ 73#define MAC_CONFFILE "/etc/mac.conf" 74 75/* 76 * Extended non-POSIX.1e interfaces that offer additional services 77 * available from the userland and kernel MAC frameworks. 78 */ | 35 */ 36/* 37 * Userland/kernel interface for Mandatory Access Control. 38 * 39 * The POSIX.1e implementation page may be reached at: 40 * http://www.trustedbsd.org/ 41 */ 42#ifndef _SYS_MAC_H --- 28 unchanged lines hidden (view full) --- 71 * as well as setting defaults for MAC-aware applications. 72 */ 73#define MAC_CONFFILE "/etc/mac.conf" 74 75/* 76 * Extended non-POSIX.1e interfaces that offer additional services 77 * available from the userland and kernel MAC frameworks. 78 */ |
| 79int mac_execve(char *fname, char **argv, char **envv, 80 mac_t _label); 81int mac_free(mac_t _label); 82int mac_from_text(mac_t *_label, const char *_text); 83int mac_get_fd(int _fd, mac_t _label); 84int mac_get_file(const char *_path, mac_t _label); 85int mac_get_link(const char *_path, mac_t _label); 86int mac_get_pid(pid_t _pid, mac_t _label); 87int mac_get_proc(mac_t _label); 88int mac_is_present(const char *_policyname); 89int mac_prepare(mac_t *_label, const char *_elements); 90int mac_prepare_file_label(mac_t *_label); 91int mac_prepare_ifnet_label(mac_t *_label); 92int mac_prepare_process_label(mac_t *_label); 93int mac_prepare_type(mac_t *_label, const char *_type); 94int mac_set_fd(int _fildes, const mac_t _label); 95int mac_set_file(const char *_path, mac_t _label); 96int mac_set_link(const char *_path, mac_t _label); 97int mac_set_proc(const mac_t _label); 98int mac_syscall(const char *_policyname, int _call, void *_arg); 99int mac_to_text(mac_t mac, char **_text); | 79int mac_execve(char *fname, char **argv, char **envv, mac_t _label); 80int mac_free(mac_t _label); 81int mac_from_text(mac_t *_label, const char *_text); 82int mac_get_fd(int _fd, mac_t _label); 83int mac_get_file(const char *_path, mac_t _label); 84int mac_get_link(const char *_path, mac_t _label); 85int mac_get_pid(pid_t _pid, mac_t _label); 86int mac_get_proc(mac_t _label); 87int mac_is_present(const char *_policyname); 88int mac_prepare(mac_t *_label, const char *_elements); 89int mac_prepare_file_label(mac_t *_label); 90int mac_prepare_ifnet_label(mac_t *_label); 91int mac_prepare_process_label(mac_t *_label); 92int mac_prepare_type(mac_t *_label, const char *_type); 93int mac_set_fd(int _fildes, const mac_t _label); 94int mac_set_file(const char *_path, mac_t _label); 95int mac_set_link(const char *_path, mac_t _label); 96int mac_set_proc(const mac_t _label); 97int mac_syscall(const char *_policyname, int _call, void *_arg); 98int mac_to_text(mac_t mac, char **_text); |
| 100 101#else /* _KERNEL */ 102 103/* 104 * Kernel functions to manage and evaluate labels. 105 */ 106struct bpf_d; 107struct componentname; --- 247 unchanged lines hidden --- | 99 100#else /* _KERNEL */ 101 102/* 103 * Kernel functions to manage and evaluate labels. 104 */ 105struct bpf_d; 106struct componentname; --- 247 unchanged lines hidden --- |