Updated: 2022/Sep/29

Please read Privacy Policy. It's for your privacy.

SECMODEL_SUSER(9)          Kernel Developer's Manual         SECMODEL_SUSER(9)

NAME
     secmodel_suser - super-user security model

DESCRIPTION
     secmodel_suser implements the traditional super-user (root) as the user
     with effective user-id 0.  The super-user is the host administrator,
     considered to have higher privileges than other users.

FUNCTIONS
     secmodel_suser exposes a secmodel_eval(9) evaluation routine to test
     whether a set of credentials can be assimilated to super-user credentials
     or not.

     The parameters to secmodel_eval(9) are:
     id     the unique identifier of secmodel_suser:
            "org.netbsd.secmodel.suser"
     what   a string, "is-root".
     arg    the kauth(9) credentials (kauth_cred_t) of the caller.
     ret    a boolean, set by secmodel_suser to true when the credentials are
            equivalent to super-user, false otherwise.

RETURN TYPES
     If successful, the evaluation returns 0 with the ret argument being
     either true or false.

SEE ALSO
     kauth(9), secmodel(9), secmodel_bsd44(9), secmodel_eval(9)

AUTHORS
     Elad Efrat <elad@NetBSD.org>

NetBSD 10.99                   December 4, 2011                   NetBSD 10.99