X-Git-Url: https://git.saurik.com/apple/xnu.git/blobdiff_plain/55e303ae13a4cf49d70f2294092726f2fffb9ef2..143464d58d2bd6378e74eec636961ceb0d32fb91:/bsd/kern/kern_xxx.c?ds=sidebyside diff --git a/bsd/kern/kern_xxx.c b/bsd/kern/kern_xxx.c index 730ec3194..293808838 100644 --- a/bsd/kern/kern_xxx.c +++ b/bsd/kern/kern_xxx.c @@ -1,16 +1,19 @@ /* - * Copyright (c) 2000-2003 Apple Computer, Inc. All rights reserved. + * Copyright (c) 2000-2009 Apple Inc. All rights reserved. * - * @APPLE_LICENSE_HEADER_START@ - * - * Copyright (c) 1999-2003 Apple Computer, Inc. All Rights Reserved. + * @APPLE_OSREFERENCE_LICENSE_HEADER_START@ * * This file contains Original Code and/or Modifications of Original Code * as defined in and that are subject to the Apple Public Source License * Version 2.0 (the 'License'). You may not use this file except in - * compliance with the License. Please obtain a copy of the License at - * http://www.opensource.apple.com/apsl/ and read it before using this - * file. + * compliance with the License. The rights granted to you under the License + * may not be used to create, or enable the creation or redistribution of, + * unlawful or unlicensed copies of an Apple operating system, or to + * circumvent, violate, or enable the circumvention or violation of, any + * terms of an Apple operating system software license agreement. + * + * Please obtain a copy of the License at + * http://www.opensource.apple.com/apsl/ and read it before using this file. * * The Original Code and all software distributed under the License are * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER @@ -20,7 +23,7 @@ * Please see the License for the specific language governing rights and * limitations under the License. * - * @APPLE_LICENSE_HEADER_END@ + * @APPLE_OSREFERENCE_LICENSE_HEADER_END@ */ /* Copyright (c) 1995 NeXT Computer, Inc. All Rights Reserved */ /* @@ -57,158 +60,63 @@ * * @(#)kern_xxx.c 8.2 (Berkeley) 11/14/93 */ +/* + * NOTICE: This file was modified by SPARTA, Inc. in 2005 to introduce + * support for mandatory and extensible security protections. This notice + * is included in support of clause 2.2 (b) of the Apple Public License, + * Version 2.0. + */ #include #include #include #include -#include +#include +#include #include #include #include #include -#include +#include -#if COMPAT_43 -/* ARGSUSED */ -int -ogethostid(p, uap, retval) -struct proc *p; -void *uap; -register_t *retval; -{ - - *retval = hostid; - return 0; -} - -struct osethostid_args { - long hostid; -}; -/* ARGSUSED */ -int -osethostid(p, uap, retval) -struct proc *p; -register struct osethostid_args *uap; -register_t *retval; -{ - int error; - - if (error = suser(p->p_ucred, &p->p_acflag)) - return (error); - hostid = uap->hostid; - return (0); - -} - -struct ogethostname_args { - char *hostname; - u_int len; -}; -/* ARGSUSED */ -int -ogethostname(p, uap, retval) -struct proc *p; -register struct ogethostname_args *uap; -register_t *retval; -{ - int name; - - name = KERN_HOSTNAME; - - return (kern_sysctl(&name, 1, uap->hostname, &uap->len, 0, 0)); -} +#include +#include +#if CONFIG_MACF +#include +#endif -struct osethostname_args { - char *hostname; - u_int len; -}; -/* ARGSUSED */ int -osethostname(p, uap, retval) -struct proc *p; -register struct osethostname_args *uap; -register_t *retval; -{ - int name; - int error; - - if (error = suser(p->p_ucred, &p->p_acflag)) - return (error); - - name = KERN_HOSTNAME; - return (kern_sysctl(&name, 1, 0, 0, uap->hostname, - uap->len)); -} - -struct ogetdomainname_args { - char *domainname; - int len; -}; -/* ARGSUSED */ -int -ogetdomainname(p, uap, retval) -struct proc *p; -register struct ogetdomainname_args *uap; -register_t *retval; -{ - int name; - - name = KERN_DOMAINNAME; - return (kern_sysctl(&name, 1, uap->domainname, - &uap->len, 0, 0)); -} - -struct osetdomainname_args { - char *domainname; - u_int len; -}; -/* ARGSUSED */ -int -osetdomainname(p, uap, retval) -struct proc *p; -register struct osetdomainname_args *uap; -register_t *retval; -{ - int name; - int error; - - if (error = suser(p->p_ucred, &p->p_acflag)) - return (error); - name = KERN_DOMAINNAME; - return (kern_sysctl(&name, 1, 0, 0, uap->domainname, - uap->len)); -} -#endif /* COMPAT_43 */ - -struct reboot_args { - int opt; - char *command; -}; - -reboot(p, uap, retval) -struct proc *p; -register struct reboot_args *uap; -register_t *retval; +reboot(struct proc *p, register struct reboot_args *uap, __unused int32_t *retval) { char command[64]; - int error; - int dummy=0; + int error=0; + size_t dummy=0; +#if CONFIG_MACF + kauth_cred_t my_cred; +#endif + + AUDIT_ARG(cmd, uap->opt); command[0] = '\0'; - if (error = suser(p->p_cred->pc_ucred, &p->p_acflag)) + if ((error = suser(kauth_cred_get(), &p->p_acflag))) return(error); if (uap->opt & RB_COMMAND) - error = copyinstr((void *)uap->command, + error = copyinstr(uap->command, (void *)command, sizeof(command), (size_t *)&dummy); +#if CONFIG_MACF + if (error) + return (error); + my_cred = kauth_cred_proc_ref(p); + error = mac_system_check_reboot(my_cred, uap->opt); + kauth_cred_unref(&my_cred); +#endif if (!error) { - SET(p->p_flag, P_REBOOT); /* No more signals for this proc */ - boot(RB_BOOT, uap->opt, command); + OSBitOrAtomic(P_REBOOT, &p->p_flag); /* No more signals for this proc */ + error = boot(RB_BOOT, uap->opt, command); } return(error); } -