mac_bsdextended.c (157986) | mac_bsdextended.c (164033) |
---|---|
1/*- 2 * Copyright (c) 2005 Tom Rhodes 3 * Copyright (c) 1999-2002 Robert N. M. Watson 4 * Copyright (c) 2001-2005 Networks Associates Technology, Inc. 5 * All rights reserved. 6 * 7 * This software was developed by Robert Watson for the TrustedBSD Project. 8 * It was later enhanced by Tom Rhodes for the TrustedBSD Project. --- 19 unchanged lines hidden (view full) --- 28 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 29 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 30 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 31 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 32 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 33 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 34 * SUCH DAMAGE. 35 * | 1/*- 2 * Copyright (c) 2005 Tom Rhodes 3 * Copyright (c) 1999-2002 Robert N. M. Watson 4 * Copyright (c) 2001-2005 Networks Associates Technology, Inc. 5 * All rights reserved. 6 * 7 * This software was developed by Robert Watson for the TrustedBSD Project. 8 * It was later enhanced by Tom Rhodes for the TrustedBSD Project. --- 19 unchanged lines hidden (view full) --- 28 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 29 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 30 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 31 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 32 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 33 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 34 * SUCH DAMAGE. 35 * |
36 * $FreeBSD: head/sys/security/mac_bsdextended/mac_bsdextended.c 157986 2006-04-23 17:06:18Z dwmalone $ | 36 * $FreeBSD: head/sys/security/mac_bsdextended/mac_bsdextended.c 164033 2006-11-06 13:42:10Z rwatson $ |
37 */ 38 39/* 40 * Developed by the TrustedBSD Project. 41 * "BSD Extended" MAC policy, allowing the administrator to impose 42 * mandatory rules regarding users and some system objects. 43 */ 44 --- 406 unchanged lines hidden (view full) --- 451} 452 453static int 454mac_bsdextended_check(struct ucred *cred, struct vnode *vp, struct vattr *vap, 455 int acc_mode) 456{ 457 int error, i; 458 | 37 */ 38 39/* 40 * Developed by the TrustedBSD Project. 41 * "BSD Extended" MAC policy, allowing the administrator to impose 42 * mandatory rules regarding users and some system objects. 43 */ 44 --- 406 unchanged lines hidden (view full) --- 451} 452 453static int 454mac_bsdextended_check(struct ucred *cred, struct vnode *vp, struct vattr *vap, 455 int acc_mode) 456{ 457 int error, i; 458 |
459 /* 460 * XXXRW: More specific privilege selection needed? 461 */ |
|
459 if (suser_cred(cred, 0) == 0) 460 return (0); 461 462 mtx_lock(&mac_bsdextended_mtx); 463 for (i = 0; i < rule_slots; i++) { 464 if (rules[i] == NULL) 465 continue; 466 --- 321 unchanged lines hidden --- | 462 if (suser_cred(cred, 0) == 0) 463 return (0); 464 465 mtx_lock(&mac_bsdextended_mtx); 466 for (i = 0; i < rule_slots; i++) { 467 if (rules[i] == NULL) 468 continue; 469 --- 321 unchanged lines hidden --- |