| @@ -1,41 +1,41 @@ | | | @@ -1,41 +1,41 @@ |
1 | .\" $NetBSD: kauth.9,v 1.70 2008/02/28 17:07:49 elad Exp $ | | 1 | .\" $NetBSD: kauth.9,v 1.71 2008/09/23 22:40:46 pooka Exp $ |
2 | .\" | | 2 | .\" |
3 | .\" Copyright (c) 2005, 2006 Elad Efrat <elad@NetBSD.org> | | 3 | .\" Copyright (c) 2005, 2006 Elad Efrat <elad@NetBSD.org> |
4 | .\" All rights reserved. | | 4 | .\" All rights reserved. |
5 | .\" | | 5 | .\" |
6 | .\" Redistribution and use in source and binary forms, with or without | | 6 | .\" Redistribution and use in source and binary forms, with or without |
7 | .\" modification, are permitted provided that the following conditions | | 7 | .\" modification, are permitted provided that the following conditions |
8 | .\" are met: | | 8 | .\" are met: |
9 | .\" 1. Redistributions of source code must retain the above copyright | | 9 | .\" 1. Redistributions of source code must retain the above copyright |
10 | .\" notice, this list of conditions and the following disclaimer. | | 10 | .\" notice, this list of conditions and the following disclaimer. |
11 | .\" 2. Redistributions in binary form must reproduce the above copyright | | 11 | .\" 2. Redistributions in binary form must reproduce the above copyright |
12 | .\" notice, this list of conditions and the following disclaimer in the | | 12 | .\" notice, this list of conditions and the following disclaimer in the |
13 | .\" documentation and/or other materials provided with the distribution. | | 13 | .\" documentation and/or other materials provided with the distribution. |
14 | .\" 3. The name of the author may not be used to endorse or promote products | | 14 | .\" 3. The name of the author may not be used to endorse or promote products |
15 | .\" derived from this software without specific prior written permission. | | 15 | .\" derived from this software without specific prior written permission. |
16 | .\" | | 16 | .\" |
17 | .\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR | | 17 | .\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR |
18 | .\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES | | 18 | .\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES |
19 | .\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. | | 19 | .\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. |
20 | .\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, | | 20 | .\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, |
21 | .\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | | 21 | .\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT |
22 | .\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, | | 22 | .\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, |
23 | .\" DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY | | 23 | .\" DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY |
24 | .\" THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT | | 24 | .\" THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT |
25 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | | 25 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
26 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | | 26 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
27 | .\" | | 27 | .\" |
28 | .Dd February 28, 2008 | | 28 | .Dd September 24, 2008 |
29 | .Dt KAUTH 9 | | 29 | .Dt KAUTH 9 |
30 | .Os | | 30 | .Os |
31 | .Sh NAME | | 31 | .Sh NAME |
32 | .Nm kauth | | 32 | .Nm kauth |
33 | .Nd kernel authorization framework | | 33 | .Nd kernel authorization framework |
34 | .Sh SYNOPSIS | | 34 | .Sh SYNOPSIS |
35 | .In sys/kauth.h | | 35 | .In sys/kauth.h |
36 | .Sh DESCRIPTION | | 36 | .Sh DESCRIPTION |
37 | .Nm , | | 37 | .Nm , |
38 | or kernel authorization, is the subsystem managing all authorization requests | | 38 | or kernel authorization, is the subsystem managing all authorization requests |
39 | inside the kernel. | | 39 | inside the kernel. |
40 | It manages user credentials and rights, and can be used | | 40 | It manages user credentials and rights, and can be used |
41 | to implement a system-wide security policy. | | 41 | to implement a system-wide security policy. |
| @@ -962,27 +962,27 @@ is a member in the group list of | | | @@ -962,27 +962,27 @@ is a member in the group list of |
962 | If it is, | | 962 | If it is, |
963 | .Ar resultp | | 963 | .Ar resultp |
964 | will be set to one, otherwise, to zero. | | 964 | will be set to one, otherwise, to zero. |
965 | .Pp | | 965 | .Pp |
966 | The return value is an error code, or zero for success. | | 966 | The return value is an error code, or zero for success. |
967 | .It Ft u_int Fn kauth_cred_ngroups "kauth_cred_t cred" | | 967 | .It Ft u_int Fn kauth_cred_ngroups "kauth_cred_t cred" |
968 | Return the number of groups in the group list of | | 968 | Return the number of groups in the group list of |
969 | .Ar cred . | | 969 | .Ar cred . |
970 | .It Ft gid_t Fn kauth_cred_group "kauth_cred_t cred" "u_int idx" | | 970 | .It Ft gid_t Fn kauth_cred_group "kauth_cred_t cred" "u_int idx" |
971 | Return the group-id of the group at index | | 971 | Return the group-id of the group at index |
972 | .Ar idx | | 972 | .Ar idx |
973 | in the group list of | | 973 | in the group list of |
974 | .Ar cred . | | 974 | .Ar cred . |
975 | .It Ft int Fn kauth_cred_setgroups "kauth_cred_t cred" "gid_t *groups" \ | | 975 | .It Ft int Fn kauth_cred_setgroups "kauth_cred_t cred" "const gid_t *groups" \ |
976 | "size_t ngroups" "uid_t gmuid" "enum uio_seg seg" | | 976 | "size_t ngroups" "uid_t gmuid" "enum uio_seg seg" |
977 | Copy | | 977 | Copy |
978 | .Ar ngroups | | 978 | .Ar ngroups |
979 | groups from array pointed to by | | 979 | groups from array pointed to by |
980 | .Ar groups | | 980 | .Ar groups |
981 | to the group list in | | 981 | to the group list in |
982 | .Ar cred , | | 982 | .Ar cred , |
983 | adjusting the number of groups in | | 983 | adjusting the number of groups in |
984 | .Ar cred | | 984 | .Ar cred |
985 | appropriately. | | 985 | appropriately. |
986 | .Ar seg | | 986 | .Ar seg |
987 | should be either | | 987 | should be either |
988 | .Dv UIO_USERSPACE | | 988 | .Dv UIO_USERSPACE |