52267f7411
contrib/openbsm (svn merge) and sys/{bsm,security/audit} (manual merge).
- Add OpenBSM contrib tree to include paths for audit(8) and auditd(8).
- Merge support for new tokens, fixes to existing token generation to
audit_bsm_token.c.
- Synchronize bsm includes and definitions.
OpenBSM history for imported revisions below for reference.
MFC after: 1 month
Sponsored by: Apple Inc.
Obtained from: TrustedBSD Project
--
OpenBSM 1.1 alpha 2
- Include files in OpenBSM are now broken out into two parts: library builds
required solely for user space, and system includes, which may also be
required for use in the kernels of systems integrating OpenBSM. Submitted
by Stacey Son.
- Configure option --with-native-includes allows forcing the use of native
include for system includes, rather than the versions bundled with OpenBSM.
This is intended specifically for platforms that ship OpenBSM, have adapted
versions of the system includes in a kernel source tree, and will use the
OpenBSM build infrastructure with an unmodified OpenBSM distribution,
allowing the customized system includes to be used with the OpenBSM build.
Submitted by Stacey Son.
- Various strcpy()'s/strcat()'s have been changed to strlcpy()'s/strlcat()'s
or asprintf(). Added compat/strlcpy.h for Linux.
- Remove compatibility defines for old Darwin token constant names; now only
BSM token names are provided and used.
- Add support for extended header tokens, which contain space for information
on the host generating the record.
- Add support for setting extended host information in the kernel, which is
used for setting host information in extended header tokens. The
audit_control file now supports a "host" parameter which can be used by
auditd to set the information; if not present, the kernel parameters won't
be set and auditd uses unextended headers for records that it generates.
OpenBSM 1.1 alpha 1
- Add option to auditreduce(1) which allows users to invert sense of
matching, such that BSM records that do not match, are selected.
- Fix bug in audit_write() where we commit an incomplete record in the
event there is an error writing the subject token. This was submitted
by Diego Giagio.
- Build support for Mac OS X 10.5.1 submitted by Eric Hall.
- Fix a bug which resulted in host XML attributes not being arguments so
that const strings can be passed as arguments to tokens. This patch was
submitted by Xin LI.
- Modify the -m option so users can select more then one audit event.
- For Mac OS X, added Mach IPC support for audit trigger messages.
- Fixed a bug in getacna() which resulted in a locking problem on Mac OS X.
- Added LOG_PERROR flag to openlog when -d option is used with auditd.
- AUE events added for Mac OS X Leopard system calls.
211 lines
5.8 KiB
C
211 lines
5.8 KiB
C
/* config/config.h. Generated from config.h.in by configure. */
|
|
/* config/config.h.in. Generated from configure.ac by autoheader. */
|
|
/* $FreeBSD$ */
|
|
|
|
/* Define to 1 if you have the `alarm' function. */
|
|
#define HAVE_ALARM 1
|
|
|
|
/* Define if audit system calls present */
|
|
#define HAVE_AUDIT_SYSCALLS
|
|
|
|
/* Define to 1 if you have the `bzero' function. */
|
|
#define HAVE_BZERO 1
|
|
|
|
/* Define to 1 if your system has a working `chown' function. */
|
|
#define HAVE_CHOWN 1
|
|
|
|
/* Define to 1 if you have the `clock_gettime' function. */
|
|
#define HAVE_CLOCK_GETTIME 1
|
|
|
|
/* Define to 1 if you have the <dlfcn.h> header file. */
|
|
#define HAVE_DLFCN_H 1
|
|
|
|
/* Define to 1 if you have the <endian.h> header file. */
|
|
/* #undef HAVE_ENDIAN_H */
|
|
|
|
/* Define to 1 if you have the `fork' function. */
|
|
#define HAVE_FORK 1
|
|
|
|
/* Define to 1 if you have the `ftruncate' function. */
|
|
#define HAVE_FTRUNCATE 1
|
|
|
|
/* Define if queue.h includes LIST_FIRST */
|
|
#define HAVE_FULL_QUEUE_H
|
|
|
|
/* Define to 1 if you have the `gettimeofday' function. */
|
|
#define HAVE_GETTIMEOFDAY 1
|
|
|
|
/* Define to 1 if you have the `inet_ntoa' function. */
|
|
#define HAVE_INET_NTOA 1
|
|
|
|
/* Define to 1 if you have the <inttypes.h> header file. */
|
|
#define HAVE_INTTYPES_H 1
|
|
|
|
/* Define if ipc_perm._key instead of key */
|
|
/* #undef HAVE_IPC_PERM__KEY */
|
|
|
|
/* Define if ipc_perm._seq instead of seq */
|
|
/* #undef HAVE_IPC_PERM__SEQ */
|
|
|
|
/* Define if ipc_perm.__key instead of key */
|
|
/* #undef HAVE_IPC_PERM___KEY */
|
|
|
|
/* Define if ipc_perm.__seq instead of seq */
|
|
/* #undef HAVE_IPC_PERM___SEQ */
|
|
|
|
/* Define to 1 if you have the <machine/endian.h> header file. */
|
|
#define HAVE_MACHINE_ENDIAN_H 1
|
|
|
|
/* Define to 1 if you have the <mach/mach.h> header file. */
|
|
/* #undef HAVE_MACH_MACH_H */
|
|
|
|
/* Define to 1 if your system has a GNU libc compatible `malloc' function, and
|
|
to 0 otherwise. */
|
|
#define HAVE_MALLOC 1
|
|
|
|
/* Define to 1 if you have the <memory.h> header file. */
|
|
#define HAVE_MEMORY_H 1
|
|
|
|
/* Define to 1 if you have the `memset' function. */
|
|
#define HAVE_MEMSET 1
|
|
|
|
/* Define to 1 if `stat' has the bug that it succeeds when given the
|
|
zero-length file name argument. */
|
|
/* #undef HAVE_STAT_EMPTY_STRING_BUG */
|
|
|
|
/* Define to 1 if you have the <stdint.h> header file. */
|
|
#define HAVE_STDINT_H 1
|
|
|
|
/* Define to 1 if you have the <stdlib.h> header file. */
|
|
#define HAVE_STDLIB_H 1
|
|
|
|
/* Define to 1 if you have the `strchr' function. */
|
|
#define HAVE_STRCHR 1
|
|
|
|
/* Define to 1 if you have the `strerror' function. */
|
|
#define HAVE_STRERROR 1
|
|
|
|
/* Define to 1 if you have the `strftime' function. */
|
|
#define HAVE_STRFTIME 1
|
|
|
|
/* Define to 1 if you have the <strings.h> header file. */
|
|
#define HAVE_STRINGS_H 1
|
|
|
|
/* Define to 1 if you have the <string.h> header file. */
|
|
#define HAVE_STRING_H 1
|
|
|
|
/* Define to 1 if you have the `strlcat' function. */
|
|
#define HAVE_STRLCAT 1
|
|
|
|
/* Define to 1 if you have the `strlcpy' function. */
|
|
#define HAVE_STRLCPY 1
|
|
|
|
/* Define to 1 if you have the `strrchr' function. */
|
|
#define HAVE_STRRCHR 1
|
|
|
|
/* Define to 1 if you have the `strstr' function. */
|
|
#define HAVE_STRSTR 1
|
|
|
|
/* Define to 1 if you have the `strtol' function. */
|
|
#define HAVE_STRTOL 1
|
|
|
|
/* Define to 1 if you have the `strtoul' function. */
|
|
#define HAVE_STRTOUL 1
|
|
|
|
/* Define to 1 if `st_rdev' is member of `struct stat'. */
|
|
#define HAVE_STRUCT_STAT_ST_RDEV 1
|
|
|
|
/* Define to 1 if you have the <sys/endian.h> header file. */
|
|
#define HAVE_SYS_ENDIAN_H 1
|
|
|
|
/* Define to 1 if you have the <sys/stat.h> header file. */
|
|
#define HAVE_SYS_STAT_H 1
|
|
|
|
/* Define to 1 if you have the <sys/time.h> header file. */
|
|
#define HAVE_SYS_TIME_H 1
|
|
|
|
/* Define to 1 if you have the <sys/types.h> header file. */
|
|
#define HAVE_SYS_TYPES_H 1
|
|
|
|
/* Define to 1 if you have <sys/wait.h> that is POSIX.1 compatible. */
|
|
#define HAVE_SYS_WAIT_H 1
|
|
|
|
/* Define to 1 if you have the <unistd.h> header file. */
|
|
#define HAVE_UNISTD_H 1
|
|
|
|
/* Define to 1 if you have the `vfork' function. */
|
|
#define HAVE_VFORK 1
|
|
|
|
/* Define to 1 if you have the <vfork.h> header file. */
|
|
/* #undef HAVE_VFORK_H */
|
|
|
|
/* Define to 1 if `fork' works. */
|
|
#define HAVE_WORKING_FORK 1
|
|
|
|
/* Define to 1 if `vfork' works. */
|
|
#define HAVE_WORKING_VFORK 1
|
|
|
|
/* Define to 1 if `lstat' dereferences a symlink specified with a trailing
|
|
slash. */
|
|
/* #undef LSTAT_FOLLOWS_SLASHED_SYMLINK */
|
|
|
|
/* Name of package */
|
|
#define PACKAGE "OpenBSM"
|
|
|
|
/* Define to the address where bug reports for this package should be sent. */
|
|
#define PACKAGE_BUGREPORT "trustedbsd-audit@TrustesdBSD.org"
|
|
|
|
/* Define to the full name of this package. */
|
|
#define PACKAGE_NAME "OpenBSM"
|
|
|
|
/* Define to the full name and version of this package. */
|
|
#define PACKAGE_STRING "OpenBSM 1.1alpha2"
|
|
|
|
/* Define to the one symbol short name of this package. */
|
|
#define PACKAGE_TARNAME "openbsm"
|
|
|
|
/* Define to the version of this package. */
|
|
#define PACKAGE_VERSION "1.1alpha2"
|
|
|
|
/* Define as the return type of signal handlers (`int' or `void'). */
|
|
#define RETSIGTYPE void
|
|
|
|
/* Define to 1 if you have the ANSI C header files. */
|
|
#define STDC_HEADERS 1
|
|
|
|
/* Define to 1 if you can safely include both <sys/time.h> and <time.h>. */
|
|
#define TIME_WITH_SYS_TIME 1
|
|
|
|
/* Define to 1 if your <sys/time.h> declares `struct tm'. */
|
|
/* #undef TM_IN_SYS_TIME */
|
|
|
|
/* Define if uses Mach IPC for Triggers messages */
|
|
/* #undef USE_MACH_IPC */
|
|
|
|
/* Define to use native include files */
|
|
#define USE_NATIVE_INCLUDES
|
|
|
|
/* Version number of package */
|
|
#define VERSION "1.1alpha2"
|
|
|
|
/* Define to empty if `const' does not conform to ANSI C. */
|
|
/* #undef const */
|
|
|
|
/* Define to `int' if <sys/types.h> doesn't define. */
|
|
/* #undef gid_t */
|
|
|
|
/* Define to rpl_malloc if the replacement function should be used. */
|
|
/* #undef malloc */
|
|
|
|
/* Define to `int' if <sys/types.h> does not define. */
|
|
/* #undef pid_t */
|
|
|
|
/* Define to `unsigned int' if <sys/types.h> does not define. */
|
|
/* #undef size_t */
|
|
|
|
/* Define to `int' if <sys/types.h> doesn't define. */
|
|
/* #undef uid_t */
|
|
|
|
/* Define as `fork' if `vfork' does not work. */
|
|
/* #undef vfork */
|