version 1.69, 2011/11/18 21:18:51 |
version 1.70, 2012/03/13 18:40:51 |
Line 970 udf_chown(struct vnode *vp, uid_t new_ui |
|
Line 970 udf_chown(struct vnode *vp, uid_t new_ui |
|
return EINVAL; |
return EINVAL; |
|
|
/* check permissions */ |
/* check permissions */ |
error = genfs_can_chown(vp, cred, uid, gid, new_uid, new_gid); |
error = kauth_authorize_vnode(cred, KAUTH_VNODE_CHANGE_OWNERSHIP, |
|
vp, NULL, genfs_can_chown(cred, uid, gid, new_uid, new_gid)); |
if (error) |
if (error) |
return (error); |
return (error); |
|
|
Line 1008 udf_chmod(struct vnode *vp, mode_t mode, |
|
Line 1009 udf_chmod(struct vnode *vp, mode_t mode, |
|
udf_getownership(udf_node, &uid, &gid); |
udf_getownership(udf_node, &uid, &gid); |
|
|
/* check permissions */ |
/* check permissions */ |
error = genfs_can_chmod(vp, cred, uid, gid, mode); |
error = kauth_authorize_vnode(cred, KAUTH_VNODE_WRITE_SECURITY, vp, |
|
NULL, genfs_can_chmod(vp->v_type, cred, uid, gid, mode)); |
if (error) |
if (error) |
return (error); |
return (error); |
|
|
Line 1116 udf_chtimes(struct vnode *vp, |
|
Line 1118 udf_chtimes(struct vnode *vp, |
|
udf_getownership(udf_node, &uid, &gid); |
udf_getownership(udf_node, &uid, &gid); |
|
|
/* check permissions */ |
/* check permissions */ |
error = genfs_can_chtimes(vp, setattrflags, uid, cred); |
error = kauth_authorize_vnode(cred, KAUTH_VNODE_WRITE_TIMES, vp, |
|
NULL, genfs_can_chtimes(vp, setattrflags, uid, cred)); |
if (error) |
if (error) |
return (error); |
return (error); |
|
|
Line 1371 udf_check_permitted(struct vnode *vp, st |
|
Line 1374 udf_check_permitted(struct vnode *vp, st |
|
{ |
{ |
|
|
/* ask the generic genfs_can_access to advice on security */ |
/* ask the generic genfs_can_access to advice on security */ |
return genfs_can_access(vp->v_type, |
return kauth_authorize_vnode(cred, kauth_access_action(mode, |
vap->va_mode, vap->va_uid, vap->va_gid, |
vp->v_type, vap->va_mode), vp, NULL, genfs_can_access(vp->v_type, |
mode, cred); |
vap->va_mode, vap->va_uid, vap->va_gid, mode, cred)); |
} |
} |
|
|
int |
int |