#include <asm/types.h>
#include <sys/types.h>
#include <rsbac/pm_types.h>
#include <rsbac/rc_types.h>
#include <linux/capability.h>
#include <rsbac/network_types.h>
#include <rsbac/request_groups.h>
#include <rsbac/acl_types.h>
#include <rsbac/um_types.h>
Go to the source code of this file.
#define CAP_NONE 29 |
Definition at line 413 of file types.h.
Referenced by get_cap_name(), get_cap_nr(), strtou32cap(), and u32tostrcap().
#define DAZ_clean 2 |
Definition at line 336 of file types.h.
Referenced by rsbac_adf_request_daz(), and rsbac_adf_set_attr_daz().
#define DAZ_infected 1 |
#define DAZ_inherit 3 |
#define DAZ_never 0 |
#define DEFAULT_DAZ_FD_SCANNED DAZ_unscanned |
#define FALSE 0 |
Definition at line 125 of file types.h.
Referenced by adjust_in_out_pp(), auto_read_attr(), auto_read_write_attr(), auto_write_attr(), check_comp_rc(), check_comp_rc_scd(), copy_new_ipcs(), copy_new_uids(), create_lol_reg(), create_reg(), daz_ignored(), do_read_list(), do_read_lol_list(), get_attr_fd(), get_attr_process(), get_ipc_purpose(), jail_dev_tty(), na_and_pp_ipc(), na_and_pp_or_cs(), na_dev(), na_ipc(), need_overwrite_func(), old_old_old_role_conv(), old_old_role_conv(), old_role_conv(), rsbac_acl_check_forward(), rsbac_acl_check_right(), rsbac_acl_check_super(), rsbac_acl_get_single_right(), rsbac_acl_sys_get_rights(), rsbac_acl_sys_remove_acl_entry(), rsbac_acl_sys_set_mask(), rsbac_adf_request_auth(), rsbac_adf_request_daz(), rsbac_adf_request_int(), rsbac_adf_request_mac(), rsbac_adf_request_pm(), rsbac_adf_request_rc(), rsbac_adf_set_attr(), rsbac_adf_set_attr_auth(), rsbac_adf_set_attr_cap(), rsbac_adf_set_attr_daz(), rsbac_adf_set_attr_jail(), rsbac_adf_set_attr_mac(), rsbac_adf_set_attr_pm(), rsbac_adf_set_attr_rc(), rsbac_adf_set_attr_res(), rsbac_auth_add_p_cap(), rsbac_auth_p_capset_member(), rsbac_auth_remove_p_cap(), rsbac_get_full_path(), rsbac_init(), rsbac_list_detach(), rsbac_list_lol_detach(), rsbac_list_lol_no_write(), rsbac_list_no_write(), rsbac_mac_get_curr_level(), rsbac_mac_get_max_level(), rsbac_mac_get_min_level(), rsbac_mac_p_truset_member(), rsbac_mac_remove_f_trusets(), rsbac_mac_remove_p_trusets(), rsbac_mac_set_curr_level(), rsbac_pm(), rsbac_pm_change_current_task(), rsbac_pm_create_file(), rsbac_pm_exists(), rsbac_pm_pp_only(), rsbac_pm_pp_subset(), rsbac_pm_pp_superset(), rsbac_pm_set_exist(), rsbac_pm_set_member(), rsbac_rc_check_comp(), rsbac_rc_check_type_comp(), rsbac_rc_get_item(), rsbac_rc_sys_copy_type(), rsbac_rc_sys_get_item(), rsbac_rc_type_exists(), rsbac_read_open(), rsbac_reg_switch(), rsbac_set_audit_uid(), rsbac_ta_list_exist(), rsbac_ta_list_lol_exist(), rsbac_ta_list_lol_subexist(), rsbac_ta_list_lol_subexist_compare(), rsbac_vkmalloc(), sys_rsbac_acl_get_mask_n(), sys_rsbac_acl_get_rights_n(), sys_rsbac_acl_get_tlist_n(), sys_rsbac_get_attr(), sys_rsbac_get_attr_n(), tp_check(), and writable().
#define FF_add_inherited 128 |
#define FF_append_only 256 |
#define FF_execute_only 2 |
#define FF_no_delete_or_rename 64 |
#define FF_no_execute 32 |
#define FF_no_mount 512 |
#define FF_no_search 1024 |
#define FF_read_only 1 |
#define FF_search_only 4 |
#define FF_write_only 8 |
#define JAIL_allow_all_net_family 2 |
#define JAIL_allow_dev_get_status 128 |
#define JAIL_allow_dev_mod_system 256 |
#define JAIL_allow_dev_read 512 |
#define JAIL_allow_dev_write 1024 |
#define JAIL_allow_external_ipc 1 |
#define JAIL_allow_ipc_to_syslog 65536 |
#define JAIL_allow_mount 16384 |
#define JAIL_allow_parent_ipc 4096 |
Definition at line 436 of file types.h.
Referenced by rsbac_adf_request_jail(), and rsbac_jail_sys_jail().
#define JAIL_allow_suid_files 8192 |
#define JAIL_allow_tty_open 2048 |
#define JAIL_this_is_syslog 32768 |
#define MAC_allow_auto 64 |
#define MAC_auto 2 |
Definition at line 305 of file types.h.
Referenced by auto_read_attr(), auto_read_write_attr(), auto_write_attr(), get_attr_process(), rsbac_adf_set_attr_mac(), rsbac_mac_set_curr_level(), and set_attr_process().
#define MAC_override 1 |
Definition at line 304 of file types.h.
Referenced by auto_read_attr(), auto_read_write_attr(), auto_write_attr(), and rsbac_mac_set_curr_level().
#define MAC_program_auto 256 |
#define MAC_read_up 16 |
#define MAC_trusted 4 |
Definition at line 306 of file types.h.
Referenced by auto_read_attr(), auto_read_write_attr(), auto_write_attr(), rsbac_adf_set_attr_mac(), and rsbac_mac_set_curr_level().
#define MAC_write_down 32 |
Definition at line 309 of file types.h.
Referenced by auto_read_write_attr(), and auto_write_attr().
#define MAC_write_up 8 |
Definition at line 307 of file types.h.
Referenced by auto_read_write_attr(), and auto_write_attr().
#define PF_PAX_EMUTRAMP 0x02000000 |
Definition at line 455 of file types.h.
Referenced by pax_print_flags(), pax_strtoflags(), and register_fd_lists().
#define PF_PAX_MPROTECT 0x04000000 |
Definition at line 456 of file types.h.
Referenced by pax_print_flags(), pax_strtoflags(), and register_fd_lists().
#define PF_PAX_PAGEEXEC 0x01000000 |
Definition at line 454 of file types.h.
Referenced by pax_print_flags(), pax_strtoflags(), and register_fd_lists().
#define PF_PAX_RANDEXEC 0x10000000 |
Definition at line 458 of file types.h.
Referenced by pax_print_flags(), pax_strtoflags(), and register_fd_lists().
#define PF_PAX_RANDMMAP 0x08000000 |
Definition at line 457 of file types.h.
Referenced by pax_print_flags(), pax_strtoflags(), and register_fd_lists().
#define PF_PAX_SEGMEXEC 0x20000000 |
Definition at line 459 of file types.h.
Referenced by pax_print_flags(), pax_strtoflags(), and register_fd_lists().
#define RSBAC_ALL_GROUPS ((rsbac_gid_t) -4) |
#define RSBAC_ALL_USERS ((rsbac_uid_t) -4) |
Definition at line 120 of file types.h.
Referenced by get_attr_user(), rsbac_mac_p_truset_member(), set_attr_user(), sys_rsbac_um_get_group_list(), and sys_rsbac_um_get_user_list().
#define RSBAC_AUDITOR_UID (RSBAC_SECOFF_UID+4) |
Definition at line 165 of file types.h.
Referenced by register_user_lists1(), and register_user_lists2().
#define RSBAC_AUTH_DAC_GROUP_F_CAP ((rsbac_gid_t) -4) |
Definition at line 380 of file types.h.
Referenced by rsbac_adf_set_attr_auth(), and rsbac_auth_p_capset_member().
#define RSBAC_AUTH_DAC_OWNER_F_CAP ((rsbac_uid_t) -4) |
Definition at line 377 of file types.h.
Referenced by rsbac_adf_set_attr_auth(), and rsbac_auth_p_capset_member().
#define RSBAC_AUTH_GROUP_F_CAP ((rsbac_gid_t) -3) |
Definition at line 379 of file types.h.
Referenced by rsbac_adf_set_attr_auth(), and rsbac_auth_p_capset_member().
#define RSBAC_AUTH_LOGIN_PATH "/bin/login" |
#define RSBAC_AUTH_LOGIN_PATH_DIR "bin" |
#define RSBAC_AUTH_LOGIN_PATH_FILE "login" |
#define RSBAC_AUTH_MAX_MAXNUM 1000000 |
Definition at line 374 of file types.h.
Referenced by sys_rsbac_auth_get_f_caplist(), and sys_rsbac_auth_get_p_caplist().
#define RSBAC_AUTH_MAX_RANGE_GID ((rsbac_gid_t) -10) |
#define RSBAC_AUTH_MAX_RANGE_UID ((rsbac_uid_t) -10) |
Definition at line 378 of file types.h.
Referenced by rsbac_auth_p_capset_member(), and sys_rsbac_auth_add_p_cap().
#define RSBAC_AUTH_OLD_OWNER_F_CAP (rsbac_old_uid_t) -3 |
#define RSBAC_AUTH_OWNER_F_CAP ((rsbac_uid_t) -3) |
Definition at line 376 of file types.h.
Referenced by rsbac_adf_set_attr_auth(), and rsbac_auth_p_capset_member().
#define RSBAC_AUTO_DEV_DESC rsbac_mkdev_desc(D_none, 99, 99) |
#define RSBAC_CAP_DEFAULT_MAX ((rsbac_cap_vector_t) -1) |
#define RSBAC_CAP_DEFAULT_MIN ((rsbac_cap_vector_t) 0) |
#define RSBAC_DATAPROT_UID (RSBAC_SECOFF_UID+1) |
#define RSBAC_FF_DEF FF_add_inherited |
#define RSBAC_IFNAMSIZ 16 |
#define RSBAC_IS_AUTO_DEV_DESC | ( | dev | ) | ((dev.type == D_none) && (dev.major == 99) && (dev.minor == 99)) |
#define RSBAC_IS_ZERO_DEV_DESC | ( | dev | ) | ((dev.type == D_none) && !dev.major && !dev.minor) |
Definition at line 273 of file types.h.
Referenced by devdesctostr(), rsbac_acl_add_to_acl_entry(), rsbac_acl_get_rights(), rsbac_acl_get_single_right(), rsbac_acl_get_tlist(), rsbac_acl_remove_acl(), rsbac_acl_remove_acl_entry(), rsbac_acl_remove_from_acl_entry(), rsbac_acl_set_acl_entry(), and rsbac_acl_set_mask().
#define RSBAC_JAIL_DEF_ID 0 |
#define RSBAC_JAIL_VERSION 1 |
#define RSBAC_LIST_TTL_KEEP ((rsbac_time_t) -1) |
Definition at line 152 of file types.h.
Referenced by rsbac_acl_sys_add_to_acl_entry(), rsbac_acl_sys_set_acl_entry(), rsbac_list_add(), rsbac_list_lol_add(), rsbac_list_lol_subadd(), rsbac_ta_list_add_ttl(), rsbac_ta_list_lol_add_ttl(), rsbac_ta_list_lol_subadd_ttl(), rsbac_um_mod_group(), and rsbac_um_mod_user().
#define RSBAC_MAC_CAT_VECTOR | ( | x | ) | ((rsbac_mac_category_vector_t) 1 << (x)) |
#define RSBAC_MAC_DEF_CAT_VECTOR ((rsbac_mac_category_vector_t) 1) |
#define RSBAC_MAC_DEF_INIT_P_FLAGS MAC_auto |
#define RSBAC_MAC_F_FLAGS (MAC_auto | MAC_trusted | MAC_write_up | MAC_read_up | MAC_write_down) |
#define RSBAC_MAC_INHERIT_CAT_VECTOR ((rsbac_mac_category_vector_t) 0) |
#define RSBAC_MAC_MAX_CAT 63 |
#define RSBAC_MAC_MAX_CAT_VECTOR ((rsbac_mac_category_vector_t) -1) |
#define RSBAC_MAC_MAX_MAXNUM 1000000 |
Definition at line 302 of file types.h.
Referenced by sys_rsbac_mac_get_f_trulist(), and sys_rsbac_mac_get_p_trulist().
#define RSBAC_MAC_MIN_CAT_VECTOR ((rsbac_mac_category_vector_t) 0) |
Definition at line 188 of file types.h.
Referenced by rsbac_adf_set_attr_mac(), and rsbac_mac_set_curr_level().
#define RSBAC_MAC_NR_CATS 64 |
#define RSBAC_MAC_P_FLAGS (MAC_override | MAC_auto | MAC_trusted | MAC_write_up | MAC_read_up | MAC_write_down | MAC_prop_trusted | MAC_program_auto) |
Definition at line 315 of file types.h.
Referenced by rsbac_adf_set_attr_mac(), rsbac_init(), and set_attr_process().
#define RSBAC_MAC_U_FLAGS (MAC_override | MAC_trusted | MAC_write_up | MAC_read_up | MAC_write_down | MAC_allow_auto) |
#define rsbac_max | ( | a, | |||
b | ) | (((a)>(b))?(a):(b)) |
#define RSBAC_MAXNAMELEN 256 |
Definition at line 292 of file types.h.
Referenced by aci_detach_fd_lists(), acl_detach_fd_lists(), acl_register_fd_lists(), auth_detach_fd_lists(), auth_register_fd_lists(), auto_read_attr(), auto_read_write_attr(), auto_write_attr(), check_comp_rc(), check_comp_rc_scd(), get_attribute_value_name(), get_target_name(), mac_detach_fd_lists(), mac_register_fd_lists(), read_info(), read_list(), read_lol_list(), register_fd_lists(), registration_error(), rsbac_acl_check_forward(), rsbac_acl_check_right(), rsbac_acl_check_super(), rsbac_acl_remove_acl(), rsbac_acl_remove_acl_entry(), rsbac_acl_sys_add_to_acl_entry(), rsbac_acl_sys_get_mask(), rsbac_acl_sys_get_rights(), rsbac_acl_sys_get_tlist(), rsbac_acl_sys_group(), rsbac_acl_sys_remove_acl(), rsbac_acl_sys_remove_acl_entry(), rsbac_acl_sys_remove_from_acl_entry(), rsbac_acl_sys_remove_user(), rsbac_acl_sys_set_acl_entry(), rsbac_acl_sys_set_mask(), rsbac_adf_request_int(), rsbac_adf_set_attr(), rsbac_do_init(), rsbac_get_full_path(), rsbac_init_auth(), rsbac_init_debug(), rsbac_init_mac(), rsbac_init_um(), rsbac_jail_sys_jail(), rsbac_list_init(), rsbac_list_lol_register_hashed(), rsbac_list_register_hashed(), rsbac_mac_set_curr_level(), rsbac_mount(), rsbac_mount_acl(), rsbac_mount_auth(), rsbac_mount_mac(), rsbac_rc_check_type_comp(), rsbac_rc_get_item(), rsbac_rc_sys_change_role(), rsbac_rc_sys_copy_type(), rsbac_read_open(), rsbac_write_open(), sys_rsbac_adf_log_switch(), sys_rsbac_get_adf_log(), sys_rsbac_switch(), sys_rsbac_um_add_group(), sys_rsbac_um_add_user(), sys_rsbac_um_auth_name(), sys_rsbac_um_auth_uid(), sys_rsbac_um_mod_group(), sys_rsbac_um_mod_user(), sys_rsbac_um_set_group_pass(), sys_rsbac_um_set_pass(), and write_info().
#define rsbac_min | ( | a, | |||
b | ) | (((a)<(b))?(a):(b)) |
Definition at line 114 of file types.h.
Referenced by get_target_name(), rsbac_acl_sys_group(), rsbac_adf_request_int(), rsbac_adf_set_attr_res(), rsbac_list_lol_max_items(), rsbac_list_max_items(), and rsbac_um_get_gm_user_list().
#define RSBAC_NO_GROUP ((rsbac_gid_t) -3) |
Definition at line 121 of file types.h.
Referenced by rsbac_acl_add_to_acl_entry(), rsbac_acl_get_mask(), rsbac_acl_get_rights(), rsbac_acl_get_single_right(), rsbac_acl_get_tlist(), rsbac_acl_remove_acl(), rsbac_acl_remove_acl_entry(), rsbac_acl_remove_from_acl_entry(), rsbac_acl_set_acl_entry(), and rsbac_acl_set_mask().
#define RSBAC_NO_USER ((rsbac_uid_t) -3) |
Definition at line 119 of file types.h.
Referenced by gen_fd_old_conv(), gen_fd_old_old_conv(), rsbac_acl_add_to_acl_entry(), rsbac_acl_get_mask(), rsbac_acl_get_rights(), rsbac_acl_get_single_right(), rsbac_acl_get_tlist(), rsbac_acl_remove_acl(), rsbac_acl_remove_acl_entry(), rsbac_acl_remove_from_acl_entry(), rsbac_acl_set_acl_entry(), rsbac_acl_set_mask(), rsbac_acl_sys_get_rights(), rsbac_acl_sys_group(), rsbac_adf_request_auth(), rsbac_adf_request_int(), rsbac_adf_set_attr(), rsbac_adf_set_attr_auth(), rsbac_set_audit_uid(), rsbac_um_add_group(), rsbac_um_add_user(), and rsbac_um_get_next_user().
#define RSBAC_PAX_ALL_FLAGS ((rsbac_pax_flags_t) 255 << 24) |
Definition at line 463 of file types.h.
Referenced by get_attr_process(), pax_strtoflags(), and set_attr_fd().
#define RSBAC_PAX_DEF_FLAGS (PF_PAX_SEGMEXEC | PF_PAX_PAGEEXEC | PF_PAX_MPROTECT | PF_PAX_RANDMMAP) |
#define RSBAC_REQUEST_VECTOR | ( | x | ) | ((rsbac_request_vector_t) 1 << (x)) |
Definition at line 289 of file types.h.
Referenced by create_def_roles(), create_def_roles2(), rsbac_acl_check_right(), rsbac_adf_request_int(), and rsbac_adf_set_attr().
#define RSBAC_RES_MAX 10 |
Definition at line 473 of file types.h.
Referenced by get_res_name(), get_res_nr(), and rsbac_adf_set_attr_res().
#define RSBAC_RES_NONE 11 |
#define RSBAC_SCD_VECTOR | ( | x | ) | ((rsbac_scd_vector_t) 1 << (x)) |
#define RSBAC_SECOFF_UID 400 |
Definition at line 161 of file types.h.
Referenced by register_user_lists1(), and register_user_lists2().
#define RSBAC_SYSADM_UID 0 |
Definition at line 156 of file types.h.
Referenced by register_user_lists1(), register_user_lists2(), and rsbac_init().
#define RSBAC_TPMAN_UID (RSBAC_SECOFF_UID+2) |
#define RSBAC_VERSION "1.3.4" |
#define RSBAC_VERSION_MAKE_NR | ( | x, | |||
y, | |||||
z | ) | ((x << 16) | (y << 8) | z) |
#define RSBAC_VERSION_NR ((RSBAC_VERSION_MAJOR << 16) | (RSBAC_VERSION_MID << 8) | RSBAC_VERSION_MINOR) |
#define RSBAC_ZERO_DEV_DESC rsbac_mkdev_desc(D_none, 0, 0) |
Definition at line 271 of file types.h.
Referenced by strtodevdesc(), sys_rsbac_acl_get_mask_n(), sys_rsbac_acl_get_rights_n(), sys_rsbac_acl_get_tlist_n(), and sys_rsbac_acl_n().
#define SL_inherit 254 |
#define SL_max 252 |
Definition at line 173 of file types.h.
Referenced by rsbac_adf_set_attr_mac(), and rsbac_mac_set_curr_level().
#define SL_min 0 |
#define SL_none 255 |
#define TRUE 1 |
Definition at line 128 of file types.h.
Referenced by auto_read_attr(), auto_read_write_attr(), auto_write_attr(), check_comp_rc(), check_flags_ff(), copy_new_ipcs(), copy_new_uids(), create_lol_reg(), create_reg(), daz_check_secoff(), daz_ignored(), do_read_list(), do_read_lol_list(), get_attr_fd(), get_attr_process(), init_module(), jail_check_sysrole(), jail_dev_tty(), jail_get_flags_process(), jail_get_id(), jail_get_id_process(), jail_get_parent_process(), jail_get_scd_get_process(), jail_get_scd_modify_process(), mac_check_role(), mac_sys_check_role(), read_info(), read_list(), read_lol_list(), rsbac_acl_check_forward(), rsbac_acl_check_right(), rsbac_acl_check_super(), rsbac_acl_get_single_right(), rsbac_acl_group_exist(), rsbac_acl_sys_get_rights(), rsbac_adf_request_auth(), rsbac_adf_request_cap(), rsbac_adf_request_daz(), rsbac_adf_request_ff(), rsbac_adf_request_int(), rsbac_adf_request_mac(), rsbac_adf_request_pax(), rsbac_adf_request_pm(), rsbac_adf_request_rc(), rsbac_adf_request_res(), rsbac_adf_set_attr(), rsbac_adf_set_attr_auth(), rsbac_adf_set_attr_daz(), rsbac_adf_set_attr_jail(), rsbac_adf_set_attr_mac(), rsbac_adf_set_attr_rc(), rsbac_auth_p_capset_member(), rsbac_do_init(), rsbac_init_debug(), rsbac_jail_sys_jail(), rsbac_list_check(), rsbac_list_detach(), rsbac_list_init(), rsbac_list_lol_detach(), rsbac_list_lol_no_write(), rsbac_list_no_write(), rsbac_list_write_buffers(), rsbac_list_write_lol_buffers(), rsbac_mac_p_truset_member(), rsbac_mount(), rsbac_pm(), rsbac_pm_exists(), rsbac_pm_pp_only(), rsbac_pm_pp_subset(), rsbac_pm_pp_superset(), rsbac_rc_check_comp(), rsbac_rc_get_item(), rsbac_rc_sys_change_role(), rsbac_rc_sys_copy_role(), rsbac_rc_sys_copy_type(), rsbac_rc_sys_get_current_role(), rsbac_rc_sys_get_eff_rights(), rsbac_rc_sys_set_item(), rsbac_rc_test_admin_roles(), rsbac_rc_test_assign_roles(), rsbac_rc_test_role_admin(), rsbac_rc_type_exists(), rsbac_reg_switch(), rsbac_ta_get_attr(), rsbac_ta_list_add_ttl(), rsbac_ta_list_exist(), rsbac_ta_list_lol_add_ttl(), rsbac_ta_list_lol_exist(), rsbac_ta_list_lol_remove(), rsbac_ta_list_lol_subadd_ttl(), rsbac_ta_list_lol_subexist(), rsbac_ta_list_lol_subexist_compare(), rsbac_ta_list_lol_subremove(), rsbac_ta_list_lol_subremove_all(), rsbac_ta_list_lol_subremove_count(), rsbac_ta_list_remove(), rsbac_umount(), rsbac_write_open(), sys_rsbac_acl_get_mask_n(), sys_rsbac_acl_get_rights_n(), sys_rsbac_acl_get_tlist_n(), sys_rsbac_daz_flush_cache(), sys_rsbac_get_attr(), sys_rsbac_get_attr_n(), sys_rsbac_write(), and writable().
typedef rsbac_enum_t rsbac_adf_request_int_t |
typedef struct rsbac_fs_file_t rsbac_auth_file_t |
typedef __u8 rsbac_boolean_int_t |
typedef u_int rsbac_boolean_t |
typedef rsbac_enum_t rsbac_cap_ld_env_int_t |
typedef __u32 rsbac_cap_vector_t |
typedef u_int rsbac_cwi_relation_id_t |
typedef __u8 rsbac_daz_do_scan_t |
typedef __u8 rsbac_daz_scanned_t |
typedef __u8 rsbac_daz_scanner_t |
typedef __u8 rsbac_enum_t |
typedef __u16 rsbac_ff_flags_t |
typedef __u32 rsbac_gid_t |
typedef __u32 rsbac_inode_nr_t |
typedef __u32 rsbac_jail_flags_t |
typedef __u32 rsbac_jail_id_t |
typedef __u32 rsbac_jail_ip_t |
typedef __u32 rsbac_jail_scd_vector_t |
typedef __u32 rsbac_list_ta_number_t |
typedef __u64 rsbac_log_array_t |
typedef rsbac_enum_t rsbac_mac_auto_int_t |
typedef __u64 rsbac_mac_category_vector_t |
typedef __u8 rsbac_mac_file_flags_t |
typedef struct rsbac_fs_file_t rsbac_mac_file_t |
typedef __u16 rsbac_mac_process_flags_t |
typedef __u8 rsbac_mac_user_flags_t |
typedef void* rsbac_net_obj_id_t |
typedef u_char rsbac_netdev_id_t[RSBAC_IFNAMSIZ+1] |
typedef __u16 rsbac_old_gid_t |
typedef __u16 rsbac_old_uid_t |
typedef unsigned long rsbac_pax_flags_t |
typedef __u32 rsbac_pid_t |
typedef __u32 rsbac_pseudo_t |
typedef __s32 rsbac_reg_handle_t |
typedef __u64 rsbac_request_vector_t |
typedef rsbac_res_limit_t rsbac_res_array_t[RSBAC_RES_MAX+1] |
typedef __u32 rsbac_res_limit_t |
typedef __u32 rsbac_scd_vector_t |
typedef __u8 rsbac_security_level_t |
typedef rsbac_enum_t rsbac_system_role_int_t |
typedef __u32 rsbac_ta_number_t |
typedef __u32 rsbac_time_t |
typedef __u32 rsbac_uid_t |
typedef __u32 rsbac_version_t |
enum rsbac_adf_req_ret_t |
enum rsbac_adf_request_t |
Definition at line 507 of file types.h.
00507 { 00508 R_ADD_TO_KERNEL, 00509 R_ALTER, 00510 R_APPEND_OPEN, 00511 R_CHANGE_GROUP, 00512 R_CHANGE_OWNER, 00513 R_CHDIR, 00514 R_CLONE, 00515 R_CLOSE, 00516 R_CREATE, 00517 R_DELETE, 00518 R_EXECUTE, 00519 R_GET_PERMISSIONS_DATA, 00520 R_GET_STATUS_DATA, 00521 R_LINK_HARD, 00522 R_MODIFY_ACCESS_DATA, 00523 R_MODIFY_ATTRIBUTE, 00524 R_MODIFY_PERMISSIONS_DATA, 00525 R_MODIFY_SYSTEM_DATA, 00526 R_MOUNT, 00527 R_READ, 00528 R_READ_ATTRIBUTE, 00529 R_READ_WRITE_OPEN, 00530 R_READ_OPEN, 00531 R_REMOVE_FROM_KERNEL, 00532 R_RENAME, 00533 R_SEARCH, 00534 R_SEND_SIGNAL, 00535 R_SHUTDOWN, 00536 R_SWITCH_LOG, 00537 R_SWITCH_MODULE, 00538 R_TERMINATE, 00539 R_TRACE, 00540 R_TRUNCATE, 00541 R_UMOUNT, 00542 R_WRITE, 00543 R_WRITE_OPEN, 00544 R_MAP_EXEC, 00545 R_BIND, 00546 R_LISTEN, 00547 R_ACCEPT, 00548 R_CONNECT, 00549 R_SEND, 00550 R_RECEIVE, 00551 R_NET_SHUTDOWN, 00552 R_CHANGE_DAC_EFF_OWNER, 00553 R_CHANGE_DAC_FS_OWNER, 00554 R_CHANGE_DAC_EFF_GROUP, 00555 R_CHANGE_DAC_FS_GROUP, 00556 R_IOCTL, 00557 R_LOCK, 00558 R_AUTHENTICATE, 00559 R_NONE 00560 };
enum rsbac_attribute_t |
Definition at line 627 of file types.h.
00628 { 00629 A_pseudo, 00630 A_security_level, 00631 A_initial_security_level, 00632 A_local_sec_level, 00633 A_remote_sec_level, 00634 A_min_security_level, 00635 A_mac_categories, 00636 A_mac_initial_categories, 00637 A_local_mac_categories, 00638 A_remote_mac_categories, 00639 A_mac_min_categories, 00640 A_mac_user_flags, 00641 A_mac_process_flags, 00642 A_mac_file_flags, 00643 A_system_role, 00644 A_mac_role, 00645 A_daz_role, 00646 A_ff_role, 00647 A_auth_role, 00648 A_cap_role, 00649 A_jail_role, 00650 A_pax_role, 00651 A_current_sec_level, 00652 A_mac_curr_categories, 00653 A_min_write_open, 00654 A_min_write_categories, 00655 A_max_read_open, 00656 A_max_read_categories, 00657 A_mac_auto, 00658 A_mac_check, 00659 A_mac_prop_trusted, 00660 A_pm_role, 00661 A_pm_process_type, 00662 A_pm_current_task, 00663 A_pm_object_class, 00664 A_local_pm_object_class, 00665 A_remote_pm_object_class, 00666 A_pm_ipc_purpose, 00667 A_local_pm_ipc_purpose, 00668 A_remote_pm_ipc_purpose, 00669 A_pm_object_type, 00670 A_local_pm_object_type, 00671 A_remote_pm_object_type, 00672 A_pm_program_type, 00673 A_pm_tp, 00674 A_pm_task_set, 00675 A_daz_scanned, 00676 A_daz_scanner, 00677 A_ff_flags, 00678 A_rc_type, 00679 A_rc_select_type, 00680 A_local_rc_type, 00681 A_remote_rc_type, 00682 A_rc_type_fd, 00683 A_rc_type_nt, 00684 A_rc_force_role, 00685 A_rc_initial_role, 00686 A_rc_role, 00687 A_rc_def_role, 00688 A_auth_may_setuid, 00689 A_auth_may_set_cap, 00690 A_auth_learn, 00691 A_min_caps, 00692 A_max_caps, 00693 A_max_caps_user, 00694 A_max_caps_program, 00695 A_jail_id, 00696 A_jail_parent, 00697 A_jail_ip, 00698 A_jail_flags, 00699 A_jail_max_caps, 00700 A_jail_scd_get, 00701 A_jail_scd_modify, 00702 A_pax_flags, 00703 A_res_role, 00704 A_res_min, 00705 A_res_max, 00706 A_log_array_low, 00707 A_local_log_array_low, 00708 A_remote_log_array_low, 00709 A_log_array_high, 00710 A_local_log_array_high, 00711 A_remote_log_array_high, 00712 A_log_program_based, 00713 A_log_user_based, 00714 A_symlink_add_remote_ip, 00715 A_symlink_add_uid, 00716 A_symlink_add_mac_level, 00717 A_symlink_add_rc_role, 00718 A_linux_dac_disable, 00719 A_cap_process_hiding, 00720 A_fake_root_uid, 00721 A_audit_uid, 00722 A_auid_exempt, 00723 A_auth_last_auth, 00724 A_remote_ip, 00725 A_cap_ld_env, 00726 A_daz_do_scan, 00727 #ifdef __KERNEL__ 00728 /* adf-request helpers */ 00729 A_owner, 00730 A_group, 00731 A_signal, 00732 A_mode, 00733 A_nlink, 00734 A_switch_target, 00735 A_mod_name, 00736 A_request, 00737 A_trace_request, 00738 A_auth_add_f_cap, 00739 A_auth_remove_f_cap, 00740 A_auth_get_caplist, 00741 A_prot_bits, 00742 A_internal, 00743 /* used with CREATE on DIR */ 00744 A_create_data, 00745 A_new_object, 00746 A_rlimit, 00747 A_new_dir_dentry_p, 00748 A_auth_program_file, 00749 A_auth_start_uid, 00750 A_auth_start_euid, 00751 A_auth_start_gid, 00752 A_auth_start_egid, 00753 A_acl_learn, 00754 A_priority, 00755 A_pgid, 00756 A_kernel_thread, 00757 A_open_flag, 00758 A_reboot_cmd, 00759 A_setsockopt_level, 00760 A_ioctl_cmd, 00761 A_f_mode, 00762 A_process, 00763 A_sock_type, 00764 #endif 00765 A_none};
Definition at line 388 of file types.h.
00388 {ACT_real, ACT_eff, ACT_fs, 00389 ACT_group_real, ACT_group_eff, ACT_group_fs, 00390 ACT_none};
Definition at line 393 of file types.h.
00393 {AMS_off, AMS_full, AMS_last_auth_only, 00394 AMS_last_auth_and_gid, AMS_none};
enum rsbac_cap_ld_env_t |
enum rsbac_dev_type_t |
Definition at line 220 of file types.h.
00220 {D_block, D_char, D_block_major, D_char_major, D_none};
Definition at line 205 of file types.h.
00205 {FR_off, FR_uid_only, FR_euid_only, FR_both, 00206 FR_none};
enum rsbac_ipc_type_t |
Definition at line 223 of file types.h.
00223 {I_sem, I_msg, I_shm, I_anonpipe, I_mqueue, 00224 I_anonunix, I_none};
enum rsbac_log_level_t |
enum rsbac_mac_auto_t |
SL_unclassified | |
SL_confidential | |
SL_secret | |
SL_top_secret | |
SL_old_rsbac_internal | |
SL_old_inherit | |
SL_old_none |
Definition at line 178 of file types.h.
00178 {SL_unclassified, SL_confidential, SL_secret, 00179 SL_top_secret, SL_old_rsbac_internal, 00180 SL_old_inherit, SL_old_none};
enum rsbac_scd_type_t |
Definition at line 209 of file types.h.
00209 {ST_time_strucs, ST_clock, ST_host_id, 00210 ST_net_id, ST_ioports, ST_rlimit, 00211 ST_swap, ST_syslog, ST_rsbac, ST_rsbac_log, 00212 ST_other, ST_kmem, ST_network, ST_firewall, 00213 ST_priority, ST_sysfs, ST_rsbac_remote_log, 00214 ST_quota, ST_sysctl, ST_nfsd, ST_ksyms, 00215 ST_mlock, ST_capability, ST_kexec, ST_none};
SW_GEN | |
SW_MAC | |
SW_PM | |
SW_DAZ | |
SW_FF | |
SW_RC | |
SW_AUTH | |
SW_REG | |
SW_ACL | |
SW_CAP | |
SW_JAIL | |
SW_RES | |
SW_PAX | |
SW_SOFTMODE | |
SW_DAC_DISABLE | |
SW_UM | |
SW_FREEZE | |
SW_NONE |
Definition at line 576 of file types.h.
00576 {SW_GEN,SW_MAC,SW_PM,SW_DAZ,SW_FF,SW_RC,SW_AUTH, 00577 SW_REG,SW_ACL,SW_CAP,SW_JAIL,SW_RES,SW_PAX,SW_SOFTMODE, 00578 SW_DAC_DISABLE,SW_UM,SW_FREEZE,SW_NONE};
enum rsbac_system_role_t |
Definition at line 200 of file types.h.
00200 {SR_user, SR_security_officer, SR_administrator, 00201 SR_auditor, SR_none};
enum rsbac_target_t |
T_FILE | |
T_DIR | |
T_FIFO | |
T_SYMLINK | |
T_DEV | |
T_IPC | |
T_SCD | |
T_USER | |
T_PROCESS | |
T_NETDEV | |
T_NETTEMP | |
T_NETOBJ | |
T_NETTEMP_NT | |
T_GROUP | |
T_FD | |
T_UNIXSOCK | |
T_NONE |
Definition at line 588 of file types.h.
00588 {T_FILE, T_DIR, T_FIFO, T_SYMLINK, T_DEV, T_IPC, T_SCD, T_USER, T_PROCESS, 00589 T_NETDEV, T_NETTEMP, T_NETOBJ, T_NETTEMP_NT, T_GROUP, 00590 T_FD, T_UNIXSOCK, 00591 T_NONE};
static struct rsbac_dev_desc_t rsbac_mkdev_desc | ( | __u32 | type, | |
__u32 | major, | |||
__u32 | minor | |||
) | [inline, static] |
Definition at line 261 of file types.h.
References rsbac_dev_desc_t::major, rsbac_dev_desc_t::minor, and rsbac_dev_desc_t::type.
00262 { 00263 struct rsbac_dev_desc_t dev_desc; 00264 00265 dev_desc.type = type; 00266 dev_desc.major = major; 00267 dev_desc.minor = minor; 00268 return dev_desc; 00269 }