/daten/src/linux-2.4.27-rsbac-v1.2.3/include/rsbac/types.h File Reference

#include <linux/types.h>
#include <rsbac/pm_types.h>
#include <rsbac/rc_types.h>
#include <linux/capability.h>
#include <rsbac/network_types.h>
#include <rsbac/request_groups.h>
#include <rsbac/acl_types.h>

Go to the source code of this file.

Data Structures

union  rsbac_ipc_id_t
struct  rsbac_ipc_t
struct  rsbac_auth_cap_range_t
struct  rsbac_net_obj_desc_t
union  rsbac_target_id_t
union  rsbac_attribute_value_t

Defines

#define RSBAC_VERSION   "v1.2.3"
#define RSBAC_VERSION_MAJOR   1
#define RSBAC_VERSION_MID   2
#define RSBAC_VERSION_MINOR   3
#define RSBAC_VERSION_NR   ((RSBAC_VERSION_MAJOR << 16) | (RSBAC_VERSION_MID << 8) | RSBAC_VERSION_MINOR)
#define RSBAC_VERSION_MAKE_NR(x, y, z)   ((x << 16) & (y << 8) & z)
#define NULL   ((void *) 0)
#define rsbac_min(a, b)   (((a)<(b))?(a):(b))
#define rsbac_max(a, b)   (((a)>(b))?(a):(b))
#define RSBAC_OLD_NO_USER   65533
#define RSBAC_OLD_ALL_USERS   65532
#define RSBAC_NO_USER   ((rsbac_uid_t) -3)
#define RSBAC_ALL_USERS   ((rsbac_uid_t) -4)
#define RSBAC_IFNAMSIZ   16
#define RSBAC_SEC_DEL_CHUNK_SIZE   65536
#define RSBAC_AUTH_LOGIN_PATH   "/bin/login"
#define RSBAC_AUTH_LOGIN_PATH_DIR   "bin"
#define RSBAC_AUTH_LOGIN_PATH_FILE   "login"
#define RSBAC_LIST_TTL_KEEP   ((rsbac_time_t) -1)
#define RSBAC_SYSADM_UID   0
#define RSBAC_BIN_UID   1
#define RSBAC_SECOFF_UID   400
#define RSBAC_DATAPROT_UID   (RSBAC_SECOFF_UID+1)
#define RSBAC_TPMAN_UID   (RSBAC_SECOFF_UID+2)
#define RSBAC_AUDITOR_UID   (RSBAC_SECOFF_UID+4)
#define SL_max   252
#define SL_min   0
#define SL_inherit   254
#define SL_none   255
#define RSBAC_MAC_GENERAL_CATEGORY   0
#define RSBAC_MAC_DEF_CAT_VECTOR   ((rsbac_mac_category_vector_t) 1)
#define RSBAC_MAC_MAX_CAT_VECTOR   ((rsbac_mac_category_vector_t) -1)
#define RSBAC_MAC_MIN_CAT_VECTOR   ((rsbac_mac_category_vector_t) 0)
#define RSBAC_MAC_INHERIT_CAT_VECTOR   ((rsbac_mac_category_vector_t) 0)
#define RSBAC_MAC_NR_CATS   64
#define RSBAC_MAC_MAX_CAT   63
#define RSBAC_MAC_CAT_VECTOR(x)   ((rsbac_mac_category_vector_t) 1 << (x))
#define RSBAC_FC_OC_DEF   OC_inherit
#define RSBAC_FC_OC_ROOT_DEF   OC_general
#define RSBAC_SIM_DT_DEF   DT_inherit
#define RSBAC_SIM_DT_ROOT_DEF   DT_none
#define RSBAC_REQUEST_VECTOR(x)   ((rsbac_request_vector_t) 1 << (x))
#define RSBAC_MAXNAMELEN   256
#define RSBAC_MAC_MAX_MAXNUM   1000000
#define MAC_override   1
#define MAC_auto   2
#define MAC_trusted   4
#define MAC_write_up   8
#define MAC_read_up   16
#define MAC_write_down   32
#define MAC_allow_auto   64
#define MAC_prop_trusted   128
#define MAC_program_auto   256
#define RSBAC_MAC_U_FLAGS   (MAC_override | MAC_trusted | MAC_write_up | MAC_read_up | MAC_write_down | MAC_allow_auto)
#define RSBAC_MAC_P_FLAGS   (MAC_override | MAC_auto | MAC_trusted | MAC_write_up | MAC_read_up | MAC_write_down | MAC_prop_trusted | MAC_program_auto)
#define RSBAC_MAC_F_FLAGS   (MAC_auto | MAC_trusted | MAC_write_up | MAC_read_up | MAC_write_down)
#define RSBAC_MAC_DEF_U_FLAGS   0
#define RSBAC_MAC_DEF_SYSADM_U_FLAGS   MAC_allow_auto
#define RSBAC_MAC_DEF_SECOFF_U_FLAGS   MAC_override
#define RSBAC_MAC_DEF_P_FLAGS   0
#define RSBAC_MAC_DEF_INIT_P_FLAGS   MAC_auto
#define DAZ_unscanned   0
#define DAZ_infected   1
#define DAZ_clean   2
#define DAZ_max   2
#define DEFAULT_DAZ_FD_SCANNED   DAZ_unscanned
#define FF_read_only   1
#define FF_execute_only   2
#define FF_search_only   4
#define FF_write_only   8
#define FF_secure_delete   16
#define FF_no_execute   32
#define FF_no_delete_or_rename   64
#define FF_append_only   256
#define FF_no_mount   512
#define FF_add_inherited   128
#define RSBAC_FF_DEF   FF_add_inherited
#define RSBAC_FF_ROOT_DEF   0
#define RSBAC_AUTH_MAX_MAXNUM   1000000
#define RSBAC_AUTH_OLD_OWNER_F_CAP   (rsbac_old_uid_t) -3
#define RSBAC_AUTH_OWNER_F_CAP   ((rsbac_uid_t) -3)
#define RSBAC_AUTH_DAC_OWNER_F_CAP   ((rsbac_uid_t) -4)
#define RSBAC_AUTH_MAX_RANGE_UID   ((rsbac_uid_t) -10)
#define CAP_NONE   29
#define RSBAC_CAP_MAX   CAP_NONE
#define RSBAC_JAIL_VERSION   1
#define RSBAC_JAIL_DEF_ID   0
#define JAIL_allow_external_ipc   1
#define JAIL_allow_all_net_family   2
#define JAIL_allow_rlimit   4
#define JAIL_allow_inet_raw   8
#define JAIL_auto_adjust_inet_any   16
#define JAIL_allow_inet_localhost   32
#define JAIL_allow_clock   64
#define RSBAC_JAIL_LOCALHOST   ((1 << 24) | 127)
#define PF_PAX_PAGEEXEC   0x01000000
#define PF_PAX_EMUTRAMP   0x02000000
#define PF_PAX_MPROTECT   0x04000000
#define PF_PAX_RANDMMAP   0x08000000
#define PF_PAX_RANDEXEC   0x10000000
#define PF_PAX_SEGMEXEC   0x20000000
#define RSBAC_PAX_DEF_FLAGS   (PF_PAX_SEGMEXEC | PF_PAX_MPROTECT | PF_PAX_RANDMMAP)
#define RSBAC_PAX_ALL_FLAGS   ((rsbac_pax_flags_t) 255 << 24)
#define RSBAC_RES_UNSET   0
#define RSBAC_RES_MAX   10
#define RSBAC_RES_NONE   11
#define RSBAC_ADF_REQUEST_ARRAY_VERSION   2
#define RSBAC_MAX_MOD   (SOFTMODE - 1)

Typedefs

typedef __u8 rsbac_boolean_int_t
typedef u_char rsbac_netdev_id_t [RSBAC_IFNAMSIZ+1]
typedef __u32 rsbac_version_t
typedef __u32 rsbac_uid_t
typedef __u32 rsbac_gid_t
typedef __u16 rsbac_old_uid_t
typedef __u16 rsbac_old_gid_t
typedef __u32 rsbac_time_t
typedef __u32 rsbac_cap_vector_t
typedef __u8 rsbac_enum_t
typedef __u32 rsbac_pseudo_t
typedef __u32 rsbac_pid_t
typedef __u8 rsbac_security_level_t
typedef __u64 rsbac_mac_category_vector_t
typedef u_int rsbac_cwi_relation_id_t
typedef rsbac_enum_t rsbac_system_role_int_t
typedef rsbac_enum_t rsbac_fc_oc_t
typedef rsbac_enum_t rsbac_sim_dt_t
typedef rsbac_enum_t rsbac_fake_root_uid_int_t
typedef __u32 rsbac_inode_nr_t
typedef rsbac_enum_t rsbac_linux_dac_disable_int_t
typedef __u64 rsbac_log_array_t
typedef __u64 rsbac_request_vector_t
typedef __u8 rsbac_mac_user_flags_t
typedef __u16 rsbac_mac_process_flags_t
typedef __u8 rsbac_mac_file_flags_t
typedef rsbac_fs_file_t rsbac_mac_file_t
typedef rsbac_enum_t rsbac_mac_auto_int_t
typedef __u8 rsbac_daz_scanned_t
typedef __u8 rsbac_daz_scanner_t
typedef __u16 rsbac_ff_flags_t
typedef rsbac_fs_file_t rsbac_auth_file_t
typedef rsbac_enum_t rsbac_auth_cap_type_int_t
typedef rsbac_enum_t rsbac_cap_process_hiding_int_t
typedef __u32 rsbac_jail_id_t
typedef __u32 rsbac_jail_ip_t
typedef __u32 rsbac_jail_flags_t
typedef unsigned long rsbac_pax_flags_t
typedef __u32 rsbac_res_limit_t
typedef rsbac_res_limit_t rsbac_res_array_t [RSBAC_RES_MAX+1]
typedef __s32 rsbac_reg_handle_t
typedef void * rsbac_net_obj_id_t
typedef rsbac_enum_t rsbac_adf_request_int_t
typedef rsbac_enum_t rsbac_switch_target_int_t

Enumerations

enum  boolean { FALSE, TRUE }
enum  rsbac_old_security_level_t {
  SL_unclassified, SL_confidential, SL_secret, SL_top_secret,
  SL_old_rsbac_internal, SL_old_inherit, SL_old_none
}
enum  rsbac_system_role_t {
  SR_user, SR_security_officer, SR_administrator, SR_auditor,
  SR_none
}
enum  rsbac_object_category_t {
  OC_general, OC_security, OC_system, OC_inherit,
  OC_none
}
enum  rsbac_data_type_t { DT_none, DT_SI, DT_inherit }
enum  rsbac_fake_root_uid_t {
  FR_off, FR_uid_only, FR_euid_only, FR_both,
  FR_none
}
enum  rsbac_scd_type_t {
  ST_time_strucs, ST_clock, ST_host_id, ST_net_id,
  ST_ioports, ST_rlimit, ST_swap, ST_syslog,
  ST_rsbac, ST_rsbaclog, ST_other, ST_kmem,
  ST_network, ST_firewall, ST_priority, ST_sysfs,
  ST_none
}
enum  rsbac_dev_type_t { D_block, D_char, D_none }
enum  rsbac_ipc_type_t { I_sem, I_msg, I_shm, I_none }
enum  rsbac_linux_dac_disable_t { LDD_false, LDD_true, LDD_inherit, LDD_none }
enum  rsbac_log_level_t {
  LL_none, LL_denied, LL_full, LL_request,
  LL_invalid
}
enum  rsbac_mac_auto_t { MA_no, MA_yes, MA_inherit }
enum  rsbac_auth_cap_type_t { ACT_real, ACT_eff, ACT_fs, ACT_none }
enum  rsbac_cap_process_hiding_t { PH_off, PH_from_other_users, PH_full, PH_none }
enum  rsbac_adf_request_t {
  R_ADD_TO_KERNEL, R_ALTER, R_APPEND_OPEN, R_CHANGE_GROUP,
  R_CHANGE_OWNER, R_CHDIR, R_CLONE, R_CLOSE,
  R_CREATE, R_DELETE, R_EXECUTE, R_GET_PERMISSIONS_DATA,
  R_GET_STATUS_DATA, R_LINK_HARD, R_MODIFY_ACCESS_DATA, R_MODIFY_ATTRIBUTE,
  R_MODIFY_PERMISSIONS_DATA, R_MODIFY_SYSTEM_DATA, R_MOUNT, R_READ,
  R_READ_ATTRIBUTE, R_READ_WRITE_OPEN, R_READ_OPEN, R_REMOVE_FROM_KERNEL,
  R_RENAME, R_SEARCH, R_SEND_SIGNAL, R_SHUTDOWN,
  R_SWITCH_LOG, R_SWITCH_MODULE, R_TERMINATE, R_TRACE,
  R_TRUNCATE, R_UMOUNT, R_WRITE, R_WRITE_OPEN,
  R_MAP_EXEC, R_BIND, R_LISTEN, R_ACCEPT,
  R_CONNECT, R_SEND, R_RECEIVE, R_NET_SHUTDOWN,
  R_CHANGE_DAC_EFF_OWNER, R_CHANGE_DAC_FS_OWNER, R_NONE
}
enum  rsbac_adf_req_ret_t { NOT_GRANTED, GRANTED, DO_NOT_CARE, UNDEFINED }
enum  rsbac_switch_target_t {
  GEN, MAC, FC, SIM,
  PM, DAZ, FF, RC,
  AUTH, REG, ACL, CAP,
  JAIL, RES, PAX, SOFTMODE,
  DAC_DISABLE, SW_NONE
}
enum  rsbac_target_t {
  T_FILE, T_DIR, T_FIFO, T_SYMLINK,
  T_DEV, T_IPC, T_SCD, T_USER,
  T_PROCESS, T_NETDEV, T_NETTEMP, T_NETOBJ,
  T_NETTEMP_NT, T_FD, T_NONE
}
enum  rsbac_attribute_t {
  A_pseudo, A_security_level, A_initial_security_level, A_local_sec_level,
  A_remote_sec_level, A_min_security_level, A_mac_categories, A_mac_initial_categories,
  A_local_mac_categories, A_remote_mac_categories, A_mac_min_categories, A_mac_user_flags,
  A_mac_process_flags, A_mac_file_flags, A_object_category, A_local_object_category,
  A_remote_object_category, A_data_type, A_local_data_type, A_remote_data_type,
  A_system_role, A_mac_role, A_fc_role, A_sim_role,
  A_daz_role, A_ff_role, A_auth_role, A_cap_role,
  A_jail_role, A_pax_role, A_current_sec_level, A_mac_curr_categories,
  A_min_write_open, A_min_write_categories, A_max_read_open, A_max_read_categories,
  A_mac_auto, A_mac_check, A_mac_prop_trusted, A_pm_role,
  A_pm_process_type, A_pm_current_task, A_pm_object_class, A_local_pm_object_class,
  A_remote_pm_object_class, A_pm_ipc_purpose, A_local_pm_ipc_purpose, A_remote_pm_ipc_purpose,
  A_pm_object_type, A_local_pm_object_type, A_remote_pm_object_type, A_pm_program_type,
  A_pm_tp, A_pm_task_set, A_daz_scanned, A_daz_scanner,
  A_ff_flags, A_rc_type, A_local_rc_type, A_remote_rc_type,
  A_rc_type_fd, A_rc_type_nt, A_rc_force_role, A_rc_initial_role,
  A_rc_role, A_rc_def_role, A_auth_may_setuid, A_auth_may_set_cap,
  A_auth_learn, A_min_caps, A_max_caps, A_jail_id,
  A_jail_ip, A_jail_flags, A_jail_max_caps, A_pax_flags,
  A_res_role, A_res_min, A_res_max, A_log_array_low,
  A_local_log_array_low, A_remote_log_array_low, A_log_array_high, A_local_log_array_high,
  A_remote_log_array_high, A_log_program_based, A_log_user_based, A_symlink_add_uid,
  A_symlink_add_mac_level, A_symlink_add_rc_role, A_linux_dac_disable, A_cap_process_hiding,
  A_fake_root_uid, A_none
}


Define Documentation

#define CAP_NONE   29
 

Definition at line 360 of file types.h.

Referenced by get_cap_name(), get_cap_nr(), strtou32cap(), and u32tostrcap().

#define DAZ_clean   2
 

Definition at line 308 of file types.h.

Referenced by rsbac_adf_request_daz(), and rsbac_adf_set_attr_daz().

#define DAZ_infected   1
 

Definition at line 307 of file types.h.

Referenced by rsbac_adf_request_daz().

#define DAZ_max   2
 

Definition at line 309 of file types.h.

#define DAZ_unscanned   0
 

Definition at line 306 of file types.h.

#define DEFAULT_DAZ_FD_SCANNED   DAZ_unscanned
 

Definition at line 310 of file types.h.

Referenced by register_fd_lists().

#define FF_add_inherited   128
 

Definition at line 326 of file types.h.

Referenced by rsbac_get_attr().

#define FF_append_only   256
 

Definition at line 323 of file types.h.

Referenced by rsbac_adf_request_ff().

#define FF_execute_only   2
 

Definition at line 317 of file types.h.

Referenced by rsbac_adf_request_ff().

#define FF_no_delete_or_rename   64
 

Definition at line 322 of file types.h.

Referenced by rsbac_adf_request_ff(), and rsbac_get_attr().

#define FF_no_execute   32
 

Definition at line 321 of file types.h.

Referenced by rsbac_adf_request_ff().

#define FF_no_mount   512
 

Definition at line 324 of file types.h.

Referenced by rsbac_adf_request_ff().

#define FF_read_only   1
 

Definition at line 316 of file types.h.

Referenced by rsbac_adf_request_ff().

#define FF_search_only   4
 

Definition at line 318 of file types.h.

Referenced by rsbac_adf_request_ff().

#define FF_secure_delete   16
 

Definition at line 320 of file types.h.

#define FF_write_only   8
 

Definition at line 319 of file types.h.

Referenced by rsbac_adf_request_ff().

#define JAIL_allow_all_net_family   2
 

Definition at line 373 of file types.h.

Referenced by rsbac_adf_request_jail().

#define JAIL_allow_clock   64
 

Definition at line 378 of file types.h.

Referenced by rsbac_adf_request_jail().

#define JAIL_allow_external_ipc   1
 

Definition at line 372 of file types.h.

Referenced by rsbac_adf_request_jail().

#define JAIL_allow_inet_localhost   32
 

Definition at line 377 of file types.h.

#define JAIL_allow_inet_raw   8
 

Definition at line 375 of file types.h.

Referenced by rsbac_adf_request_jail().

#define JAIL_allow_rlimit   4
 

Definition at line 374 of file types.h.

Referenced by rsbac_adf_request_jail().

#define JAIL_auto_adjust_inet_any   16
 

Definition at line 376 of file types.h.

Referenced by rsbac_adf_set_attr_jail().

#define MAC_allow_auto   64
 

Definition at line 282 of file types.h.

Referenced by rsbac_adf_set_attr_mac().

#define MAC_auto   2
 

Definition at line 277 of file types.h.

Referenced by auto_read_attr(), auto_read_write_attr(), auto_write_attr(), rsbac_adf_set_attr_mac(), rsbac_get_attr(), rsbac_mac_set_curr_level(), and rsbac_set_attr().

#define MAC_override   1
 

Definition at line 276 of file types.h.

Referenced by auto_read_attr(), auto_read_write_attr(), auto_write_attr(), and rsbac_mac_set_curr_level().

#define MAC_program_auto   256
 

Definition at line 284 of file types.h.

Referenced by rsbac_adf_set_attr_mac().

#define MAC_prop_trusted   128
 

Definition at line 283 of file types.h.

#define MAC_read_up   16
 

Definition at line 280 of file types.h.

Referenced by auto_read_attr(), and auto_read_write_attr().

#define MAC_trusted   4
 

Definition at line 278 of file types.h.

Referenced by auto_read_attr(), auto_read_write_attr(), auto_write_attr(), rsbac_adf_set_attr_mac(), and rsbac_mac_set_curr_level().

#define MAC_write_down   32
 

Definition at line 281 of file types.h.

Referenced by auto_read_write_attr(), and auto_write_attr().

#define MAC_write_up   8
 

Definition at line 279 of file types.h.

Referenced by auto_read_write_attr(), and auto_write_attr().

#define NULL   ((void *) 0)
 

Definition at line 78 of file types.h.

#define PF_PAX_EMUTRAMP   0x02000000
 

Definition at line 393 of file types.h.

Referenced by pax_print_flags(), and pax_strtoflags().

#define PF_PAX_MPROTECT   0x04000000
 

Definition at line 394 of file types.h.

Referenced by pax_print_flags(), and pax_strtoflags().

#define PF_PAX_PAGEEXEC   0x01000000
 

Definition at line 392 of file types.h.

Referenced by pax_print_flags(), and pax_strtoflags().

#define PF_PAX_RANDEXEC   0x10000000
 

Definition at line 396 of file types.h.

Referenced by pax_print_flags(), and pax_strtoflags().

#define PF_PAX_RANDMMAP   0x08000000
 

Definition at line 395 of file types.h.

Referenced by pax_print_flags(), and pax_strtoflags().

#define PF_PAX_SEGMEXEC   0x20000000
 

Definition at line 397 of file types.h.

Referenced by pax_print_flags(), and pax_strtoflags().

#define RSBAC_ADF_REQUEST_ARRAY_VERSION   2
 

Definition at line 439 of file types.h.

#define RSBAC_ALL_USERS   ((rsbac_uid_t) -4)
 

Definition at line 87 of file types.h.

Referenced by rsbac_get_attr(), rsbac_mac_p_truset_member(), and rsbac_set_attr().

#define RSBAC_AUDITOR_UID   (RSBAC_SECOFF_UID+4)
 

Definition at line 147 of file types.h.

Referenced by rsbac_do_init().

#define RSBAC_AUTH_DAC_OWNER_F_CAP   ((rsbac_uid_t) -4)
 

Definition at line 340 of file types.h.

Referenced by rsbac_adf_set_attr_auth().

#define RSBAC_AUTH_LOGIN_PATH   "/bin/login"
 

Definition at line 116 of file types.h.

Referenced by rsbac_do_init().

#define RSBAC_AUTH_LOGIN_PATH_DIR   "bin"
 

Definition at line 117 of file types.h.

Referenced by rsbac_do_init().

#define RSBAC_AUTH_LOGIN_PATH_FILE   "login"
 

Definition at line 118 of file types.h.

Referenced by rsbac_do_init().

#define RSBAC_AUTH_MAX_MAXNUM   1000000
 

Definition at line 337 of file types.h.

Referenced by sys_rsbac_auth_get_f_caplist(), and sys_rsbac_auth_get_p_caplist().

#define RSBAC_AUTH_MAX_RANGE_UID   ((rsbac_uid_t) -10)
 

Definition at line 341 of file types.h.

Referenced by rsbac_auth_p_capset_member().

#define RSBAC_AUTH_OLD_OWNER_F_CAP   (rsbac_old_uid_t) -3
 

Definition at line 338 of file types.h.

#define RSBAC_AUTH_OWNER_F_CAP   ((rsbac_uid_t) -3)
 

Definition at line 339 of file types.h.

Referenced by rsbac_adf_set_attr_auth(), and rsbac_auth_p_capset_member().

#define RSBAC_BIN_UID   1
 

Definition at line 139 of file types.h.

Referenced by rsbac_do_init().

#define RSBAC_CAP_MAX   CAP_NONE
 

Definition at line 361 of file types.h.

#define RSBAC_DATAPROT_UID   (RSBAC_SECOFF_UID+1)
 

Definition at line 145 of file types.h.

Referenced by rsbac_do_init().

#define RSBAC_FC_OC_DEF   OC_inherit
 

Definition at line 188 of file types.h.

Referenced by register_fd_lists(), and rsbac_get_attr().

#define RSBAC_FC_OC_ROOT_DEF   OC_general
 

Definition at line 189 of file types.h.

Referenced by rsbac_do_init(), and rsbac_get_attr().

#define RSBAC_FF_DEF   FF_add_inherited
 

Definition at line 328 of file types.h.

Referenced by register_fd_lists(), and rsbac_get_attr().

#define RSBAC_FF_ROOT_DEF   0
 

Definition at line 329 of file types.h.

#define RSBAC_IFNAMSIZ   16
 

Definition at line 109 of file types.h.

Referenced by get_target_name().

#define RSBAC_JAIL_DEF_ID   0
 

Definition at line 368 of file types.h.

Referenced by rsbac_do_init(), and rsbac_get_attr().

#define RSBAC_JAIL_LOCALHOST   ((1 << 24) | 127)
 

Definition at line 380 of file types.h.

#define RSBAC_JAIL_VERSION   1
 

Definition at line 365 of file types.h.

Referenced by rsbac_jail_sys_jail().

#define RSBAC_LIST_TTL_KEEP   ((rsbac_time_t) -1)
 

Definition at line 134 of file types.h.

Referenced by rsbac_acl_sys_add_to_acl_entry(), rsbac_acl_sys_set_acl_entry(), rsbac_list_add(), rsbac_list_add_ttl(), rsbac_list_add_u32(), rsbac_list_lol_add(), rsbac_list_lol_add_ttl(), rsbac_list_lol_add_u32(), rsbac_list_lol_subadd(), rsbac_list_lol_subadd_ttl(), and rsbac_list_lol_subadd_u32().

#define RSBAC_MAC_CAT_VECTOR  )     ((rsbac_mac_category_vector_t) 1 << (x))
 

Definition at line 176 of file types.h.

#define RSBAC_MAC_DEF_CAT_VECTOR   ((rsbac_mac_category_vector_t) 1)
 

Definition at line 165 of file types.h.

#define RSBAC_MAC_DEF_INIT_P_FLAGS   MAC_auto
 

Definition at line 295 of file types.h.

Referenced by rsbac_init().

#define RSBAC_MAC_DEF_P_FLAGS   0
 

Definition at line 294 of file types.h.

#define RSBAC_MAC_DEF_SECOFF_U_FLAGS   MAC_override
 

Definition at line 292 of file types.h.

#define RSBAC_MAC_DEF_SYSADM_U_FLAGS   MAC_allow_auto
 

Definition at line 291 of file types.h.

#define RSBAC_MAC_DEF_U_FLAGS   0
 

Definition at line 290 of file types.h.

#define RSBAC_MAC_F_FLAGS   (MAC_auto | MAC_trusted | MAC_write_up | MAC_read_up | MAC_write_down)
 

Definition at line 288 of file types.h.

Referenced by rsbac_set_attr().

#define RSBAC_MAC_GENERAL_CATEGORY   0
 

Definition at line 164 of file types.h.

#define RSBAC_MAC_INHERIT_CAT_VECTOR   ((rsbac_mac_category_vector_t) 0)
 

Definition at line 171 of file types.h.

Referenced by rsbac_get_attr().

#define RSBAC_MAC_MAX_CAT   63
 

Definition at line 174 of file types.h.

Referenced by strtou64mac(), and u64tostrmac().

#define RSBAC_MAC_MAX_CAT_VECTOR   ((rsbac_mac_category_vector_t) -1)
 

Definition at line 167 of file types.h.

Referenced by rsbac_adf_set_attr_mac().

#define RSBAC_MAC_MAX_MAXNUM   1000000
 

Definition at line 274 of file types.h.

Referenced by sys_rsbac_mac_get_f_trulist(), and sys_rsbac_mac_get_p_trulist().

#define RSBAC_MAC_MIN_CAT_VECTOR   ((rsbac_mac_category_vector_t) 0)
 

Definition at line 169 of file types.h.

Referenced by rsbac_adf_set_attr_mac(), and rsbac_mac_set_curr_level().

#define RSBAC_MAC_NR_CATS   64
 

Definition at line 173 of file types.h.

Referenced by strtou64mac(), and u64tostrmac().

#define RSBAC_MAC_P_FLAGS   (MAC_override | MAC_auto | MAC_trusted | MAC_write_up | MAC_read_up | MAC_write_down | MAC_prop_trusted | MAC_program_auto)
 

Definition at line 287 of file types.h.

Referenced by rsbac_adf_set_attr_mac(), rsbac_init(), and rsbac_set_attr().

#define RSBAC_MAC_U_FLAGS   (MAC_override | MAC_trusted | MAC_write_up | MAC_read_up | MAC_write_down | MAC_allow_auto)
 

Definition at line 286 of file types.h.

Referenced by rsbac_set_attr().

#define rsbac_max a,
 )     (((a)>(b))?(a):(b))
 

Definition at line 82 of file types.h.

#define RSBAC_MAX_MOD   (SOFTMODE - 1)
 

Definition at line 506 of file types.h.

#define RSBAC_MAXNAMELEN   256
 

Definition at line 266 of file types.h.

Referenced by aci_detach_fd_lists(), acl_detach_fd_lists(), acl_register_fd_lists(), auth_detach_fd_lists(), auth_register_fd_lists(), auto_read_attr(), auto_read_write_attr(), auto_write_attr(), check_comp_rc(), check_comp_rc_scd(), get_target_name(), mac_detach_fd_lists(), mac_register_fd_lists(), read_info(), register_fd_lists(), registration_error(), rsbac_acl_check_forward(), rsbac_acl_check_right(), rsbac_acl_check_super(), rsbac_acl_remove_acl_entry(), rsbac_acl_sys_add_to_acl_entry(), rsbac_acl_sys_get_mask(), rsbac_acl_sys_get_rights(), rsbac_acl_sys_get_tlist(), rsbac_acl_sys_group(), rsbac_acl_sys_remove_acl(), rsbac_acl_sys_remove_acl_entry(), rsbac_acl_sys_remove_from_acl_entry(), rsbac_acl_sys_remove_user(), rsbac_acl_sys_set_acl_entry(), rsbac_acl_sys_set_mask(), rsbac_adf_request_int(), rsbac_adf_request_rc(), rsbac_adf_set_attr(), rsbac_check(), rsbac_do_init(), rsbac_get_full_path(), rsbac_init_auth(), rsbac_init_debug(), rsbac_init_mac(), rsbac_init_rc(), rsbac_jail_sys_jail(), rsbac_list_lol_register(), rsbac_list_register(), rsbac_mac_set_curr_level(), rsbac_mount(), rsbac_mount_acl(), rsbac_mount_auth(), rsbac_mount_mac(), rsbac_rc_check_type_comp(), rsbac_rc_get_item(), rsbac_read_open(), rsbac_write_open(), sys_rsbac_adf_log_switch(), sys_rsbac_get_adf_log(), sys_rsbac_switch(), and write_info().

#define rsbac_min a,
 )     (((a)<(b))?(a):(b))
 

Definition at line 81 of file types.h.

Referenced by get_target_name(), rsbac_acl_sys_group(), rsbac_adf_set_attr_res(), rsbac_list_write_buffers(), and rsbac_list_write_lol_buffers().

#define RSBAC_NO_USER   ((rsbac_uid_t) -3)
 

Definition at line 86 of file types.h.

Referenced by rsbac_acl_add_to_acl_entry(), rsbac_acl_remove_acl_entry(), rsbac_acl_remove_from_acl_entry(), rsbac_acl_set_acl_entry(), rsbac_acl_sys_get_rights(), rsbac_acl_sys_group(), and rsbac_adf_set_attr().

#define RSBAC_OLD_ALL_USERS   65532
 

Definition at line 85 of file types.h.

#define RSBAC_OLD_NO_USER   65533
 

Definition at line 84 of file types.h.

#define RSBAC_PAX_ALL_FLAGS   ((rsbac_pax_flags_t) 255 << 24)
 

Definition at line 401 of file types.h.

Referenced by pax_strtoflags(), rsbac_get_attr(), and rsbac_set_attr().

#define RSBAC_PAX_DEF_FLAGS   (PF_PAX_SEGMEXEC | PF_PAX_MPROTECT | PF_PAX_RANDMMAP)
 

Definition at line 400 of file types.h.

Referenced by register_fd_lists(), and rsbac_get_attr().

#define RSBAC_REQUEST_VECTOR  )     ((rsbac_request_vector_t) 1 << (x))
 

Definition at line 263 of file types.h.

Referenced by rsbac_acl_check_right(), and rsbac_init_rc().

#define RSBAC_RES_MAX   10
 

Definition at line 409 of file types.h.

Referenced by get_res_name(), get_res_nr(), and rsbac_adf_set_attr_res().

#define RSBAC_RES_NONE   11
 

Definition at line 410 of file types.h.

Referenced by get_res_nr().

#define RSBAC_RES_UNSET   0
 

Definition at line 407 of file types.h.

#define RSBAC_SEC_DEL_CHUNK_SIZE   65536
 

Definition at line 112 of file types.h.

#define RSBAC_SECOFF_UID   400
 

Definition at line 143 of file types.h.

Referenced by rsbac_do_init().

#define RSBAC_SIM_DT_DEF   DT_inherit
 

Definition at line 195 of file types.h.

Referenced by register_fd_lists(), and rsbac_get_attr().

#define RSBAC_SIM_DT_ROOT_DEF   DT_none
 

Definition at line 196 of file types.h.

Referenced by rsbac_do_init(), and rsbac_get_attr().

#define RSBAC_SYSADM_UID   0
 

Definition at line 138 of file types.h.

Referenced by rsbac_do_init(), and rsbac_init().

#define RSBAC_TPMAN_UID   (RSBAC_SECOFF_UID+2)
 

Definition at line 146 of file types.h.

Referenced by rsbac_do_init().

#define RSBAC_VERSION   "v1.2.3"
 

Definition at line 17 of file types.h.

Referenced by rsbac_do_init().

#define RSBAC_VERSION_MAJOR   1
 

Definition at line 18 of file types.h.

#define RSBAC_VERSION_MAKE_NR x,
y,
 )     ((x << 16) & (y << 8) & z)
 

Definition at line 23 of file types.h.

#define RSBAC_VERSION_MID   2
 

Definition at line 19 of file types.h.

#define RSBAC_VERSION_MINOR   3
 

Definition at line 20 of file types.h.

#define RSBAC_VERSION_NR   ((RSBAC_VERSION_MAJOR << 16) | (RSBAC_VERSION_MID << 8) | RSBAC_VERSION_MINOR)
 

Definition at line 21 of file types.h.

Referenced by sys_rsbac().

#define SL_inherit   254
 

Definition at line 157 of file types.h.

Referenced by rsbac_get_attr().

#define SL_max   252
 

Definition at line 154 of file types.h.

Referenced by rsbac_adf_set_attr_mac(), and rsbac_mac_set_curr_level().

#define SL_min   0
 

Definition at line 155 of file types.h.

Referenced by rsbac_adf_set_attr_mac().

#define SL_none   255
 

Definition at line 158 of file types.h.

Referenced by rsbac_mac_set_curr_level().


Typedef Documentation

typedef rsbac_enum_t rsbac_adf_request_int_t
 

Definition at line 491 of file types.h.

Referenced by rsbac_adf_log_switch(), rsbac_get_adf_log(), and rsbac_init_debug().

typedef rsbac_enum_t rsbac_auth_cap_type_int_t
 

Definition at line 349 of file types.h.

typedef struct rsbac_fs_file_t rsbac_auth_file_t
 

Definition at line 342 of file types.h.

Referenced by copy_fp_cap_set_item(), rsbac_auth_add_f_cap(), rsbac_auth_add_to_f_capset(), rsbac_auth_clear_f_capset(), rsbac_auth_copy_fp_capset(), rsbac_auth_get_f_caplist(), rsbac_auth_remove_f_cap(), rsbac_auth_remove_f_capsets(), and rsbac_auth_remove_from_f_capset().

typedef __u8 rsbac_boolean_int_t
 

Definition at line 107 of file types.h.

typedef rsbac_enum_t rsbac_cap_process_hiding_int_t
 

Definition at line 357 of file types.h.

typedef __u32 rsbac_cap_vector_t
 

Definition at line 131 of file types.h.

Referenced by rsbac_jail_sys_jail(), and sys_rsbac_jail().

typedef u_int rsbac_cwi_relation_id_t
 

Definition at line 178 of file types.h.

typedef __u8 rsbac_daz_scanned_t
 

Definition at line 305 of file types.h.

Referenced by register_fd_lists().

typedef __u8 rsbac_daz_scanner_t
 

Definition at line 311 of file types.h.

typedef __u8 rsbac_enum_t
 

Definition at line 136 of file types.h.

Referenced by rsbac_adf_log_switch(), and rsbac_init_debug().

typedef rsbac_enum_t rsbac_fake_root_uid_int_t
 

Definition at line 203 of file types.h.

typedef rsbac_enum_t rsbac_fc_oc_t
 

Definition at line 191 of file types.h.

Referenced by register_fd_lists(), rsbac_do_init(), rsbac_get_attr(), and rsbac_set_attr().

typedef __u16 rsbac_ff_flags_t
 

Definition at line 315 of file types.h.

Referenced by check_flags_ff(), register_fd_lists(), and rsbac_get_attr().

typedef __u32 rsbac_gid_t
 

Definition at line 127 of file types.h.

typedef __u32 rsbac_inode_nr_t
 

Definition at line 220 of file types.h.

Referenced by acl_register_fd_lists(), auth_register_fd_lists(), fd_hash(), gen_fd_conv(), gen_fd_old_conv(), gen_fd_old_old_conv(), gen_fd_old_old_old_conv(), mac_register_fd_lists(), register_fd_lists(), rsbac_check(), rsbac_check_acl(), rsbac_check_auth(), rsbac_check_inode(), and rsbac_check_mac().

typedef __u32 rsbac_jail_flags_t
 

Definition at line 371 of file types.h.

Referenced by rsbac_adf_request_jail(), rsbac_jail_sys_jail(), and sys_rsbac_jail().

typedef __u32 rsbac_jail_id_t
 

Definition at line 367 of file types.h.

Referenced by rsbac_adf_request_jail(), rsbac_do_init(), rsbac_get_attr(), and rsbac_set_attr().

typedef __u32 rsbac_jail_ip_t
 

Definition at line 369 of file types.h.

Referenced by rsbac_jail_sys_jail(), and sys_rsbac_jail().

typedef rsbac_enum_t rsbac_linux_dac_disable_int_t
 

Definition at line 223 of file types.h.

typedef __u64 rsbac_log_array_t
 

Definition at line 259 of file types.h.

typedef rsbac_enum_t rsbac_mac_auto_int_t
 

Definition at line 297 of file types.h.

typedef __u64 rsbac_mac_category_vector_t
 

Definition at line 163 of file types.h.

Referenced by auto_read_attr(), auto_read_write_attr(), auto_write_attr(), rsbac_mac_get_curr_level(), rsbac_mac_get_max_level(), rsbac_mac_get_min_level(), rsbac_mac_set_curr_level(), sys_rsbac_mac_get_curr_level(), sys_rsbac_mac_get_max_level(), sys_rsbac_mac_get_min_level(), and sys_rsbac_mac_set_curr_level().

typedef __u8 rsbac_mac_file_flags_t
 

Definition at line 272 of file types.h.

typedef struct rsbac_fs_file_t rsbac_mac_file_t
 

Definition at line 273 of file types.h.

Referenced by copy_fp_tru_set_item(), rsbac_mac_add_f_tru(), rsbac_mac_add_to_f_truset(), rsbac_mac_clear_f_truset(), rsbac_mac_copy_fp_truset(), rsbac_mac_get_f_trulist(), rsbac_mac_remove_f_tru(), rsbac_mac_remove_f_trusets(), and rsbac_mac_remove_from_f_truset().

typedef __u16 rsbac_mac_process_flags_t
 

Definition at line 271 of file types.h.

Referenced by auto_read_attr(), auto_read_write_attr(), auto_write_attr(), and rsbac_mac_set_curr_level().

typedef __u8 rsbac_mac_user_flags_t
 

Definition at line 270 of file types.h.

typedef void* rsbac_net_obj_id_t
 

Definition at line 427 of file types.h.

Referenced by rsbac_check_acl(), rsbac_do_init(), and rsbac_init_acl().

typedef u_char rsbac_netdev_id_t[RSBAC_IFNAMSIZ+1]
 

Definition at line 110 of file types.h.

Referenced by rsbac_check_acl(), rsbac_do_init(), rsbac_init_acl(), and sys_rsbac_net_list_all_netdev().

typedef __u16 rsbac_old_gid_t
 

Definition at line 129 of file types.h.

typedef __u16 rsbac_old_uid_t
 

Definition at line 128 of file types.h.

typedef unsigned long rsbac_pax_flags_t
 

Definition at line 384 of file types.h.

Referenced by pax_print_flags(), pax_strtoflags(), and register_fd_lists().

typedef __u32 rsbac_pid_t
 

Definition at line 150 of file types.h.

Referenced by adjust_in_out_pp(), adjust_in_out_pp_ipc(), auto_read(), auto_read_attr(), auto_read_write(), auto_read_write_attr(), auto_write(), auto_write_attr(), check_comp_rc(), check_comp_rc_scd(), copy_fp_cap_set_item(), copy_fp_tru_set_item(), copy_pp_cap_set_item(), copy_pp_cap_set_item_handle(), copy_pp_tru_set_item(), copy_pp_tru_set_item_handle(), dazuko_rsbac_post(), dazuko_rsbac_pre(), jail_get_flags_process(), jail_get_id_process(), na_and_pp_ipc(), na_and_pp_or_cs(), na_dev(), na_ipc(), request_func(), rsbac_acl_check_right(), rsbac_adf_request(), rsbac_adf_request_acl(), rsbac_adf_request_auth(), rsbac_adf_request_cap(), rsbac_adf_request_check(), rsbac_adf_request_daz(), rsbac_adf_request_fc(), rsbac_adf_request_ff(), rsbac_adf_request_int(), rsbac_adf_request_jail(), rsbac_adf_request_mac(), rsbac_adf_request_pax(), rsbac_adf_request_pm(), rsbac_adf_request_rc(), rsbac_adf_request_reg(), rsbac_adf_request_res(), rsbac_adf_request_sim(), rsbac_adf_set_attr(), rsbac_adf_set_attr_acl(), rsbac_adf_set_attr_auth(), rsbac_adf_set_attr_cap(), rsbac_adf_set_attr_check(), rsbac_adf_set_attr_daz(), rsbac_adf_set_attr_fc(), rsbac_adf_set_attr_ff(), rsbac_adf_set_attr_jail(), rsbac_adf_set_attr_mac(), rsbac_adf_set_attr_pax(), rsbac_adf_set_attr_pm(), rsbac_adf_set_attr_rc(), rsbac_adf_set_attr_reg(), rsbac_adf_set_attr_res(), rsbac_adf_set_attr_sim(), rsbac_auth_add_p_cap(), rsbac_auth_add_to_p_capset(), rsbac_auth_clear_p_capset(), rsbac_auth_copy_fp_capset(), rsbac_auth_copy_pp_capset(), rsbac_auth_get_p_caplist(), rsbac_auth_p_capset_member(), rsbac_auth_remove_from_p_capset(), rsbac_auth_remove_p_cap(), rsbac_auth_remove_p_capsets(), rsbac_do_init(), rsbac_init(), rsbac_init_auth(), rsbac_init_mac(), rsbac_kthread_notify(), rsbac_mac_add_p_tru(), rsbac_mac_add_to_p_truset(), rsbac_mac_clear_p_truset(), rsbac_mac_copy_fp_truset(), rsbac_mac_copy_pp_truset(), rsbac_mac_get_p_trulist(), rsbac_mac_p_truset_member(), rsbac_mac_remove_from_p_truset(), rsbac_mac_remove_p_tru(), rsbac_mac_remove_p_trusets(), rsbac_rc_check_type_comp(), rsbac_replace_auth_cap(), set_attr_func(), sys_rsbac_auth_add_p_cap(), sys_rsbac_auth_get_p_caplist(), sys_rsbac_auth_remove_p_cap(), sys_rsbac_mac_add_p_tru(), sys_rsbac_mac_get_p_trulist(), sys_rsbac_mac_remove_p_tru(), and tp_check().

typedef __u32 rsbac_pseudo_t
 

Definition at line 149 of file types.h.

Referenced by rsbac_adf_request_int().

typedef __s32 rsbac_reg_handle_t
 

Definition at line 415 of file types.h.

Referenced by lookup_item(), lookup_sc_item_dis(), lookup_sc_item_reg(), remove_item(), remove_sc_item(), rsbac_reg_register(), rsbac_reg_register_syscall(), rsbac_reg_switch(), rsbac_reg_syscall(), rsbac_reg_unregister(), rsbac_reg_unregister_syscall(), and sys_rsbac_reg().

typedef __u64 rsbac_request_vector_t
 

Definition at line 262 of file types.h.

Referenced by rsbac_adf_request_int(), and rsbac_adf_set_attr().

typedef rsbac_res_limit_t rsbac_res_array_t[RSBAC_RES_MAX+1]
 

Definition at line 412 of file types.h.

typedef __u32 rsbac_res_limit_t
 

Definition at line 406 of file types.h.

typedef __u8 rsbac_security_level_t
 

Definition at line 153 of file types.h.

Referenced by auto_read_attr(), auto_read_write_attr(), auto_write_attr(), rsbac_mac_get_curr_level(), rsbac_mac_get_max_level(), rsbac_mac_get_min_level(), rsbac_mac_set_curr_level(), sys_rsbac_mac_get_curr_level(), sys_rsbac_mac_get_max_level(), sys_rsbac_mac_get_min_level(), and sys_rsbac_mac_set_curr_level().

typedef rsbac_enum_t rsbac_sim_dt_t
 

Definition at line 198 of file types.h.

Referenced by register_fd_lists(), rsbac_do_init(), rsbac_get_attr(), and rsbac_set_attr().

typedef rsbac_enum_t rsbac_switch_target_int_t
 

Definition at line 507 of file types.h.

typedef rsbac_enum_t rsbac_system_role_int_t
 

Definition at line 183 of file types.h.

Referenced by rsbac_do_init(), rsbac_get_attr(), and rsbac_set_attr().

typedef __u32 rsbac_time_t
 

Definition at line 130 of file types.h.

Referenced by add_item(), add_lol_item(), add_lol_subitem(), copy_fp_cap_set_item(), copy_fp_tru_set_item(), copy_pp_cap_set_item_handle(), copy_pp_tru_set_item_handle(), fill_buffer(), fill_lol_buffer(), read_list(), read_lol_list(), rsbac_acl_add_group_member(), rsbac_acl_add_to_acl_entry(), rsbac_acl_check_right(), rsbac_acl_get_group_members(), rsbac_acl_get_tlist(), rsbac_acl_get_user_groups(), rsbac_acl_set_acl_entry(), rsbac_acl_sys_add_to_acl_entry(), rsbac_acl_sys_get_tlist(), rsbac_acl_sys_group(), rsbac_acl_sys_set_acl_entry(), rsbac_auth_add_f_cap(), rsbac_auth_add_p_cap(), rsbac_auth_add_to_f_capset(), rsbac_auth_add_to_p_capset(), rsbac_auth_get_f_caplist(), rsbac_auth_get_p_caplist(), rsbac_list_add_ttl(), rsbac_list_add_ttl_u32(), rsbac_list_get_all_items_ttl(), rsbac_list_get_data_ttl(), rsbac_list_get_data_ttl_u32(), rsbac_list_lol_add_ttl(), rsbac_list_lol_add_ttl_u32(), rsbac_list_lol_get_all_subdesc_ttl(), rsbac_list_lol_get_all_subitems_ttl(), rsbac_list_lol_get_data_ttl(), rsbac_list_lol_get_data_ttl_u32(), rsbac_list_lol_get_subdata_ttl(), rsbac_list_lol_get_subdata_ttl_u32(), rsbac_list_lol_subadd_ttl(), rsbac_list_lol_subadd_ttl_u32(), rsbac_mac_add_f_tru(), rsbac_mac_add_p_tru(), rsbac_mac_add_to_f_truset(), rsbac_mac_add_to_p_truset(), rsbac_mac_get_f_trulist(), rsbac_mac_get_p_trulist(), rsbac_rc_get_item(), rsbac_rc_get_list(), rsbac_rc_set_item(), rsbac_rc_sys_get_eff_rights(), rsbac_rc_sys_get_item(), rsbac_rc_sys_set_item(), sys_rsbac_acl_get_tlist(), sys_rsbac_acl_get_tlist_n(), sys_rsbac_auth_add_f_cap(), sys_rsbac_auth_add_p_cap(), sys_rsbac_auth_get_f_caplist(), sys_rsbac_auth_get_p_caplist(), sys_rsbac_mac_add_f_tru(), sys_rsbac_mac_add_p_tru(), sys_rsbac_mac_get_f_trulist(), sys_rsbac_mac_get_p_trulist(), sys_rsbac_rc_get_eff_rights_n(), sys_rsbac_rc_get_item(), sys_rsbac_rc_get_list(), and sys_rsbac_rc_set_item().

typedef __u32 rsbac_uid_t
 

Definition at line 126 of file types.h.

Referenced by check_role_fc(), check_role_sim(), copy_fp_tru_set_item(), copy_pp_tru_set_item_handle(), dazuko_rsbac_post(), dazuko_rsbac_pre(), fc_check_sysrole(), get_user_name(), jail_check_sysrole(), mac_check_role(), mac_register_fd_lists(), request_func(), rsbac_acl_add_group(), rsbac_acl_add_group_member(), rsbac_acl_change_group(), rsbac_acl_check_forward(), rsbac_acl_check_right(), rsbac_acl_check_super(), rsbac_acl_get_group_members(), rsbac_acl_get_user_groups(), rsbac_acl_group_member(), rsbac_acl_list_groups(), rsbac_acl_remove_group_member(), rsbac_acl_remove_user(), rsbac_acl_sys_add_to_acl_entry(), rsbac_acl_sys_get_rights(), rsbac_acl_sys_group(), rsbac_acl_sys_remove_acl(), rsbac_acl_sys_remove_acl_entry(), rsbac_acl_sys_remove_from_acl_entry(), rsbac_acl_sys_remove_user(), rsbac_acl_sys_set_acl_entry(), rsbac_acl_sys_set_mask(), rsbac_adf_request_acl(), rsbac_adf_request_auth(), rsbac_adf_request_cap(), rsbac_adf_request_check(), rsbac_adf_request_daz(), rsbac_adf_request_fc(), rsbac_adf_request_ff(), rsbac_adf_request_int(), rsbac_adf_request_jail(), rsbac_adf_request_mac(), rsbac_adf_request_pax(), rsbac_adf_request_pm(), rsbac_adf_request_rc(), rsbac_adf_request_reg(), rsbac_adf_request_res(), rsbac_adf_request_sim(), rsbac_adf_set_attr(), rsbac_adf_set_attr_acl(), rsbac_adf_set_attr_auth(), rsbac_adf_set_attr_cap(), rsbac_adf_set_attr_check(), rsbac_adf_set_attr_daz(), rsbac_adf_set_attr_fc(), rsbac_adf_set_attr_ff(), rsbac_adf_set_attr_jail(), rsbac_adf_set_attr_mac(), rsbac_adf_set_attr_pax(), rsbac_adf_set_attr_pm(), rsbac_adf_set_attr_rc(), rsbac_adf_set_attr_reg(), rsbac_adf_set_attr_res(), rsbac_adf_set_attr_sim(), rsbac_auth_p_capset_member(), rsbac_check_acl(), rsbac_do_init(), rsbac_get_fullname(), rsbac_get_uid(), rsbac_get_uid_name(), rsbac_init(), rsbac_init_acl(), rsbac_init_mac(), rsbac_init_pm(), rsbac_mac_add_f_tru(), rsbac_mac_add_p_tru(), rsbac_mac_add_to_f_truset(), rsbac_mac_add_to_p_truset(), rsbac_mac_get_f_trulist(), rsbac_mac_get_p_trulist(), rsbac_mac_p_truset_member(), rsbac_mac_remove_f_tru(), rsbac_mac_remove_from_f_truset(), rsbac_mac_remove_from_p_truset(), rsbac_mac_remove_p_tru(), rsbac_pm(), rsbac_pm_change_current_task(), rsbac_rc_sys_change_role(), rsbac_rc_sys_copy_role(), rsbac_rc_sys_get_item(), rsbac_rc_sys_set_item(), rsbac_replace_auth_cap(), rsbac_set_attr(), set_attr_func(), sim_check_sysrole(), single_cap_compare(), sys_rsbac_acl(), sys_rsbac_acl_get_rights(), sys_rsbac_acl_get_rights_n(), sys_rsbac_acl_n(), sys_rsbac_mac_add_f_tru(), sys_rsbac_mac_add_p_tru(), sys_rsbac_mac_get_f_trulist(), sys_rsbac_mac_get_p_trulist(), sys_rsbac_mac_remove_f_tru(), and sys_rsbac_mac_remove_p_tru().

typedef __u32 rsbac_version_t
 

Definition at line 125 of file types.h.

Referenced by dev_get_conv(), dev_get_subconv(), fill_buffer(), fill_lol_buffer(), gen_dev_get_conv(), gen_fd_get_conv(), read_list(), read_lol_list(), role_get_conv(), rsbac_jail_sys_jail(), rsbac_list_lol_register(), rsbac_list_register(), rsbac_list_version(), rsbac_reg_register(), rsbac_reg_register_syscall(), sys_rsbac(), and sys_rsbac_jail().


Enumeration Type Documentation

enum boolean
 

Enumeration values:
FALSE 
TRUE 
Definition at line 101 of file types.h.

enum rsbac_adf_req_ret_t
 

Enumeration values:
NOT_GRANTED 
GRANTED 
DO_NOT_CARE 
UNDEFINED 
Definition at line 498 of file types.h.

Referenced by get_result_nr(), rsbac_adf_request_auth(), rsbac_adf_request_cap(), rsbac_adf_request_fc(), rsbac_adf_request_ff(), rsbac_adf_request_int(), rsbac_adf_request_mac(), rsbac_adf_request_pm(), rsbac_adf_request_rc(), rsbac_adf_request_reg(), rsbac_adf_request_sim(), rsbac_adf_set_attr_mac(), and rsbac_rc_sys_set_item().

enum rsbac_adf_request_t
 

Enumeration values:
R_ADD_TO_KERNEL 
R_ALTER 
R_APPEND_OPEN 
R_CHANGE_GROUP 
R_CHANGE_OWNER 
R_CHDIR 
R_CLONE 
R_CLOSE 
R_CREATE 
R_DELETE 
R_EXECUTE 
R_GET_PERMISSIONS_DATA 
R_GET_STATUS_DATA 
R_LINK_HARD 
R_MODIFY_ACCESS_DATA 
R_MODIFY_ATTRIBUTE 
R_MODIFY_PERMISSIONS_DATA 
R_MODIFY_SYSTEM_DATA 
R_MOUNT 
R_READ 
R_READ_ATTRIBUTE 
R_READ_WRITE_OPEN 
R_READ_OPEN 
R_REMOVE_FROM_KERNEL 
R_RENAME 
R_SEARCH 
R_SEND_SIGNAL 
R_SHUTDOWN 
R_SWITCH_LOG 
R_SWITCH_MODULE 
R_TERMINATE 
R_TRACE 
R_TRUNCATE 
R_UMOUNT 
R_WRITE 
R_WRITE_OPEN 
R_MAP_EXEC 
R_BIND 
R_LISTEN 
R_ACCEPT 
R_CONNECT 
R_SEND 
R_RECEIVE 
R_NET_SHUTDOWN 
R_CHANGE_DAC_EFF_OWNER 
R_CHANGE_DAC_FS_OWNER 
R_NONE 
Definition at line 441 of file types.h.

Referenced by get_request_nr(), rsbac_aef_file_permission(), and rsbac_aef_shm_shmat().

enum rsbac_attribute_t
 

Enumeration values:
A_pseudo 
A_security_level 
A_initial_security_level 
A_local_sec_level 
A_remote_sec_level 
A_min_security_level 
A_mac_categories 
A_mac_initial_categories 
A_local_mac_categories 
A_remote_mac_categories 
A_mac_min_categories 
A_mac_user_flags 
A_mac_process_flags 
A_mac_file_flags 
A_object_category 
A_local_object_category 
A_remote_object_category 
A_data_type 
A_local_data_type 
A_remote_data_type 
A_system_role 
A_mac_role 
A_fc_role 
A_sim_role 
A_daz_role 
A_ff_role 
A_auth_role 
A_cap_role 
A_jail_role 
A_pax_role 
A_current_sec_level 
A_mac_curr_categories 
A_min_write_open 
A_min_write_categories 
A_max_read_open 
A_max_read_categories 
A_mac_auto 
A_mac_check 
A_mac_prop_trusted 
A_pm_role 
A_pm_process_type 
A_pm_current_task 
A_pm_object_class 
A_local_pm_object_class 
A_remote_pm_object_class 
A_pm_ipc_purpose 
A_local_pm_ipc_purpose 
A_remote_pm_ipc_purpose 
A_pm_object_type 
A_local_pm_object_type 
A_remote_pm_object_type 
A_pm_program_type 
A_pm_tp 
A_pm_task_set 
A_daz_scanned 
A_daz_scanner 
A_ff_flags 
A_rc_type 
A_local_rc_type 
A_remote_rc_type 
A_rc_type_fd 
A_rc_type_nt 
A_rc_force_role 
A_rc_initial_role 
A_rc_role 
A_rc_def_role 
A_auth_may_setuid 
A_auth_may_set_cap 
A_auth_learn 
A_min_caps 
A_max_caps 
A_jail_id 
A_jail_ip 
A_jail_flags 
A_jail_max_caps 
A_pax_flags 
A_res_role 
A_res_min 
A_res_max 
A_log_array_low 
A_local_log_array_low 
A_remote_log_array_low 
A_log_array_high 
A_local_log_array_high 
A_remote_log_array_high 
A_log_program_based 
A_log_user_based 
A_symlink_add_uid 
A_symlink_add_mac_level 
A_symlink_add_rc_role 
A_linux_dac_disable 
A_cap_process_hiding 
A_fake_root_uid 
A_none 
Definition at line 551 of file types.h.

Referenced by check_comp_rc(), get_attribute_nr(), rsbac_adf_request_int(), and rsbac_rc_sys_get_eff_rights().

enum rsbac_auth_cap_type_t
 

Enumeration values:
ACT_real 
ACT_eff 
ACT_fs 
ACT_none 
Definition at line 348 of file types.h.

enum rsbac_cap_process_hiding_t
 

Enumeration values:
PH_off 
PH_from_other_users 
PH_full 
PH_none 
Definition at line 355 of file types.h.

enum rsbac_data_type_t
 

Enumeration values:
DT_none 
DT_SI 
DT_inherit 
Definition at line 194 of file types.h.

enum rsbac_dev_type_t
 

Enumeration values:
D_block 
D_char 
D_none 
Definition at line 211 of file types.h.

enum rsbac_fake_root_uid_t
 

Enumeration values:
FR_off 
FR_uid_only 
FR_euid_only 
FR_both 
FR_none 
Definition at line 201 of file types.h.

enum rsbac_ipc_type_t
 

Enumeration values:
I_sem 
I_msg 
I_shm 
I_none 
Definition at line 214 of file types.h.

Referenced by get_ipc_target_nr().

enum rsbac_linux_dac_disable_t
 

Enumeration values:
LDD_false 
LDD_true 
LDD_inherit 
LDD_none 
Definition at line 222 of file types.h.

enum rsbac_log_level_t
 

Enumeration values:
LL_none 
LL_denied 
LL_full 
LL_request 
LL_invalid 
Definition at line 258 of file types.h.

Referenced by get_log_level_nr(), rsbac_adf_request_int(), and rsbac_adf_set_attr().

enum rsbac_mac_auto_t
 

Enumeration values:
MA_no 
MA_yes 
MA_inherit 
Definition at line 298 of file types.h.

enum rsbac_object_category_t
 

Enumeration values:
OC_general 
OC_security 
OC_system 
OC_inherit 
OC_none 
Definition at line 186 of file types.h.

enum rsbac_old_security_level_t
 

Enumeration values:
SL_unclassified 
SL_confidential 
SL_secret 
SL_top_secret 
SL_old_rsbac_internal 
SL_old_inherit 
SL_old_none 
Definition at line 159 of file types.h.

enum rsbac_scd_type_t
 

Enumeration values:
ST_time_strucs 
ST_clock 
ST_host_id 
ST_net_id 
ST_ioports 
ST_rlimit 
ST_swap 
ST_syslog 
ST_rsbac 
ST_rsbaclog 
ST_other 
ST_kmem 
ST_network 
ST_firewall 
ST_priority 
ST_sysfs 
ST_none 
Definition at line 205 of file types.h.

Referenced by get_scd_type_nr().

enum rsbac_switch_target_t
 

Enumeration values:
GEN 
MAC 
FC 
SIM 
PM 
DAZ 
FF 
RC 
AUTH 
REG 
ACL 
CAP 
JAIL 
RES 
PAX 
SOFTMODE 
DAC_DISABLE 
SW_NONE 
Definition at line 505 of file types.h.

Referenced by get_attr_module(), and get_switch_target_nr().

enum rsbac_system_role_t
 

Enumeration values:
SR_user 
SR_security_officer 
SR_administrator 
SR_auditor 
SR_none 
Definition at line 181 of file types.h.

enum rsbac_target_t
 

Enumeration values:
T_FILE 
T_DIR 
T_FIFO 
T_SYMLINK 
T_DEV 
T_IPC 
T_SCD 
T_USER 
T_PROCESS 
T_NETDEV 
T_NETTEMP 
T_NETOBJ 
T_NETTEMP_NT 
T_FD 
T_NONE 
Definition at line 515 of file types.h.

Referenced by copy_fp_cap_set_item(), copy_fp_tru_set_item(), get_target_nr(), rsbac_acl_get_rights(), rsbac_acl_get_single_right(), rsbac_aef_file_permission(), rsbac_aef_inode_getattr(), rsbac_aef_inode_link(), rsbac_aef_inode_rename(), rsbac_get_attr(), rsbac_pm(), sys_rsbac_auth_add_f_cap(), sys_rsbac_auth_get_f_caplist(), sys_rsbac_auth_remove_f_cap(), sys_rsbac_mac_add_f_tru(), sys_rsbac_mac_get_f_trulist(), and sys_rsbac_mac_remove_f_tru().


Generated on Tue Aug 31 10:05:27 2004 for RSBAC by doxygen 1.3.8