aci_data_structures.h File Reference

Go to the source code of this file.

Defines
#define	RSBAC_GEN_FD_ACI_VERSION   7
#define	RSBAC_GEN_FD_ACI_KEY   1001
#define	DEFAULT_GEN_FD_ACI
#define	DEFAULT_GEN_ROOT_DIR_ACI
#define	RSBAC_GEN_FD_OLD_ACI_VERSION   6
#define	RSBAC_GEN_FD_OLD_OLD_ACI_VERSION   5
#define	RSBAC_GEN_FD_OLD_OLD_OLD_ACI_VERSION   4
#define	RSBAC_FD_NR_ATTRIBUTES   31
#define	RSBAC_FD_ATTR_LIST
#define	RSBAC_GEN_ACI_DEV_NAME   "dev_gen"
#define	RSBAC_MAC_ACI_DEV_NAME   "dev_mac"
#define	RSBAC_PM_ACI_DEV_NAME   "dev_pm"
#define	RSBAC_RC_ACI_DEV_MAJOR_NAME   "devm_rc"
#define	RSBAC_RC_ACI_DEV_NAME   "dev_rc"
#define	RSBAC_GEN_DEV_ACI_VERSION   2
#define	RSBAC_GEN_DEV_OLD_ACI_VERSION   1
#define	RSBAC_GEN_DEV_ACI_KEY   1001
#define	DEFAULT_GEN_DEV_ACI
#define	RSBAC_DEV_NR_ATTRIBUTES   8
#define	RSBAC_DEV_ATTR_LIST
#define	RSBAC_MAC_ACI_IPC_NAME   "ipc_mac"
#define	RSBAC_PM_ACI_IPC_NAME   "ipc_pm"
#define	RSBAC_RC_ACI_IPC_NAME   "ipc_rc"
#define	RSBAC_JAIL_ACI_IPC_NAME   "ipc_jai"
#define	RSBAC_IPC_NR_ATTRIBUTES   7
#define	RSBAC_IPC_ATTR_LIST
#define	RSBAC_GEN_ACI_USER_NAME   "u_gen"
#define	RSBAC_MAC_ACI_USER_NAME   "u_mac"
#define	RSBAC_PM_ACI_USER_NAME   "u_pm"
#define	RSBAC_DAZ_ACI_USER_NAME   "u_daz"
#define	RSBAC_FF_ACI_USER_NAME   "u_ff"
#define	RSBAC_RC_ACI_USER_NAME   "u_rc"
#define	RSBAC_AUTH_ACI_USER_NAME   "u_auth"
#define	RSBAC_CAP_ACI_USER_NAME   "u_cap"
#define	RSBAC_JAIL_ACI_USER_NAME   "u_jail"
#define	RSBAC_PAX_ACI_USER_NAME   "u_pax"
#define	RSBAC_RES_ACI_USER_NAME   "u_res"
#define	RSBAC_GEN_USER_ACI_VERSION   1
#define	RSBAC_GEN_USER_ACI_KEY   1001
#define	DEFAULT_GEN_U_ACI
#define	RSBAC_USER_NR_ATTRIBUTES   23
#define	RSBAC_USER_ATTR_LIST
#define	RSBAC_GEN_ACI_PROCESS_NAME   "process_gen."
#define	RSBAC_MAC_ACI_PROCESS_NAME   "process_mac."
#define	RSBAC_PM_ACI_PROCESS_NAME   "process_pm"
#define	RSBAC_DAZ_ACI_PROCESS_NAME   "process_daz"
#define	RSBAC_RC_ACI_PROCESS_NAME   "process_rc."
#define	RSBAC_AUTH_ACI_PROCESS_NAME   "process_auth"
#define	RSBAC_CAP_ACI_PROCESS_NAME   "process_cap"
#define	RSBAC_JAIL_ACI_PROCESS_NAME   "process_jail"
#define	RSBAC_GEN_PROCESS_ACI_VERSION   2
#define	RSBAC_GEN_PROCESS_ACI_KEY   1001
#define	DEFAULT_GEN_P_ACI
#define	RSBAC_PROCESS_NR_ATTRIBUTES   36
#define	RSBAC_PROCESS_ATTR_LIST
#define	RSBAC_RC_ACI_GROUP_NAME   "grouprc"
#define	RSBAC_GROUP_NR_ATTRIBUTES   1
#define	RSBAC_GROUP_ATTR_LIST
#define	RSBAC_GEN_ACI_NETDEV_NAME   "nd_gen"
#define	RSBAC_RC_ACI_NETDEV_NAME   "nd_rc"
#define	RSBAC_GEN_NETDEV_ACI_VERSION   1
#define	RSBAC_GEN_NETDEV_ACI_KEY   1001
#define	DEFAULT_GEN_NETDEV_ACI
#define	RSBAC_NETDEV_NR_ATTRIBUTES   3
#define	RSBAC_NETDEV_ATTR_LIST
#define	RSBAC_GEN_ACI_NETTEMP_NAME   "nt_gen"
#define	RSBAC_MAC_ACI_NETTEMP_NAME   "nt_mac"
#define	RSBAC_PM_ACI_NETTEMP_NAME   "nt_pm"
#define	RSBAC_RC_ACI_NETTEMP_NAME   "nt_rc"
#define	RSBAC_MAC_ACI_LNETOBJ_NAME   "lnetobj_mac"
#define	RSBAC_PM_ACI_LNETOBJ_NAME   "lnetobj_pm"
#define	RSBAC_RC_ACI_LNETOBJ_NAME   "lnetobj_rc"
#define	RSBAC_MAC_ACI_RNETOBJ_NAME   "rnetobj_mac"
#define	RSBAC_PM_ACI_RNETOBJ_NAME   "rnetobj_pm"
#define	RSBAC_RC_ACI_RNETOBJ_NAME   "rnetobj_rc"
#define	RSBAC_GEN_NETOBJ_ACI_VERSION   1
#define	RSBAC_GEN_NETOBJ_ACI_KEY   1001
#define	DEFAULT_GEN_NETOBJ_ACI
#define	RSBAC_NETTEMP_NR_ATTRIBUTES   9
#define	RSBAC_NETTEMP_ATTR_LIST
#define	RSBAC_NETOBJ_NR_ATTRIBUTES   16
#define	RSBAC_NETOBJ_ATTR_LIST

---

Define Documentation

#define DEFAULT_GEN_DEV_ACI

Value: { \ .log_array_low = -1, \ .log_array_high = -1, \ } Definition at line 538 of file aci_data_structures.h. Referenced by get_attr_dev(), register_dev_lists(), and set_attr_dev().

#define DEFAULT_GEN_FD_ACI

Value: { \ .log_array_low = -1, \ .log_array_high = -1, \ .log_program_based = 0, \ .symlink_add_uid = FALSE, \ .symlink_add_mac_level = FALSE, \ .symlink_add_rc_role = FALSE, \ .linux_dac_disable = LDD_inherit, \ .fake_root_uid = FR_off, \ .auid_exempt = RSBAC_NO_USER, \ } Definition at line 123 of file aci_data_structures.h. Referenced by get_attr_fd(), and set_attr_fd().

#define DEFAULT_GEN_NETDEV_ACI

Value: { \ .log_array_low = -1, \ .log_array_high = -1, \ } Definition at line 1478 of file aci_data_structures.h.

#define DEFAULT_GEN_NETOBJ_ACI

Value: { \ .log_array_low = -1, \ .log_array_high = -1, \ } Definition at line 1530 of file aci_data_structures.h.

#define DEFAULT_GEN_P_ACI

Value: { \ .log_program_based = 0, \ .fake_root_uid = FR_off, \ .audit_uid = RSBAC_NO_USER, \ .auid_exempt = RSBAC_NO_USER, \ .remote_ip = 0, \ .kernel_thread = 0, \ } Definition at line 1152 of file aci_data_structures.h. Referenced by get_attr_process(), register_process_lists(), and set_attr_process().

#define DEFAULT_GEN_ROOT_DIR_ACI

Value: { \ .log_array_low = -1, \ .log_array_high = -1, \ .log_program_based = 0, \ .symlink_add_uid = FALSE, \ .symlink_add_mac_level = FALSE, \ .symlink_add_rc_role = FALSE, \ .linux_dac_disable = LDD_false, \ .fake_root_uid = FR_off, \ .auid_exempt = RSBAC_NO_USER, \ } Definition at line 136 of file aci_data_structures.h.

#define DEFAULT_GEN_U_ACI

Value: { \ .pseudo = (rsbac_pseudo_t) 0, \ .log_user_based = 0, \ } Definition at line 715 of file aci_data_structures.h. Referenced by get_attr_user(), register_user_lists(), and set_attr_user().

#define RSBAC_AUTH_ACI_PROCESS_NAME   "process_auth"

Definition at line 1137 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_AUTH_ACI_USER_NAME   "u_auth"

Definition at line 702 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_CAP_ACI_PROCESS_NAME   "process_cap"

Definition at line 1138 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_CAP_ACI_USER_NAME   "u_cap"

Definition at line 703 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_DAZ_ACI_PROCESS_NAME   "process_daz"

Definition at line 1135 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_DAZ_ACI_USER_NAME   "u_daz"

Definition at line 699 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_DEV_ATTR_LIST

Value: { \ A_security_level, \ A_mac_categories, \ A_mac_check, \ A_pm_object_type, \ A_pm_object_class, \ A_rc_type, \ A_log_array_low, \ A_log_array_high \ } Definition at line 586 of file aci_data_structures.h.

#define RSBAC_DEV_NR_ATTRIBUTES   8

Definition at line 585 of file aci_data_structures.h.

#define RSBAC_FD_ATTR_LIST

Definition at line 417 of file aci_data_structures.h.

#define RSBAC_FD_NR_ATTRIBUTES   31

Definition at line 416 of file aci_data_structures.h.

#define RSBAC_FF_ACI_USER_NAME   "u_ff"

Definition at line 700 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_GEN_ACI_DEV_NAME   "dev_gen"

Definition at line 521 of file aci_data_structures.h. Referenced by register_dev_lists().

#define RSBAC_GEN_ACI_NETDEV_NAME   "nd_gen"

Definition at line 1468 of file aci_data_structures.h.

#define RSBAC_GEN_ACI_NETTEMP_NAME   "nt_gen"

Definition at line 1511 of file aci_data_structures.h.

#define RSBAC_GEN_ACI_PROCESS_NAME   "process_gen."

Definition at line 1132 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_GEN_ACI_USER_NAME   "u_gen"

Definition at line 696 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_GEN_DEV_ACI_KEY   1001

Definition at line 531 of file aci_data_structures.h. Referenced by register_dev_lists().

#define RSBAC_GEN_DEV_ACI_VERSION   2

Definition at line 529 of file aci_data_structures.h. Referenced by register_dev_lists().

#define RSBAC_GEN_DEV_OLD_ACI_VERSION   1

Definition at line 530 of file aci_data_structures.h. Referenced by gen_dev_get_conv().

#define RSBAC_GEN_FD_ACI_KEY   1001

Definition at line 109 of file aci_data_structures.h. Referenced by aci_detach_fd_lists(), and register_fd_lists().

#define RSBAC_GEN_FD_ACI_VERSION   7

Definition at line 108 of file aci_data_structures.h. Referenced by register_fd_lists().

#define RSBAC_GEN_FD_OLD_ACI_VERSION   6

Definition at line 149 of file aci_data_structures.h. Referenced by gen_fd_get_conv().

#define RSBAC_GEN_FD_OLD_OLD_ACI_VERSION   5

Definition at line 163 of file aci_data_structures.h. Referenced by gen_fd_get_conv().

#define RSBAC_GEN_FD_OLD_OLD_OLD_ACI_VERSION   4

Definition at line 176 of file aci_data_structures.h. Referenced by gen_fd_get_conv().

#define RSBAC_GEN_NETDEV_ACI_KEY   1001

Definition at line 1472 of file aci_data_structures.h.

#define RSBAC_GEN_NETDEV_ACI_VERSION   1

Definition at line 1471 of file aci_data_structures.h.

#define RSBAC_GEN_NETOBJ_ACI_KEY   1001

Definition at line 1524 of file aci_data_structures.h.

#define RSBAC_GEN_NETOBJ_ACI_VERSION   1

Definition at line 1523 of file aci_data_structures.h.

#define RSBAC_GEN_PROCESS_ACI_KEY   1001

Definition at line 1142 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_GEN_PROCESS_ACI_VERSION   2

Definition at line 1141 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_GEN_USER_ACI_KEY   1001

Definition at line 709 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_GEN_USER_ACI_VERSION   1

Definition at line 708 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_GROUP_ATTR_LIST

Value: { \ A_rc_type \ } Definition at line 1452 of file aci_data_structures.h.

#define RSBAC_GROUP_NR_ATTRIBUTES   1

Definition at line 1451 of file aci_data_structures.h.

#define RSBAC_IPC_ATTR_LIST

Value: { \ A_security_level, \ A_mac_categories, \ A_pm_object_class, \ A_pm_ipc_purpose, \ A_pm_object_type, \ A_rc_type, \ A_jail_id \ } Definition at line 665 of file aci_data_structures.h.

#define RSBAC_IPC_NR_ATTRIBUTES   7

Definition at line 664 of file aci_data_structures.h.

#define RSBAC_JAIL_ACI_IPC_NAME   "ipc_jai"

Definition at line 620 of file aci_data_structures.h. Referenced by register_ipc_lists().

#define RSBAC_JAIL_ACI_PROCESS_NAME   "process_jail"

Definition at line 1139 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_JAIL_ACI_USER_NAME   "u_jail"

Definition at line 704 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_MAC_ACI_DEV_NAME   "dev_mac"

Definition at line 522 of file aci_data_structures.h. Referenced by register_dev_lists().

#define RSBAC_MAC_ACI_IPC_NAME   "ipc_mac"

Definition at line 617 of file aci_data_structures.h. Referenced by register_ipc_lists().

#define RSBAC_MAC_ACI_LNETOBJ_NAME   "lnetobj_mac"

Definition at line 1516 of file aci_data_structures.h.

#define RSBAC_MAC_ACI_NETTEMP_NAME   "nt_mac"

Definition at line 1512 of file aci_data_structures.h.

#define RSBAC_MAC_ACI_PROCESS_NAME   "process_mac."

Definition at line 1133 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_MAC_ACI_RNETOBJ_NAME   "rnetobj_mac"

Definition at line 1519 of file aci_data_structures.h.

#define RSBAC_MAC_ACI_USER_NAME   "u_mac"

Definition at line 697 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_NETDEV_ATTR_LIST

Value: { \ A_rc_type, \ A_log_array_low, \ A_log_array_high \ } Definition at line 1490 of file aci_data_structures.h.

#define RSBAC_NETDEV_NR_ATTRIBUTES   3

Definition at line 1489 of file aci_data_structures.h.

#define RSBAC_NETOBJ_ATTR_LIST

Value: { \ A_local_sec_level, \ A_remote_sec_level, \ A_local_mac_categories, \ A_remote_mac_categories, \ A_local_pm_object_class, \ A_remote_pm_object_class, \ A_local_pm_ipc_purpose, \ A_remote_pm_ipc_purpose, \ A_local_pm_object_type, \ A_remote_pm_object_type, \ A_local_rc_type, \ A_remote_rc_type, \ A_local_log_array_low, \ A_remote_log_array_low, \ A_local_log_array_high, \ A_remote_log_array_high \ } Definition at line 1600 of file aci_data_structures.h.

#define RSBAC_NETOBJ_NR_ATTRIBUTES   16

Definition at line 1599 of file aci_data_structures.h.

#define RSBAC_NETTEMP_ATTR_LIST

Value: { \ A_security_level, \ A_mac_categories, \ A_pm_object_class, \ A_pm_ipc_purpose, \ A_pm_object_type, \ A_rc_type, \ A_rc_type_nt, \ A_log_array_low, \ A_log_array_high \ } Definition at line 1587 of file aci_data_structures.h.

#define RSBAC_NETTEMP_NR_ATTRIBUTES   9

Definition at line 1586 of file aci_data_structures.h.

#define RSBAC_PAX_ACI_USER_NAME   "u_pax"

Definition at line 705 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_PM_ACI_DEV_NAME   "dev_pm"

Definition at line 523 of file aci_data_structures.h. Referenced by register_dev_lists().

#define RSBAC_PM_ACI_IPC_NAME   "ipc_pm"

Definition at line 618 of file aci_data_structures.h. Referenced by register_ipc_lists().

#define RSBAC_PM_ACI_LNETOBJ_NAME   "lnetobj_pm"

Definition at line 1517 of file aci_data_structures.h.

#define RSBAC_PM_ACI_NETTEMP_NAME   "nt_pm"

Definition at line 1513 of file aci_data_structures.h.

#define RSBAC_PM_ACI_PROCESS_NAME   "process_pm"

Definition at line 1134 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_PM_ACI_RNETOBJ_NAME   "rnetobj_pm"

Definition at line 1520 of file aci_data_structures.h.

#define RSBAC_PM_ACI_USER_NAME   "u_pm"

Definition at line 698 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_PROCESS_ATTR_LIST

Definition at line 1370 of file aci_data_structures.h.

#define RSBAC_PROCESS_NR_ATTRIBUTES   36

Definition at line 1369 of file aci_data_structures.h.

#define RSBAC_RC_ACI_DEV_MAJOR_NAME   "devm_rc"

Definition at line 524 of file aci_data_structures.h. Referenced by register_dev_lists().

#define RSBAC_RC_ACI_DEV_NAME   "dev_rc"

Definition at line 525 of file aci_data_structures.h. Referenced by register_dev_lists().

#define RSBAC_RC_ACI_GROUP_NAME   "grouprc"

Definition at line 1442 of file aci_data_structures.h.

#define RSBAC_RC_ACI_IPC_NAME   "ipc_rc"

Definition at line 619 of file aci_data_structures.h. Referenced by register_ipc_lists().

#define RSBAC_RC_ACI_LNETOBJ_NAME   "lnetobj_rc"

Definition at line 1518 of file aci_data_structures.h.

#define RSBAC_RC_ACI_NETDEV_NAME   "nd_rc"

Definition at line 1469 of file aci_data_structures.h.

#define RSBAC_RC_ACI_NETTEMP_NAME   "nt_rc"

Definition at line 1514 of file aci_data_structures.h.

#define RSBAC_RC_ACI_PROCESS_NAME   "process_rc."

Definition at line 1136 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_RC_ACI_RNETOBJ_NAME   "rnetobj_rc"

Definition at line 1521 of file aci_data_structures.h.

#define RSBAC_RC_ACI_USER_NAME   "u_rc"

Definition at line 701 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_RES_ACI_USER_NAME   "u_res"

Definition at line 706 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_USER_ATTR_LIST

Value: { \ A_pseudo, \ A_log_user_based, \ A_security_level, \ A_initial_security_level, \ A_min_security_level, \ A_mac_categories, \ A_mac_initial_categories, \ A_mac_min_categories, \ A_mac_role, \ A_mac_user_flags, \ A_daz_role, \ A_ff_role, \ A_auth_role, \ A_pm_task_set, \ A_pm_role, \ A_rc_def_role, \ A_rc_type, \ A_min_caps, \ A_max_caps, \ A_cap_role, \ A_jail_role, \ A_res_role, \ A_pax_role \ } Definition at line 1066 of file aci_data_structures.h.

#define RSBAC_USER_NR_ATTRIBUTES   23

Definition at line 1065 of file aci_data_structures.h.

---