Subject: Re: CVS commit: [elad-kernelauth] src/sys
To: YAMAMOTO Takashi <yamt@mwd.biglobe.ne.jp>
From: Elad Efrat <elad@NetBSD.org>
List: source-changes
Date: 03/08/2006 22:13:10
This is a multi-part message in MIME format.
--------------000502010709060605080601
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit

YAMAMOTO Takashi wrote:

> its name doesn't imply anything about its usage.
> generally, exporting more symbols is a bad idea, esp. when
> its name is too generic like this.
> 
> i think it's better to make it static and
> move process_authorize to kern_auth.c.

See attached diff, it:

  - changes builtin_{generic,process} to
    kauth_builtin_scope_{generic,process}, and makes them static.
  - remove extern for the above two from kauth.h.
  - moves process_authorize() from kern_proc.c to kern_auth.c.

Is this okay?

-e.

-- 
Elad Efrat

--------------000502010709060605080601
Content-Type: text/plain;
 name="kauth.diff"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline;
 filename="kauth.diff"

Index: kern/kern_auth.c
===================================================================
RCS file: /cvsroot/src/sys/kern/Attic/kern_auth.c,v
retrieving revision 1.1.2.7
diff -u -p -r1.1.2.7 kern_auth.c
--- kern/kern_auth.c	8 Mar 2006 19:18:35 -0000	1.1.2.7
+++ kern/kern_auth.c	8 Mar 2006 20:12:46 -0000
@@ -94,8 +94,8 @@ SIMPLEQ_HEAD(, kauth_scope) scope_list;
 struct simplelock scopes_lock;
 
 /* Built-in scopes: generic, process. */
-kauth_scope_t builtin_generic;
-kauth_scope_t builtin_process;
+static kauth_scope_t kauth_builtin_scope_generic;
+static kauth_scope_t kauth_builtin_scope_process;
 
 /* Allocate new, empty kauth credentials. */
 kauth_cred_t
@@ -672,14 +672,12 @@ kauth_init(void)
 	simple_lock_init(&scopes_lock);
 
 	/* Register generic scope. */
-	builtin_generic = kauth_register_scope(KAUTH_SCOPE_GENERIC,
-					       kauth_authorize_cb_generic,
-					       NULL);
+	kauth_builtin_scope_generic = kauth_register_scope(KAUTH_SCOPE_GENERIC,
+	    kauth_authorize_cb_generic, NULL);
 
 	/* Register process scope. */
-	builtin_process = kauth_register_scope(KAUTH_SCOPE_PROCESS,
-					       kauth_authorize_cb_process,
-					       NULL);
+	kauth_builtin_scope_process = kauth_register_scope(KAUTH_SCOPE_PROCESS,
+	    kauth_authorize_cb_process, NULL);
 }
 
 /*
@@ -829,8 +827,8 @@ kauth_authorize_cb_generic(kauth_cred_t 
 int
 generic_authorize(kauth_cred_t cred, kauth_action_t action, void *arg0)
 {
-	return (kauth_authorize_action(builtin_generic, cred, action, arg0,
-				       NULL, NULL, NULL));
+	return (kauth_authorize_action(kauth_builtin_scope_generic, cred, 
+	    action, arg0, NULL, NULL, NULL));
 }
 
 /*
@@ -885,3 +883,14 @@ kauth_authorize_cb_process(kauth_cred_t 
 
 	return (error);
 }
+
+/*
+ * Process scope authorization wrapper.
+ */
+int
+process_authorize(kauth_cred_t cred, kauth_action_t action, struct proc *p,
+	       void *arg1, void *arg2, void *arg3)
+{
+	return (kauth_authorize_action(kauth_builtin_scope_process, cred,
+	    action, p, arg1, arg2, arg3));
+}
Index: kern/kern_proc.c
===================================================================
RCS file: /cvsroot/src/sys/kern/kern_proc.c,v
retrieving revision 1.86.4.1
diff -u -p -r1.86.4.1 kern_proc.c
--- kern/kern_proc.c	8 Mar 2006 00:53:40 -0000	1.86.4.1
+++ kern/kern_proc.c	8 Mar 2006 20:12:51 -0000
@@ -1248,15 +1248,3 @@ proc_vmspace_getref(struct proc *p, stru
 
 	return 0;
 }
-
-/*
- * Process scope authorization wrapper.
- */
-int
-process_authorize(kauth_cred_t cred, kauth_action_t action, struct proc *p,
-	       void *arg1, void *arg2, void *arg3)
-{
-	return (kauth_authorize_action(builtin_process, cred, action, p, arg1,
-				       arg2, arg3));
-}
-
Index: sys/kauth.h
===================================================================
RCS file: /cvsroot/src/sys/sys/Attic/kauth.h,v
retrieving revision 1.1.2.4
diff -u -p -r1.1.2.4 kauth.h
--- sys/kauth.h	8 Mar 2006 17:31:56 -0000	1.1.2.4
+++ sys/kauth.h	8 Mar 2006 20:12:51 -0000
@@ -78,10 +78,6 @@ typedef int (*kauth_scope_callback_t)(ka
 #define NOCRED ((kauth_cred_t)-1)	/* no credential available */
 #define FSCRED ((kauth_cred_t)-2)	/* filesystem credential */
 
-/* Globals. */
-extern kauth_scope_t builtin_generic;
-extern kauth_scope_t builtin_process;
-
 /*
  * Prototypes.
  */

--------------000502010709060605080601--