The Design and Implementation of the FreeBSD Operating System, Second Edition
Now available: The Design and Implementation of the FreeBSD Operating System (Second Edition)


[ source navigation ] [ diff markup ] [ identifier search ] [ freetext search ] [ file search ] [ list types ] [ track identifier ]

FreeBSD/Linux Kernel Cross Reference
sys/security/mac_bsdextended/ugidfw_internal.h

Version: -  FREEBSD  -  FREEBSD-12-STABLE  -  FREEBSD-12-0  -  FREEBSD-11-STABLE  -  FREEBSD-11-2  -  FREEBSD-11-1  -  FREEBSD-11-0  -  FREEBSD-10-STABLE  -  FREEBSD-10-4  -  FREEBSD-10-3  -  FREEBSD-10-2  -  FREEBSD-10-1  -  FREEBSD-10-0  -  FREEBSD-9-STABLE  -  FREEBSD-9-3  -  FREEBSD-9-2  -  FREEBSD-9-1  -  FREEBSD-9-0  -  FREEBSD-8-STABLE  -  FREEBSD-8-4  -  FREEBSD-8-3  -  FREEBSD-8-2  -  FREEBSD-8-1  -  FREEBSD-8-0  -  FREEBSD-7-STABLE  -  FREEBSD-7-4  -  FREEBSD-7-3  -  FREEBSD-7-2  -  FREEBSD-7-1  -  FREEBSD-7-0  -  FREEBSD-6-STABLE  -  FREEBSD-6-4  -  FREEBSD-6-3  -  FREEBSD-6-2  -  FREEBSD-6-1  -  FREEBSD-6-0  -  FREEBSD-5-STABLE  -  FREEBSD-5-5  -  FREEBSD-5-4  -  FREEBSD-5-3  -  FREEBSD-5-2  -  FREEBSD-5-1  -  FREEBSD-5-0  -  FREEBSD-4-STABLE  -  FREEBSD-3-STABLE  -  FREEBSD22  -  linux-2.6  -  linux-2.4.22  -  MK83  -  MK84  -  PLAN9  -  DFBSD  -  NETBSD  -  NETBSD5  -  NETBSD4  -  NETBSD3  -  NETBSD20  -  OPENBSD  -  xnu-517  -  xnu-792  -  xnu-792.6.70  -  xnu-1228  -  xnu-1456.1.26  -  xnu-1699.24.8  -  xnu-2050.18.24  -  OPENSOLARIS  -  minix-3-1-1 
SearchContext: -  none  -  3  -  10 

    1 /*-
    2  * Copyright (c) 2008 Robert N. M. Watson
    3  * All rights reserved.
    4  *
    5  * This software was developed by Robert Watson for the TrustedBSD Project.
    6  *
    7  * Redistribution and use in source and binary forms, with or without
    8  * modification, are permitted provided that the following conditions
    9  * are met:
   10  * 1. Redistributions of source code must retain the above copyright
   11  *    notice, this list of conditions and the following disclaimer.
   12  * 2. Redistributions in binary form must reproduce the above copyright
   13  *    notice, this list of conditions and the following disclaimer in the
   14  *    documentation and/or other materials provided with the distribution.
   15  *
   16  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
   17  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
   18  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
   19  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
   20  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
   21  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
   22  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
   23  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
   24  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
   25  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
   26  * SUCH DAMAGE.
   27  *
   28  * $FreeBSD: releng/11.0/sys/security/mac_bsdextended/ugidfw_internal.h 189533 2009-03-08 12:32:06Z rwatson $
   29  */
   30 
   31 #ifndef _SYS_SECURITY_MAC_BSDEXTENDED_UGIDFW_INTERNAL_H
   32 #define _SYS_SECURITY_MAC_BSDEXTENDED_UGIDFW_INTERNAL_H
   33 
   34 /*
   35  * Central access control routines used by object-specific checks.
   36  */
   37 int     ugidfw_accmode2mbi(accmode_t accmode);
   38 int     ugidfw_check(struct ucred *cred, struct vnode *vp, struct vattr *vap,
   39             int acc_mode);
   40 int     ugidfw_check_vp(struct ucred *cred, struct vnode *vp, int acc_mode);
   41 
   42 /*
   43  * System access control checks.
   44  */
   45 int     ugidfw_system_check_acct(struct ucred *cred, struct vnode *vp,
   46             struct label *vplabel);
   47 int     ugidfw_system_check_auditctl(struct ucred *cred, struct vnode *vp,
   48             struct label *vplabel);
   49 int     ugidfw_system_check_swapon(struct ucred *cred, struct vnode *vp,
   50             struct label *vplabel);
   51 
   52 /*
   53  * Vnode access control checks.
   54  */
   55 int     ugidfw_vnode_check_access(struct ucred *cred, struct vnode *vp,
   56             struct label *vplabel, accmode_t accmode);
   57 int     ugidfw_vnode_check_chdir(struct ucred *cred, struct vnode *dvp,
   58             struct label *dvplabel);
   59 int     ugidfw_vnode_check_chroot(struct ucred *cred, struct vnode *dvp,
   60             struct label *dvplabel);
   61 int     ugidfw_check_create_vnode(struct ucred *cred, struct vnode *dvp,
   62             struct label *dvplabel, struct componentname *cnp,
   63             struct vattr *vap);
   64 int     ugidfw_vnode_check_deleteacl(struct ucred *cred, struct vnode *vp,
   65             struct label *vplabel, acl_type_t type);
   66 int     ugidfw_vnode_check_deleteextattr(struct ucred *cred,
   67             struct vnode *vp, struct label *vplabel, int attrnamespace,
   68             const char *name);
   69 int     ugidfw_vnode_check_exec(struct ucred *cred, struct vnode *vp,
   70             struct label *vplabel, struct image_params *imgp,
   71             struct label *execlabel);
   72 int     ugidfw_vnode_check_getacl(struct ucred *cred, struct vnode *vp,
   73             struct label *vplabel, acl_type_t type);
   74 int     ugidfw_vnode_check_getextattr(struct ucred *cred, struct vnode *vp,
   75             struct label *vplabel, int attrnamespace, const char *name);
   76 int     ugidfw_vnode_check_link(struct ucred *cred, struct vnode *dvp,
   77             struct label *dvplabel, struct vnode *vp, struct label *label,
   78             struct componentname *cnp);
   79 int     ugidfw_vnode_check_listextattr(struct ucred *cred, struct vnode *vp,
   80             struct label *vplabel, int attrnamespace);
   81 int     ugidfw_vnode_check_lookup(struct ucred *cred, struct vnode *dvp,
   82             struct label *dvplabel, struct componentname *cnp);
   83 int     ugidfw_vnode_check_open(struct ucred *cred, struct vnode *vp,
   84             struct label *vplabel, accmode_t accmode);
   85 int     ugidfw_vnode_check_readdir(struct ucred *cred, struct vnode *dvp,
   86             struct label *dvplabel);
   87 int     ugidfw_vnode_check_readdlink(struct ucred *cred, struct vnode *vp,
   88             struct label *vplabel);
   89 int     ugidfw_vnode_check_rename_from(struct ucred *cred, struct vnode *dvp,
   90             struct label *dvplabel, struct vnode *vp, struct label *vplabel,
   91             struct componentname *cnp);
   92 int     ugidfw_vnode_check_rename_to(struct ucred *cred, struct vnode *dvp,
   93             struct label *dvplabel, struct vnode *vp, struct label *vplabel,
   94             int samedir, struct componentname *cnp);
   95 int     ugidfw_vnode_check_revoke(struct ucred *cred, struct vnode *vp,
   96             struct label *vplabel);
   97 int     ugidfw_check_setacl_vnode(struct ucred *cred, struct vnode *vp,
   98             struct label *vplabel, acl_type_t type, struct acl *acl);
   99 int     ugidfw_vnode_check_setextattr(struct ucred *cred, struct vnode *vp,
  100             struct label *vplabel, int attrnamespace, const char *name);
  101 int     ugidfw_vnode_check_setflags(struct ucred *cred, struct vnode *vp,
  102             struct label *vplabel, u_long flags);
  103 int     ugidfw_vnode_check_setmode(struct ucred *cred, struct vnode *vp,
  104             struct label *vplabel, mode_t mode);
  105 int     ugidfw_vnode_check_setowner(struct ucred *cred, struct vnode *vp,
  106             struct label *vplabel, uid_t uid, gid_t gid);
  107 int     ugidfw_vnode_check_setutimes(struct ucred *cred, struct vnode *vp,
  108             struct label *vplabel, struct timespec atime,
  109             struct timespec utime);
  110 int     ugidfw_vnode_check_stat(struct ucred *active_cred,
  111             struct ucred *file_cred, struct vnode *vp, struct label *vplabel);
  112 int     ugidfw_vnode_check_unlink(struct ucred *cred, struct vnode *dvp,
  113             struct label *dvplabel, struct vnode *vp, struct label *vplabel,
  114             struct componentname *cnp);
  115 
  116 #endif /* _SYS_SECURITY_MAC_BSDEXTENDED_UGIDFW_INTERNAL_H */

Cache object: 7150b328382c818795ea4b29c77f040f


[ source navigation ] [ diff markup ] [ identifier search ] [ freetext search ] [ file search ] [ list types ] [ track identifier ]


This page is part of the FreeBSD/Linux Linux Kernel Cross-Reference, and was automatically generated using a modified version of the LXR engine.