/share/man/man9/cr_seeothergids.9

https://bitbucket.org/freebsd/freebsd-head/ · Unknown · 82 lines · 82 code · 0 blank · 0 comment · 0 complexity · c4031a6cb086d8407678f7bdf83c5e3d MD5 · raw file 

    

  1. .\"
    2. 

  2. .\" Copyright (c) 2003 Joseph Koshy <jkoshy@FreeBSD.org>
    3. 

  3. .\"
    4. 

  4. .\" All rights reserved.
    5. 

  5. .\"
    6. 

  6. .\" This program is free software.
    7. 

  7. .\"
    8. 

  8. .\" Redistribution and use in source and binary forms, with or without
    9. 

  9. .\" modification, are permitted provided that the following conditions
    10. 

  10. .\" are met:
    11. 

  11. .\" 1. Redistributions of source code must retain the above copyright
    12. 

  12. .\"    notice, this list of conditions and the following disclaimer.
    13. 

  13. .\" 2. Redistributions in binary form must reproduce the above copyright
    14. 

  14. .\"    notice, this list of conditions and the following disclaimer in the
    15. 

  15. .\"    documentation and/or other materials provided with the distribution.
    16. 

  16. .\"
    17. 

  17. .\" THIS SOFTWARE IS PROVIDED BY THE DEVELOPERS ``AS IS'' AND ANY EXPRESS OR
    18. 

  18. .\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
    19. 

  19. .\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
    20. 

  20. .\" IN NO EVENT SHALL THE DEVELOPERS BE LIABLE FOR ANY DIRECT, INDIRECT,
    21. 

  21. .\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
    22. 

  22. .\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
    23. 

  23. .\" DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
    24. 

  24. .\" THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
    25. 

  25. .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
    26. 

  26. .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
    27. 

  27. .\"
    28. 

  28. .\" $FreeBSD$
    29. 

  29. .\"
    30. 

  30. .Dd November 11, 2003
    31. 

  31. .Dt CR_SEEOTHERGIDS 9
    32. 

  32. .Os
    33. 

  33. .Sh NAME
    34. 

  34. .Nm cr_seeothergids
    35. 

  35. .Nd determine visibility of objects given their group memberships
    36. 

  36. .Sh SYNOPSIS
    37. 

  37. .Ft int
    38. 

  38. .Fn cr_seeothergids "struct ucred *u1" "struct ucred *u2"
    39. 

  39. .Sh DESCRIPTION
    40. 

  40. This function determines the visibility of objects in the
    41. 

  41. kernel based on the group IDs in the credentials
    42. 

  42. .Fa u1
    43. 

  43. and
    44. 

  44. .Fa u2
    45. 

  45. associated with them.
    46. 

  46. .Pp
    47. 

  47. The visibility of objects is influenced by the
    48. 

  48. .Xr sysctl 8
    49. 

  49. variable
    50. 

  50. .Va security.bsd.see_other_gids .
    51. 

  51. If this variable is non-zero then all objects in the kernel
    52. 

  52. are visible to each other irrespective of their group membership.
    53. 

  53. If this variable is zero then the object with credentials
    54. 

  54. .Fa u2
    55. 

  55. is visible to the object with credentials
    56. 

  56. .Fa u1
    57. 

  57. if either
    58. 

  58. .Fa u1
    59. 

  59. is the super-user credential, or if at least one of
    60. 

  60. .Fa u1 Ns 's
    61. 

  61. group IDs is present in
    62. 

  62. .Fa u2 Ns 's
    63. 

  63. group set.
    64. 

  64. .Sh SYSCTL VARIABLES
    65. 

  65. .Bl -tag -width indent
    66. 

  66. .It Va security.bsd.see_other_gids
    67. 

  67. Must be non-zero if objects with unprivileged credentials are to be
    68. 

  68. able to see each other.
    69. 

  69. .El
    70. 

  70. .Sh RETURN VALUES
    71. 

  71. This function returns zero if the object with credential
    72. 

  72. .Fa u1
    73. 

  73. can
    74. 

  74. .Dq see
    75. 

  75. the object with credential
    76. 

  76. .Fa u2 ,
    77. 

  77. or
    78. 

  78. .Er ESRCH
    79. 

  79. otherwise.
    80. 

  80. .Sh SEE ALSO
    81. 

  81. .Xr cr_seeotheruids 9 ,
    82. 

  82. .Xr p_candebug 9
    83.