Robert Watson 32f9753cfb Eliminate now-unused SUSER_ALLOWJAIL arguments to priv_check_cred(); in ... some cases, move to priv_check() if it was an operation on a thread and no other flags were present. Eliminate caller-side jail exception checking (also now-unused); jail privilege exception code now goes solely in kern_jail.c. We can't yet eliminate suser() due to some cases in the KAME code where a privilege check is performed and then used in many different deferred paths. Do, however, move those prototypes to priv.h. Reviewed by: csjp Obtained from: TrustedBSD Project		2007-06-12 00:12:01 +00:00
..
audit	Clean up, and sometimes remove, a number of audit-related implementation	2007-06-11 22:10:54 +00:00
mac	Rename mac*devfsdirent*() to mac*devfs*() to synchronize with SEDarwin,	2007-04-23 13:36:54 +00:00
mac_biba	Rename mac*devfsdirent*() to mac*devfs*() to synchronize with SEDarwin,	2007-04-23 13:36:54 +00:00
mac_bsdextended	Apply variable name normalization to MAC policies: adopt global conventions	2007-04-23 13:15:23 +00:00
mac_ifoff	Apply variable name normalization to MAC policies: adopt global conventions	2007-04-23 13:15:23 +00:00
mac_lomac	Commit 14/14 of sched_lock decomposition.	2007-06-05 00:00:57 +00:00
mac_mls	Rename mac*devfsdirent*() to mac*devfs*() to synchronize with SEDarwin,	2007-04-23 13:36:54 +00:00
mac_none	Remove many unneeded includes, update copyright.	2007-02-23 11:21:26 +00:00
mac_partition	Apply variable name normalization to MAC policies: adopt global conventions	2007-04-23 13:15:23 +00:00
mac_portacl	Eliminate now-unused SUSER_ALLOWJAIL arguments to priv_check_cred(); in	2007-06-12 00:12:01 +00:00
mac_seeotheruids	Eliminate now-unused SUSER_ALLOWJAIL arguments to priv_check_cred(); in	2007-06-12 00:12:01 +00:00
mac_stub	Rename mac*devfsdirent*() to mac*devfs*() to synchronize with SEDarwin,	2007-04-23 13:36:54 +00:00
mac_test	Rename mac*devfsdirent*() to mac*devfs*() to synchronize with SEDarwin,	2007-04-23 13:36:54 +00:00