NAME | SYNOPSIS | DESCRIPTION | RETURN VALUES | ERRORS | ATTRIBUTES | SEE ALSO | NOTES
#include <door.h> #include <sys/tsol/tdoor.h>int door_tcred(door_tcred_t *info);
The door_tcred() function returns the extended credential information associated with the client (if any) of the current door invocation.
The tsol_door_cred_t structure is returned by the door_tcred() interface. It is added to the Trusted Solaris environment so that a door server is able to get the Trusted Solaris attributes of the calling client.
/* * Structure used to return info from door_tcred */ typedef struct tsol_door_cred { door_cred_t tdc_cred; /* cred data */ bclabel_t tdc_cmw_label; /* CMW Label */ bclear_t tdc_clearance; /* Clearance */ pattr_t tdc_proc_attr; /* Proc. Attr. Flags */ priv_set_t tdc_effective; /* Effective set */ } tsol_door_cred_t;
The credential information associated with the client refers to the information from the immediate caller, not necessarily from the first thread in a chain of door calls.
The door_tcred() function fails if:
The address of the info argument is invalid.
There is no associated door client.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE | ATTRIBUTE VALUE |
---|---|
Architecture | all |
Availability | SUNWtsu |
Stability | Unstable |
MT-Level | Safe |
It would be more appropriate to use an extensible mechanism rather than the door_tcred() call. This is expected to be part of the general extension mechanism for process attributes, and will be addressed then. The current door_tcred() can be re-implemented in terms of such a general mechanism.
NAME | SYNOPSIS | DESCRIPTION | RETURN VALUES | ERRORS | ATTRIBUTES | SEE ALSO | NOTES