5d4
< * Copyright (c) 2005 Samy Al Bahra
47c46
< __FBSDID("$FreeBSD: head/sys/security/mac/mac_process.c 189503 2009-03-08 00:50:37Z rwatson $");
---
> __FBSDID("$FreeBSD: head/sys/security/mac/mac_process.c 189529 2009-03-08 10:58:37Z rwatson $");
427,573d425
< MAC_CHECK_PROBE_DEFINE2(proc_check_setuid, "struct ucred *", "uid_t");
<
< int
< mac_proc_check_setuid(struct proc *p, struct ucred *cred, uid_t uid)
< {
< int error;
<
< PROC_LOCK_ASSERT(p, MA_OWNED);
<
< MAC_CHECK(proc_check_setuid, cred, uid);
< MAC_CHECK_PROBE2(proc_check_setuid, error, cred, uid);
<
< return (error);
< }
<
< MAC_CHECK_PROBE_DEFINE2(proc_check_seteuid, "struct ucred *", "uid_t");
<
< int
< mac_proc_check_seteuid(struct proc *p, struct ucred *cred, uid_t euid)
< {
< int error;
<
< PROC_LOCK_ASSERT(p, MA_OWNED);
<
< MAC_CHECK(proc_check_seteuid, cred, euid);
< MAC_CHECK_PROBE2(proc_check_seteuid, error, cred, euid);
<
< return (error);
< }
<
< MAC_CHECK_PROBE_DEFINE2(proc_check_setgid, "struct ucred *", "gid_t");
<
< int
< mac_proc_check_setgid(struct proc *p, struct ucred *cred, gid_t gid)
< {
< int error;
<
< PROC_LOCK_ASSERT(p, MA_OWNED);
<
< MAC_CHECK(proc_check_setgid, cred, gid);
< MAC_CHECK_PROBE2(proc_check_setgid, error, cred, gid);
<
< return (error);
< }
<
< MAC_CHECK_PROBE_DEFINE2(proc_check_setegid, "struct ucred *", "gid_t");
<
< int
< mac_proc_check_setegid(struct proc *p, struct ucred *cred, gid_t egid)
< {
< int error;
<
< PROC_LOCK_ASSERT(p, MA_OWNED);
<
< MAC_CHECK(proc_check_setegid, cred, egid);
< MAC_CHECK_PROBE2(proc_check_setegid, error, cred, egid);
<
< return (error);
< }
<
< MAC_CHECK_PROBE_DEFINE3(proc_check_setgroups, "struct ucred *", "int",
< "gid_t *");
<
< int
< mac_proc_check_setgroups(struct proc *p, struct ucred *cred, int ngroups,
< gid_t *gidset)
< {
< int error;
<
< PROC_LOCK_ASSERT(p, MA_OWNED);
<
< MAC_CHECK(proc_check_setgroups, cred, ngroups, gidset);
< MAC_CHECK_PROBE3(proc_check_setgroups, error, cred, ngroups, gidset);
<
< return (error);
< }
<
< MAC_CHECK_PROBE_DEFINE3(proc_check_setreuid, "struct ucred *", "uid_t",
< "uid_t");
<
< int
< mac_proc_check_setreuid(struct proc *p, struct ucred *cred, uid_t ruid,
< uid_t euid)
< {
< int error;
<
< PROC_LOCK_ASSERT(p, MA_OWNED);
<
< MAC_CHECK(proc_check_setreuid, cred, ruid, euid);
< MAC_CHECK_PROBE3(proc_check_setreuid, error, cred, ruid, euid);
<
< return (error);
< }
<
< MAC_CHECK_PROBE_DEFINE3(proc_check_setregid, "struct ucred *", "gid_t",
< "gid_t");
<
< int
< mac_proc_check_setregid(struct proc *proc, struct ucred *cred, gid_t rgid,
< gid_t egid)
< {
< int error;
<
< PROC_LOCK_ASSERT(proc, MA_OWNED);
<
< MAC_CHECK(proc_check_setregid, cred, rgid, egid);
< MAC_CHECK_PROBE3(proc_check_setregid, error, cred, rgid, egid);
<
< return (error);
< }
<
< MAC_CHECK_PROBE_DEFINE4(proc_check_setresuid, "struct ucred *", "uid_t",
< "uid_t", "uid_t");
<
< int
< mac_proc_check_setresuid(struct proc *p, struct ucred *cred, uid_t ruid,
< uid_t euid, uid_t suid)
< {
< int error;
<
< PROC_LOCK_ASSERT(p, MA_OWNED);
<
< MAC_CHECK(proc_check_setresuid, cred, ruid, euid, suid);
< MAC_CHECK_PROBE4(proc_check_setresuid, error, cred, ruid, euid,
< suid);
<
< return (error);
< }
<
< MAC_CHECK_PROBE_DEFINE4(proc_check_setresgid, "struct ucred *", "gid_t",
< "gid_t", "gid_t");
<
< int
< mac_proc_check_setresgid(struct proc *p, struct ucred *cred, gid_t rgid,
< gid_t egid, gid_t sgid)
< {
< int error;
<
< PROC_LOCK_ASSERT(p, MA_OWNED);
<
< MAC_CHECK(proc_check_setresgid, cred, rgid, egid, sgid);
< MAC_CHECK_PROBE4(proc_check_setresgid, error, cred, rgid, egid,
< sgid);
<
< return (error);
< }
<
< * Copyright (c) 2005 Samy Al Bahra
47c46
< __FBSDID("$FreeBSD: head/sys/security/mac/mac_process.c 189503 2009-03-08 00:50:37Z rwatson $");
---
> __FBSDID("$FreeBSD: head/sys/security/mac/mac_process.c 189529 2009-03-08 10:58:37Z rwatson $");
427,573d425
< MAC_CHECK_PROBE_DEFINE2(proc_check_setuid, "struct ucred *", "uid_t");
<
< int
< mac_proc_check_setuid(struct proc *p, struct ucred *cred, uid_t uid)
< {
< int error;
<
< PROC_LOCK_ASSERT(p, MA_OWNED);
<
< MAC_CHECK(proc_check_setuid, cred, uid);
< MAC_CHECK_PROBE2(proc_check_setuid, error, cred, uid);
<
< return (error);
< }
<
< MAC_CHECK_PROBE_DEFINE2(proc_check_seteuid, "struct ucred *", "uid_t");
<
< int
< mac_proc_check_seteuid(struct proc *p, struct ucred *cred, uid_t euid)
< {
< int error;
<
< PROC_LOCK_ASSERT(p, MA_OWNED);
<
< MAC_CHECK(proc_check_seteuid, cred, euid);
< MAC_CHECK_PROBE2(proc_check_seteuid, error, cred, euid);
<
< return (error);
< }
<
< MAC_CHECK_PROBE_DEFINE2(proc_check_setgid, "struct ucred *", "gid_t");
<
< int
< mac_proc_check_setgid(struct proc *p, struct ucred *cred, gid_t gid)
< {
< int error;
<
< PROC_LOCK_ASSERT(p, MA_OWNED);
<
< MAC_CHECK(proc_check_setgid, cred, gid);
< MAC_CHECK_PROBE2(proc_check_setgid, error, cred, gid);
<
< return (error);
< }
<
< MAC_CHECK_PROBE_DEFINE2(proc_check_setegid, "struct ucred *", "gid_t");
<
< int
< mac_proc_check_setegid(struct proc *p, struct ucred *cred, gid_t egid)
< {
< int error;
<
< PROC_LOCK_ASSERT(p, MA_OWNED);
<
< MAC_CHECK(proc_check_setegid, cred, egid);
< MAC_CHECK_PROBE2(proc_check_setegid, error, cred, egid);
<
< return (error);
< }
<
< MAC_CHECK_PROBE_DEFINE3(proc_check_setgroups, "struct ucred *", "int",
< "gid_t *");
<
< int
< mac_proc_check_setgroups(struct proc *p, struct ucred *cred, int ngroups,
< gid_t *gidset)
< {
< int error;
<
< PROC_LOCK_ASSERT(p, MA_OWNED);
<
< MAC_CHECK(proc_check_setgroups, cred, ngroups, gidset);
< MAC_CHECK_PROBE3(proc_check_setgroups, error, cred, ngroups, gidset);
<
< return (error);
< }
<
< MAC_CHECK_PROBE_DEFINE3(proc_check_setreuid, "struct ucred *", "uid_t",
< "uid_t");
<
< int
< mac_proc_check_setreuid(struct proc *p, struct ucred *cred, uid_t ruid,
< uid_t euid)
< {
< int error;
<
< PROC_LOCK_ASSERT(p, MA_OWNED);
<
< MAC_CHECK(proc_check_setreuid, cred, ruid, euid);
< MAC_CHECK_PROBE3(proc_check_setreuid, error, cred, ruid, euid);
<
< return (error);
< }
<
< MAC_CHECK_PROBE_DEFINE3(proc_check_setregid, "struct ucred *", "gid_t",
< "gid_t");
<
< int
< mac_proc_check_setregid(struct proc *proc, struct ucred *cred, gid_t rgid,
< gid_t egid)
< {
< int error;
<
< PROC_LOCK_ASSERT(proc, MA_OWNED);
<
< MAC_CHECK(proc_check_setregid, cred, rgid, egid);
< MAC_CHECK_PROBE3(proc_check_setregid, error, cred, rgid, egid);
<
< return (error);
< }
<
< MAC_CHECK_PROBE_DEFINE4(proc_check_setresuid, "struct ucred *", "uid_t",
< "uid_t", "uid_t");
<
< int
< mac_proc_check_setresuid(struct proc *p, struct ucred *cred, uid_t ruid,
< uid_t euid, uid_t suid)
< {
< int error;
<
< PROC_LOCK_ASSERT(p, MA_OWNED);
<
< MAC_CHECK(proc_check_setresuid, cred, ruid, euid, suid);
< MAC_CHECK_PROBE4(proc_check_setresuid, error, cred, ruid, euid,
< suid);
<
< return (error);
< }
<
< MAC_CHECK_PROBE_DEFINE4(proc_check_setresgid, "struct ucred *", "gid_t",
< "gid_t", "gid_t");
<
< int
< mac_proc_check_setresgid(struct proc *p, struct ucred *cred, gid_t rgid,
< gid_t egid, gid_t sgid)
< {
< int error;
<
< PROC_LOCK_ASSERT(p, MA_OWNED);
<
< MAC_CHECK(proc_check_setresgid, cred, rgid, egid, sgid);
< MAC_CHECK_PROBE4(proc_check_setresgid, error, cred, rgid, egid,
< sgid);
<
< return (error);
< }
<