sun-src/tsol/tsolpolicy.h

/* Copyright (c) 2004, 2009, Oracle and/or its affiliates. All rights reserved.
 *
 * Permission is hereby granted, free of charge, to any person obtaining a
 * copy of this software and associated documentation files (the "Software"),
 * to deal in the Software without restriction, including without limitation
 * the rights to use, copy, modify, merge, publish, distribute, sublicense,
 * and/or sell copies of the Software, and to permit persons to whom the
 * Software is furnished to do so, subject to the following conditions:
 *
 * The above copyright notice and this permission notice (including the next
 * paragraph) shall be included in all copies or substantial portions of the
 * Software.
 *
 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.  IN NO EVENT SHALL
 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
 * FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
 * DEALINGS IN THE SOFTWARE.
 */

#ifndef _TSOL_POLICY_H
#define _TSOL_POLICY_H


#ifdef  __cplusplus
extern "C" {
#endif

#include <assert.h>

#define PASSED      0   /* success code 0 */
#ifndef FAILED
#define FAILED      1   /* failed is non-zero (could be error no) */
#endif /* FAILED */

#define AUDIT_SUCCESS   1
#define AUDIT_FAILURE   0

/*
 * Policy checking flags
 */

enum xpolicy_flags {
    TSOL_MAC   = 0x00000001,    /* MAC policy */
    TSOL_DAC   = 0x00000002,    /* DAC floating */
    TSOL_FLOAT = 0x00000004,    /* float ILs */
    TSOL_AUDIT = 0x00000008,    /* perform auditing */
    TSOL_PRIV  = 0x00000010,    /* privilege check */
    TSOL_TP    = 0x00000020,    /* Trusted Path check */
    TSOL_READOP  = 0x00000040,  /* read operation */
    TSOL_WRITEOP = 0x00000080,  /* write operation */
    TSOL_OWNER = 0x00000100,    /* Check for workstation owner */
    TSOL_DOMINATE    = 0x00000200,  /* Check for default uid */
    TSOL_ALL   = 0x0fffffff     /* do them all */
};

typedef enum xpolicy_flags xpolicy_t;

#define XTSOL_FAIL  1   /* Replaces SecurityErrorOperation */
#define XTSOL_ALLOW 2   /* Replaces SecurityAllowOperation */
#define XTSOL_IGNORE    3   /* Replaces SecurityIgnoreOperation */


#ifndef MAJOROP
#define MAJOROP ((xReq *)client->requestBuffer)->reqType
#endif  /* MAJOROP */
#define RES_TYPE(xid)   ((xid) & (0x8000000F))


/*
 * Function prototypes
 */

void init_win_privsets(void);
void free_win_privsets(void);

#ifdef  __cplusplus
}
#endif

#endif  /* _TSOL_POLICY_H */