aci_data_structures.h File Reference

Go to the source code of this file.

Defines
#define	RSBAC_GEN_FD_ACI_VERSION   6
#define	RSBAC_GEN_FD_ACI_KEY   1001
#define	DEFAULT_GEN_FD_ACI
#define	DEFAULT_GEN_ROOT_DIR_ACI
#define	RSBAC_GEN_FD_OLD_ACI_VERSION   5
#define	RSBAC_GEN_FD_OLD_OLD_ACI_VERSION   4
#define	RSBAC_GEN_FD_OLD_OLD_OLD_ACI_VERSION   3
#define	RSBAC_GEN_FD_OLD_OLD_OLD_OLD_ACI_VERSION   2
#define	RSBAC_GEN_FD_OLD_OLD_OLD_OLD_OLD_ACI_VERSION   1
#define	RSBAC_FD_NR_ATTRIBUTES   32
#define	RSBAC_FD_ATTR_LIST
#define	RSBAC_GEN_ACI_DEV_NAME   "dev_gen"
#define	RSBAC_MAC_ACI_DEV_NAME   "dev_mac"
#define	RSBAC_FC_ACI_DEV_NAME   "dev_fc"
#define	RSBAC_SIM_ACI_DEV_NAME   "dev_sim"
#define	RSBAC_PM_ACI_DEV_NAME   "dev_pm"
#define	RSBAC_RC_ACI_DEV_NAME   "dev_rc"
#define	RSBAC_GEN_DEV_ACI_VERSION   2
#define	RSBAC_GEN_DEV_OLD_ACI_VERSION   1
#define	RSBAC_GEN_DEV_ACI_KEY   1001
#define	DEFAULT_GEN_DEV_ACI
#define	RSBAC_DEV_NR_ATTRIBUTES   10
#define	RSBAC_DEV_ATTR_LIST
#define	RSBAC_MAC_ACI_IPC_NAME   "ipc_mac"
#define	RSBAC_FC_ACI_IPC_NAME   "ipc_fc"
#define	RSBAC_SIM_ACI_IPC_NAME   "ipc_sim"
#define	RSBAC_PM_ACI_IPC_NAME   "ipc_pm"
#define	RSBAC_RC_ACI_IPC_NAME   "ipc_rc"
#define	RSBAC_JAIL_ACI_IPC_NAME   "ipc_jai"
#define	RSBAC_IPC_NR_ATTRIBUTES   9
#define	RSBAC_IPC_ATTR_LIST
#define	RSBAC_GEN_ACI_USER_NAME   "u_gen"
#define	RSBAC_MAC_ACI_USER_NAME   "u_mac"
#define	RSBAC_FC_ACI_USER_NAME   "u_fc"
#define	RSBAC_SIM_ACI_USER_NAME   "u_sim"
#define	RSBAC_PM_ACI_USER_NAME   "u_pm"
#define	RSBAC_DAZ_ACI_USER_NAME   "u_daz"
#define	RSBAC_FF_ACI_USER_NAME   "u_ff"
#define	RSBAC_RC_ACI_USER_NAME   "u_rc"
#define	RSBAC_AUTH_ACI_USER_NAME   "u_auth"
#define	RSBAC_CAP_ACI_USER_NAME   "u_cap"
#define	RSBAC_JAIL_ACI_USER_NAME   "u_jail"
#define	RSBAC_PAX_ACI_USER_NAME   "u_pax"
#define	RSBAC_RES_ACI_USER_NAME   "u_res"
#define	RSBAC_GEN_USER_ACI_VERSION   1
#define	RSBAC_GEN_USER_ACI_KEY   1001
#define	DEFAULT_GEN_U_ACI
#define	RSBAC_USER_NR_ATTRIBUTES   24
#define	RSBAC_USER_ATTR_LIST
#define	RSBAC_GEN_ACI_PROCESS_NAME   "process_gen"
#define	RSBAC_MAC_ACI_PROCESS_NAME   "process_mac."
#define	RSBAC_PM_ACI_PROCESS_NAME   "process_pm"
#define	RSBAC_DAZ_ACI_PROCESS_NAME   "process_daz"
#define	RSBAC_RC_ACI_PROCESS_NAME   "process_rc."
#define	RSBAC_AUTH_ACI_PROCESS_NAME   "process_auth"
#define	RSBAC_CAP_ACI_PROCESS_NAME   "process_cap"
#define	RSBAC_JAIL_ACI_PROCESS_NAME   "process_jail"
#define	RSBAC_GEN_PROCESS_ACI_VERSION   1
#define	RSBAC_GEN_PROCESS_ACI_KEY   1001
#define	DEFAULT_GEN_P_ACI
#define	RSBAC_PROCESS_NR_ATTRIBUTES   33
#define	RSBAC_PROCESS_ATTR_LIST
#define	RSBAC_RC_ACI_GROUP_NAME   "grouprc"
#define	RSBAC_GROUP_NR_ATTRIBUTES   1
#define	RSBAC_GROUP_ATTR_LIST
#define	RSBAC_GEN_ACI_NETDEV_NAME   "nd_gen"
#define	RSBAC_RC_ACI_NETDEV_NAME   "nd_rc"
#define	RSBAC_GEN_NETDEV_ACI_VERSION   1
#define	RSBAC_GEN_NETDEV_ACI_KEY   1001
#define	DEFAULT_GEN_NETDEV_ACI
#define	RSBAC_NETDEV_NR_ATTRIBUTES   3
#define	RSBAC_NETDEV_ATTR_LIST
#define	RSBAC_GEN_ACI_NETTEMP_NAME   "nt_gen"
#define	RSBAC_MAC_ACI_NETTEMP_NAME   "nt_mac"
#define	RSBAC_FC_ACI_NETTEMP_NAME   "nt_fc"
#define	RSBAC_SIM_ACI_NETTEMP_NAME   "nt_sim"
#define	RSBAC_PM_ACI_NETTEMP_NAME   "nt_pm"
#define	RSBAC_RC_ACI_NETTEMP_NAME   "nt_rc"
#define	RSBAC_MAC_ACI_LNETOBJ_NAME   "lnetobj_mac"
#define	RSBAC_FC_ACI_LNETOBJ_NAME   "lnetobj_fc"
#define	RSBAC_SIM_ACI_LNETOBJ_NAME   "lnetobj_sim"
#define	RSBAC_PM_ACI_LNETOBJ_NAME   "lnetobj_pm"
#define	RSBAC_RC_ACI_LNETOBJ_NAME   "lnetobj_rc"
#define	RSBAC_MAC_ACI_RNETOBJ_NAME   "rnetobj_mac"
#define	RSBAC_FC_ACI_RNETOBJ_NAME   "rnetobj_fc"
#define	RSBAC_SIM_ACI_RNETOBJ_NAME   "rnetobj_sim"
#define	RSBAC_PM_ACI_RNETOBJ_NAME   "rnetobj_pm"
#define	RSBAC_RC_ACI_RNETOBJ_NAME   "rnetobj_rc"
#define	RSBAC_GEN_NETOBJ_ACI_VERSION   1
#define	RSBAC_GEN_NETOBJ_ACI_KEY   1001
#define	DEFAULT_GEN_NETOBJ_ACI
#define	RSBAC_NETTEMP_NR_ATTRIBUTES   11
#define	RSBAC_NETTEMP_ATTR_LIST
#define	RSBAC_NETOBJ_NR_ATTRIBUTES   20
#define	RSBAC_NETOBJ_ATTR_LIST

---

Define Documentation

#define DEFAULT_GEN_DEV_ACI

Value: { \ .log_array_low = -1, \ .log_array_high = -1, \ } Definition at line 574 of file aci_data_structures.h. Referenced by get_attr_dev(), register_dev_lists(), and set_attr_dev().

#define DEFAULT_GEN_FD_ACI

Value: { \ .log_array_low = -1, \ .log_array_high = -1, \ .log_program_based = 0, \ .symlink_add_uid = FALSE, \ .symlink_add_mac_level = FALSE, \ .symlink_add_rc_role = FALSE, \ .linux_dac_disable = LDD_inherit, \ .fake_root_uid = FR_off, \ .auid_exempt = RSBAC_NO_USER, \ } Definition at line 126 of file aci_data_structures.h. Referenced by get_attr_fd(), and set_attr_fd().

#define DEFAULT_GEN_NETDEV_ACI

Value: { \ .log_array_low = -1, \ .log_array_high = -1, \ } Definition at line 1553 of file aci_data_structures.h.

#define DEFAULT_GEN_NETOBJ_ACI

Value: { \ .log_array_low = -1, \ .log_array_high = -1, \ } Definition at line 1611 of file aci_data_structures.h.

#define DEFAULT_GEN_P_ACI

Value: { \ .log_program_based = 0, \ .fake_root_uid = FR_off, \ .audit_uid = RSBAC_NO_USER, \ .auid_exempt = RSBAC_NO_USER, \ } Definition at line 1245 of file aci_data_structures.h. Referenced by get_attr_process(), register_process_lists(), and set_attr_process().

#define DEFAULT_GEN_ROOT_DIR_ACI

Value: { \ .log_array_low = -1, \ .log_array_high = -1, \ .log_program_based = 0, \ .symlink_add_uid = FALSE, \ .symlink_add_mac_level = FALSE, \ .symlink_add_rc_role = FALSE, \ .linux_dac_disable = LDD_false, \ .fake_root_uid = FR_off, \ .auid_exempt = RSBAC_NO_USER, \ } Definition at line 139 of file aci_data_structures.h.

#define DEFAULT_GEN_U_ACI

Value: { \ .pseudo = (rsbac_pseudo_t) 0, \ .log_user_based = 0, \ } Definition at line 793 of file aci_data_structures.h. Referenced by get_attr_user(), register_user_lists(), and set_attr_user().

#define RSBAC_AUTH_ACI_PROCESS_NAME   "process_auth"

Definition at line 1232 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_AUTH_ACI_USER_NAME   "u_auth"

Definition at line 780 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_CAP_ACI_PROCESS_NAME   "process_cap"

Definition at line 1233 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_CAP_ACI_USER_NAME   "u_cap"

Definition at line 781 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_DAZ_ACI_PROCESS_NAME   "process_daz"

Definition at line 1230 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_DAZ_ACI_USER_NAME   "u_daz"

Definition at line 777 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_DEV_ATTR_LIST

Value: { \ A_security_level, \ A_mac_categories, \ A_object_category, \ A_data_type, \ A_mac_check, \ A_pm_object_type, \ A_pm_object_class, \ A_rc_type, \ A_log_array_low, \ A_log_array_high \ } Definition at line 634 of file aci_data_structures.h.

#define RSBAC_DEV_NR_ATTRIBUTES   10

Definition at line 633 of file aci_data_structures.h.

#define RSBAC_FC_ACI_DEV_NAME   "dev_fc"

Definition at line 558 of file aci_data_structures.h. Referenced by register_dev_lists().

#define RSBAC_FC_ACI_IPC_NAME   "ipc_fc"

Definition at line 674 of file aci_data_structures.h. Referenced by register_ipc_lists().

#define RSBAC_FC_ACI_LNETOBJ_NAME   "lnetobj_fc"

Definition at line 1594 of file aci_data_structures.h.

#define RSBAC_FC_ACI_NETTEMP_NAME   "nt_fc"

Definition at line 1588 of file aci_data_structures.h.

#define RSBAC_FC_ACI_RNETOBJ_NAME   "rnetobj_fc"

Definition at line 1599 of file aci_data_structures.h.

#define RSBAC_FC_ACI_USER_NAME   "u_fc"

Definition at line 774 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_FD_ATTR_LIST

Definition at line 445 of file aci_data_structures.h.

#define RSBAC_FD_NR_ATTRIBUTES   32

Definition at line 444 of file aci_data_structures.h.

#define RSBAC_FF_ACI_USER_NAME   "u_ff"

Definition at line 778 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_GEN_ACI_DEV_NAME   "dev_gen"

Definition at line 556 of file aci_data_structures.h. Referenced by register_dev_lists().

#define RSBAC_GEN_ACI_NETDEV_NAME   "nd_gen"

Definition at line 1543 of file aci_data_structures.h.

#define RSBAC_GEN_ACI_NETTEMP_NAME   "nt_gen"

Definition at line 1586 of file aci_data_structures.h.

#define RSBAC_GEN_ACI_PROCESS_NAME   "process_gen"

Definition at line 1227 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_GEN_ACI_USER_NAME   "u_gen"

Definition at line 772 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_GEN_DEV_ACI_KEY   1001

Definition at line 567 of file aci_data_structures.h. Referenced by register_dev_lists().

#define RSBAC_GEN_DEV_ACI_VERSION   2

Definition at line 565 of file aci_data_structures.h. Referenced by register_dev_lists().

#define RSBAC_GEN_DEV_OLD_ACI_VERSION   1

Definition at line 566 of file aci_data_structures.h. Referenced by gen_dev_get_conv().

#define RSBAC_GEN_FD_ACI_KEY   1001

Definition at line 113 of file aci_data_structures.h. Referenced by aci_detach_fd_lists(), and register_fd_lists().

#define RSBAC_GEN_FD_ACI_VERSION   6

Definition at line 112 of file aci_data_structures.h. Referenced by register_fd_lists().

#define RSBAC_GEN_FD_OLD_ACI_VERSION   5

Definition at line 152 of file aci_data_structures.h. Referenced by gen_fd_get_conv().

#define RSBAC_GEN_FD_OLD_OLD_ACI_VERSION   4

Definition at line 165 of file aci_data_structures.h. Referenced by gen_fd_get_conv().

#define RSBAC_GEN_FD_OLD_OLD_OLD_ACI_VERSION   3

Definition at line 177 of file aci_data_structures.h. Referenced by gen_fd_get_conv().

#define RSBAC_GEN_FD_OLD_OLD_OLD_OLD_ACI_VERSION   2

Definition at line 188 of file aci_data_structures.h. Referenced by gen_fd_get_conv().

#define RSBAC_GEN_FD_OLD_OLD_OLD_OLD_OLD_ACI_VERSION   1

Definition at line 197 of file aci_data_structures.h. Referenced by gen_fd_get_conv().

#define RSBAC_GEN_NETDEV_ACI_KEY   1001

Definition at line 1547 of file aci_data_structures.h.

#define RSBAC_GEN_NETDEV_ACI_VERSION   1

Definition at line 1546 of file aci_data_structures.h.

#define RSBAC_GEN_NETOBJ_ACI_KEY   1001

Definition at line 1605 of file aci_data_structures.h.

#define RSBAC_GEN_NETOBJ_ACI_VERSION   1

Definition at line 1604 of file aci_data_structures.h.

#define RSBAC_GEN_PROCESS_ACI_KEY   1001

Definition at line 1237 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_GEN_PROCESS_ACI_VERSION   1

Definition at line 1236 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_GEN_USER_ACI_KEY   1001

Definition at line 787 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_GEN_USER_ACI_VERSION   1

Definition at line 786 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_GROUP_ATTR_LIST

Value: { \ A_rc_type \ } Definition at line 1527 of file aci_data_structures.h.

#define RSBAC_GROUP_NR_ATTRIBUTES   1

Definition at line 1526 of file aci_data_structures.h.

#define RSBAC_IPC_ATTR_LIST

Value: { \ A_security_level, \ A_mac_categories, \ A_object_category, \ A_data_type, \ A_pm_object_class, \ A_pm_ipc_purpose, \ A_pm_object_type, \ A_rc_type, \ A_jail_id \ } Definition at line 733 of file aci_data_structures.h.

#define RSBAC_IPC_NR_ATTRIBUTES   9

Definition at line 732 of file aci_data_structures.h.

#define RSBAC_JAIL_ACI_IPC_NAME   "ipc_jai"

Definition at line 678 of file aci_data_structures.h. Referenced by register_ipc_lists().

#define RSBAC_JAIL_ACI_PROCESS_NAME   "process_jail"

Definition at line 1234 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_JAIL_ACI_USER_NAME   "u_jail"

Definition at line 782 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_MAC_ACI_DEV_NAME   "dev_mac"

Definition at line 557 of file aci_data_structures.h. Referenced by register_dev_lists().

#define RSBAC_MAC_ACI_IPC_NAME   "ipc_mac"

Definition at line 673 of file aci_data_structures.h. Referenced by register_ipc_lists().

#define RSBAC_MAC_ACI_LNETOBJ_NAME   "lnetobj_mac"

Definition at line 1593 of file aci_data_structures.h.

#define RSBAC_MAC_ACI_NETTEMP_NAME   "nt_mac"

Definition at line 1587 of file aci_data_structures.h.

#define RSBAC_MAC_ACI_PROCESS_NAME   "process_mac."

Definition at line 1228 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_MAC_ACI_RNETOBJ_NAME   "rnetobj_mac"

Definition at line 1598 of file aci_data_structures.h.

#define RSBAC_MAC_ACI_USER_NAME   "u_mac"

Definition at line 773 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_NETDEV_ATTR_LIST

Value: { \ A_rc_type, \ A_log_array_low, \ A_log_array_high \ } Definition at line 1565 of file aci_data_structures.h.

#define RSBAC_NETDEV_NR_ATTRIBUTES   3

Definition at line 1564 of file aci_data_structures.h.

#define RSBAC_NETOBJ_ATTR_LIST

Value: { \ A_local_sec_level, \ A_remote_sec_level, \ A_local_mac_categories, \ A_remote_mac_categories, \ A_local_object_category, \ A_remote_object_category, \ A_local_data_type, \ A_remote_data_type, \ A_local_pm_object_class, \ A_remote_pm_object_class, \ A_local_pm_ipc_purpose, \ A_remote_pm_ipc_purpose, \ A_local_pm_object_type, \ A_remote_pm_object_type, \ A_local_rc_type, \ A_remote_rc_type, \ A_local_log_array_low, \ A_remote_log_array_low, \ A_local_log_array_high, \ A_remote_log_array_high \ } Definition at line 1693 of file aci_data_structures.h.

#define RSBAC_NETOBJ_NR_ATTRIBUTES   20

Definition at line 1692 of file aci_data_structures.h.

#define RSBAC_NETTEMP_ATTR_LIST

Value: { \ A_security_level, \ A_mac_categories, \ A_object_category, \ A_data_type, \ A_pm_object_class, \ A_pm_ipc_purpose, \ A_pm_object_type, \ A_rc_type, \ A_rc_type_nt, \ A_log_array_low, \ A_log_array_high \ } Definition at line 1678 of file aci_data_structures.h.

#define RSBAC_NETTEMP_NR_ATTRIBUTES   11

Definition at line 1677 of file aci_data_structures.h.

#define RSBAC_PAX_ACI_USER_NAME   "u_pax"

Definition at line 783 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_PM_ACI_DEV_NAME   "dev_pm"

Definition at line 560 of file aci_data_structures.h. Referenced by register_dev_lists().

#define RSBAC_PM_ACI_IPC_NAME   "ipc_pm"

Definition at line 676 of file aci_data_structures.h. Referenced by register_ipc_lists().

#define RSBAC_PM_ACI_LNETOBJ_NAME   "lnetobj_pm"

Definition at line 1596 of file aci_data_structures.h.

#define RSBAC_PM_ACI_NETTEMP_NAME   "nt_pm"

Definition at line 1590 of file aci_data_structures.h.

#define RSBAC_PM_ACI_PROCESS_NAME   "process_pm"

Definition at line 1229 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_PM_ACI_RNETOBJ_NAME   "rnetobj_pm"

Definition at line 1601 of file aci_data_structures.h.

#define RSBAC_PM_ACI_USER_NAME   "u_pm"

Definition at line 776 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_PROCESS_ATTR_LIST

Definition at line 1448 of file aci_data_structures.h.

#define RSBAC_PROCESS_NR_ATTRIBUTES   33

Definition at line 1447 of file aci_data_structures.h.

#define RSBAC_RC_ACI_DEV_NAME   "dev_rc"

Definition at line 561 of file aci_data_structures.h. Referenced by register_dev_lists().

#define RSBAC_RC_ACI_GROUP_NAME   "grouprc"

Definition at line 1517 of file aci_data_structures.h.

#define RSBAC_RC_ACI_IPC_NAME   "ipc_rc"

Definition at line 677 of file aci_data_structures.h. Referenced by register_ipc_lists().

#define RSBAC_RC_ACI_LNETOBJ_NAME   "lnetobj_rc"

Definition at line 1597 of file aci_data_structures.h.

#define RSBAC_RC_ACI_NETDEV_NAME   "nd_rc"

Definition at line 1544 of file aci_data_structures.h.

#define RSBAC_RC_ACI_NETTEMP_NAME   "nt_rc"

Definition at line 1591 of file aci_data_structures.h.

#define RSBAC_RC_ACI_PROCESS_NAME   "process_rc."

Definition at line 1231 of file aci_data_structures.h. Referenced by register_process_lists().

#define RSBAC_RC_ACI_RNETOBJ_NAME   "rnetobj_rc"

Definition at line 1602 of file aci_data_structures.h.

#define RSBAC_RC_ACI_USER_NAME   "u_rc"

Definition at line 779 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_RES_ACI_USER_NAME   "u_res"

Definition at line 784 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_SIM_ACI_DEV_NAME   "dev_sim"

Definition at line 559 of file aci_data_structures.h. Referenced by register_dev_lists().

#define RSBAC_SIM_ACI_IPC_NAME   "ipc_sim"

Definition at line 675 of file aci_data_structures.h. Referenced by register_ipc_lists().

#define RSBAC_SIM_ACI_LNETOBJ_NAME   "lnetobj_sim"

Definition at line 1595 of file aci_data_structures.h.

#define RSBAC_SIM_ACI_NETTEMP_NAME   "nt_sim"

Definition at line 1589 of file aci_data_structures.h.

#define RSBAC_SIM_ACI_RNETOBJ_NAME   "rnetobj_sim"

Definition at line 1600 of file aci_data_structures.h.

#define RSBAC_SIM_ACI_USER_NAME   "u_sim"

Definition at line 775 of file aci_data_structures.h. Referenced by register_user_lists().

#define RSBAC_USER_ATTR_LIST

Value: { \ A_pseudo, \ A_log_user_based, \ A_security_level, \ A_initial_security_level, \ A_min_security_level, \ A_mac_categories, \ A_mac_initial_categories, \ A_mac_min_categories, \ A_mac_role, \ A_mac_user_flags, \ A_fc_role, \ A_sim_role, \ A_daz_role, \ A_ff_role, \ A_auth_role, \ A_pm_task_set, \ A_pm_role, \ A_rc_def_role, \ A_min_caps, \ A_max_caps, \ A_cap_role, \ A_jail_role, \ A_res_role, \ A_pax_role \ } Definition at line 1154 of file aci_data_structures.h.

#define RSBAC_USER_NR_ATTRIBUTES   24

Definition at line 1153 of file aci_data_structures.h.

---