Головна сторінка Огляд Довідка
Увійти
Rydia
/
linux-phytium
Слідкувати 1
Зірка 0
Відгалуження 0
Файли Проблеми 0 Запити на злиття 0 Wiki
Гілка: master
Гілки Теги
linux-phytium
/
security
/
selinux
/
include
/
audit.h

audit.h 2.2 KB
Постійне посилання Історія Запис

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566 
  1. /*
    2. 

  2.  * SELinux support for the Audit LSM hooks
    3. 

  3.  *
    4. 

  4.  * Most of below header was moved from include/linux/selinux.h which
    5. 

  5.  * is released under below copyrights:
    6. 

  6.  *
    7. 

  7.  * Author: James Morris <jmorris@redhat.com>
    8. 

  8.  *
    9. 

  9.  * Copyright (C) 2005 Red Hat, Inc., James Morris <jmorris@redhat.com>
    10. 

  10.  * Copyright (C) 2006 Trusted Computer Solutions, Inc. <dgoeddel@trustedcs.com>
    11. 

  11.  * Copyright (C) 2006 IBM Corporation, Timothy R. Chavez <tinytim@us.ibm.com>
    12. 

  12.  *
    13. 

  13.  * This program is free software; you can redistribute it and/or modify
    14. 

  14.  * it under the terms of the GNU General Public License version 2,
    15. 

  15.  * as published by the Free Software Foundation.
    16. 

  16.  */
    17. 

  17. 

  18. #ifndef _SELINUX_AUDIT_H
    19. 

  19. #define _SELINUX_AUDIT_H
    20. 

  20. 

  21. /**
    22. 

  22.  *	selinux_audit_rule_init - alloc/init an selinux audit rule structure.
    23. 

  23.  *	@field: the field this rule refers to
    24. 

  24.  *	@op: the operater the rule uses
    25. 

  25.  *	@rulestr: the text "target" of the rule
    26. 

  26.  *	@rule: pointer to the new rule structure returned via this
    27. 

  27.  *
    28. 

  28.  *	Returns 0 if successful, -errno if not.  On success, the rule structure
    29. 

  29.  *	will be allocated internally.  The caller must free this structure with
    30. 

  30.  *	selinux_audit_rule_free() after use.
    31. 

  31.  */
    32. 

  32. int selinux_audit_rule_init(u32 field, u32 op, char *rulestr, void **rule);
    33. 

  33. 

  34. /**
    35. 

  35.  *	selinux_audit_rule_free - free an selinux audit rule structure.
    36. 

  36.  *	@rule: pointer to the audit rule to be freed
    37. 

  37.  *
    38. 

  38.  *	This will free all memory associated with the given rule.
    39. 

  39.  *	If @rule is NULL, no operation is performed.
    40. 

  40.  */
    41. 

  41. void selinux_audit_rule_free(void *rule);
    42. 

  42. 

  43. /**
    44. 

  44.  *	selinux_audit_rule_match - determine if a context ID matches a rule.
    45. 

  45.  *	@sid: the context ID to check
    46. 

  46.  *	@field: the field this rule refers to
    47. 

  47.  *	@op: the operater the rule uses
    48. 

  48.  *	@rule: pointer to the audit rule to check against
    49. 

  49.  *	@actx: the audit context (can be NULL) associated with the check
    50. 

  50.  *
    51. 

  51.  *	Returns 1 if the context id matches the rule, 0 if it does not, and
    52. 

  52.  *	-errno on failure.
    53. 

  53.  */
    54. 

  54. int selinux_audit_rule_match(u32 sid, u32 field, u32 op, void *rule,
    55. 

  55. 			     struct audit_context *actx);
    56. 

  56. 

  57. /**
    58. 

  58.  *	selinux_audit_rule_known - check to see if rule contains selinux fields.
    59. 

  59.  *	@rule: rule to be checked
    60. 

  60.  *	Returns 1 if there are selinux fields specified in the rule, 0 otherwise.
    61. 

  61.  */
    62. 

  62. int selinux_audit_rule_known(struct audit_krule *krule);
    63. 

  63. 

  64. #endif /* _SELINUX_AUDIT_H */
    65. 

  65. 

  66.