next up previous contents index
Next: 11.2.5 sid_to_context: Obtain the Up: 11.2 oskit_security: Security Server Previous: 11.2.3 transition_sid: Compute a

11.2.4 member_sid: Compute a SID for a member object

 

SYNOPSIS

#include <oskit/flask/security.h>

OSKIT_COMDECL oskit_security_member_sid(oskit_security_t *security, oskit_security_id_t ssid, oskit_security_id_t tsid, oskit_security_class_t tclass, [out] oskit_security_id_t *out_sid);

DESCRIPTION

The security_member_sid function computes a SID to use when selecting a member of a polyinstantiated object based on a SID pair and a class. Certain fixed resources, such as the /tmp directory or the TCP/UDP port number spaces, need be polyinstantiated to restrict sharing among processes. Each instantiation is referred to as a member. The object managers call this function when a polyinstantiated object is accessed and then transparently redirect the process to the appropriate member.

PARAMETERS

security
The security server.
ssid
The source SID.
tsid
The target SID.
tclass
The security class of the polyinstantiated object.
out_sid
The SID of the instance to be used.

RETURNS

Returns 0 on success, or an error code specified in <oskit/error.h>, on error.



Utah Flux Research Group