124N/A# Copyright 2007 Sun Microsystems, Inc. All rights reserved.
124N/A# Use is subject to license terms.
124N/A# The contents of this file are subject to the terms of the
124N/A# Common Development and Distribution License (the "License").
124N/A# You may not use this file except in compliance with the License.
124N/A# See the License for the specific language governing permissions
124N/A# and limitations under the License.
124N/A# When distributing Covered Code, include this CDDL HEADER in each
124N/A# If applicable, add the following below this CDDL HEADER, with the
124N/A# fields enclosed by brackets "[]" replaced with your own identifying
124N/A# information: Portions Copyright [yyyy] [name of copyright owner]
124N/A#ident "%Z%%M% %I% %E% SMI"
5230N/A# Device policy configuration file. When devices are opened the
618N/A# additional access controls in this file are enforced.
124N/A# The format of this file is subject to change without notice.
5230N/A# Default open privileges, must be first entry in the file.
124N/A* read_priv_set=none write_priv_set=none
3817N/Amm:allkmem read_priv_set=all write_priv_set=all
124N/Amm:kmem read_priv_set=none write_priv_set=all
2960N/Amm:mem read_priv_set=none write_priv_set=all
2960N/Artvc:rtvc* write_priv_set=none
2960N/Artvc:rtvcctl* write_priv_set=sys_config
1776N/A# Socket interface access permissions.
124N/Aicmp read_priv_set=net_icmpaccess write_priv_set=net_icmpaccess
124N/Aicmp6 read_priv_set=net_icmpaccess write_priv_set=net_icmpaccess
3069N/Aip read_priv_set=net_rawaccess write_priv_set=net_rawaccess
3069N/Aip6 read_priv_set=net_rawaccess write_priv_set=net_rawaccess
3069N/Akeysock read_priv_set=sys_ip_config write_priv_set=sys_ip_config
124N/Aipsecah read_priv_set=sys_ip_config write_priv_set=sys_ip_config
124N/Aipsecesp read_priv_set=sys_ip_config write_priv_set=sys_ip_config
124N/Aspdsock read_priv_set=sys_ip_config write_priv_set=sys_ip_config
124N/A# Raw network interface access permissions
3878N/Ace read_priv_set=net_rawaccess write_priv_set=net_rawaccess
124N/Aeri read_priv_set=net_rawaccess write_priv_set=net_rawaccess
124N/Age read_priv_set=net_rawaccess write_priv_set=net_rawaccess
5111N/Ahme read_priv_set=net_rawaccess write_priv_set=net_rawaccess
124N/Aibd read_priv_set=net_rawaccess write_priv_set=net_rawaccess
765N/Apcelx read_priv_set=net_rawaccess write_priv_set=net_rawaccess
765N/Aqfe read_priv_set=net_rawaccess write_priv_set=net_rawaccess
765N/Aaggr read_priv_set=net_rawaccess write_priv_set=net_rawaccess
765N/A# Virtual network interface access permission
1792N/Avni read_priv_set=net_rawaccess write_priv_set=net_rawaccess
765N/Amd:admin write_priv_set=sys_config
765N/Afssnap:ctl read_priv_set=sys_config write_priv_set=sys_config
765N/Ascsi_vhci:devctl write_priv_set=sys_devices
3477N/A# Other devices that require a privilege to open.
124N/Aenvctrltwo read_priv_set=sys_config write_priv_set=sys_config
1776N/Arandom write_priv_set=sys_devices
124N/Aopeneepr write_priv_set=all
181N/Adld:ctl read_priv_set=sys_net_config write_priv_set=sys_net_config
124N/Aaggr:ctl read_priv_set=sys_net_config write_priv_set=sys_net_config
3817N/Aipf read_priv_set=sys_ip_config write_priv_set=sys_ip_config