bb97b41819
notes since the last import: OpenBSM 1.0 alpha 11 - Reclassify certain read/write operations as having no class rather than the fr/fw class; our default classes audit intent (open) not operations (read, write). - Introduce AUE_SYSCTL_WRITE event so that BSD/Darwin systems can audit reads and writes of sysctls as separate events. Add additional kernel environment and jail events for FreeBSD. - Break AUDIT_TRIGGER_OPEN_NEW into two events, AUDIT_TRIGGER_ROTATE_USER (issued by the user audit(8) tool) and AUDIT_TRIGGER_ROTATE_KERNEL (issued by the kernel audit implementation) so that they can be distinguished. - Disable rate limiting of rotate requests; as the kernel doesn't retransmit a dropped request, the log file will otherwise grow indefinitely if the trigger is dropped. - Improve auditd debugging output. - Fix a number of threading related bugs in audit_control file reading routines. - Add APIs au_poltostr() and au_strtopol() to convert between text representations of audit_control policy flags and the flags passed to auditon(A_SETPOLICY) and retrieved from auditon(A_GETPOLICY). - Add API getacpol() to return the 'policy:' entry from audit_control, an extension to the Solaris file format to allow specification of policy persistent flags. - Update audump to print the audit_control policy field. - Update auditd to read the audit_control policy field and set the kernel policy to match it when configuring/reconfiguring. Remove the -s and -h arguments as these policies are now set via the configuration file. If a policy line is not found in the configuration file, continue with the current default of setting AUDIT_CNT. - Fix bugs in the parsing of large execve(2) arguments and environmental variable tokens; increase maximum parsed argument and variable count. - configure now detects strlcat(), used by policy-related functions. - Reference token and record sample files added to test tree. Obtained from: TrustedBSD Project
194 lines
5.0 KiB
C
194 lines
5.0 KiB
C
/* config/config.h.in. Generated from configure.ac by autoheader. */
|
|
|
|
/* Define to 1 if you have the `alarm' function. */
|
|
#undef HAVE_ALARM
|
|
|
|
/* Define if audit system calls present */
|
|
#undef HAVE_AUDIT_SYSCALLS
|
|
|
|
/* Define to 1 if you have the `bzero' function. */
|
|
#undef HAVE_BZERO
|
|
|
|
/* Define to 1 if your system has a working `chown' function. */
|
|
#undef HAVE_CHOWN
|
|
|
|
/* Define to 1 if you have the `clock_gettime' function. */
|
|
#undef HAVE_CLOCK_GETTIME
|
|
|
|
/* Define to 1 if you have the <dlfcn.h> header file. */
|
|
#undef HAVE_DLFCN_H
|
|
|
|
/* Define to 1 if you have the <endian.h> header file. */
|
|
#undef HAVE_ENDIAN_H
|
|
|
|
/* Define to 1 if you have the `fork' function. */
|
|
#undef HAVE_FORK
|
|
|
|
/* Define to 1 if you have the `ftruncate' function. */
|
|
#undef HAVE_FTRUNCATE
|
|
|
|
/* Define if queue.h includes LIST_FIRST */
|
|
#undef HAVE_FULL_QUEUE_H
|
|
|
|
/* Define to 1 if you have the `gettimeofday' function. */
|
|
#undef HAVE_GETTIMEOFDAY
|
|
|
|
/* Define to 1 if you have the `inet_ntoa' function. */
|
|
#undef HAVE_INET_NTOA
|
|
|
|
/* Define to 1 if you have the <inttypes.h> header file. */
|
|
#undef HAVE_INTTYPES_H
|
|
|
|
/* Define if ipc_perm.__key instead of key */
|
|
#undef HAVE_IPC_PERM___KEY
|
|
|
|
/* Define if ipc_perm.__seq instead of seq */
|
|
#undef HAVE_IPC_PERM___SEQ
|
|
|
|
/* Define to 1 if you have the <machine/endian.h> header file. */
|
|
#undef HAVE_MACHINE_ENDIAN_H
|
|
|
|
/* Define to 1 if you have the <mach/mach.h> header file. */
|
|
#undef HAVE_MACH_MACH_H
|
|
|
|
/* Define to 1 if your system has a GNU libc compatible `malloc' function, and
|
|
to 0 otherwise. */
|
|
#undef HAVE_MALLOC
|
|
|
|
/* Define to 1 if you have the <memory.h> header file. */
|
|
#undef HAVE_MEMORY_H
|
|
|
|
/* Define to 1 if you have the `memset' function. */
|
|
#undef HAVE_MEMSET
|
|
|
|
/* Define to 1 if `stat' has the bug that it succeeds when given the
|
|
zero-length file name argument. */
|
|
#undef HAVE_STAT_EMPTY_STRING_BUG
|
|
|
|
/* Define to 1 if you have the <stdint.h> header file. */
|
|
#undef HAVE_STDINT_H
|
|
|
|
/* Define to 1 if you have the <stdlib.h> header file. */
|
|
#undef HAVE_STDLIB_H
|
|
|
|
/* Define to 1 if you have the `strchr' function. */
|
|
#undef HAVE_STRCHR
|
|
|
|
/* Define to 1 if you have the `strerror' function. */
|
|
#undef HAVE_STRERROR
|
|
|
|
/* Define to 1 if you have the `strftime' function. */
|
|
#undef HAVE_STRFTIME
|
|
|
|
/* Define to 1 if you have the <strings.h> header file. */
|
|
#undef HAVE_STRINGS_H
|
|
|
|
/* Define to 1 if you have the <string.h> header file. */
|
|
#undef HAVE_STRING_H
|
|
|
|
/* Define to 1 if you have the `strlcat' function. */
|
|
#undef HAVE_STRLCAT
|
|
|
|
/* Define to 1 if you have the `strrchr' function. */
|
|
#undef HAVE_STRRCHR
|
|
|
|
/* Define to 1 if you have the `strstr' function. */
|
|
#undef HAVE_STRSTR
|
|
|
|
/* Define to 1 if you have the `strtol' function. */
|
|
#undef HAVE_STRTOL
|
|
|
|
/* Define to 1 if you have the `strtoul' function. */
|
|
#undef HAVE_STRTOUL
|
|
|
|
/* Define to 1 if `st_rdev' is member of `struct stat'. */
|
|
#undef HAVE_STRUCT_STAT_ST_RDEV
|
|
|
|
/* Define to 1 if you have the <sys/endian.h> header file. */
|
|
#undef HAVE_SYS_ENDIAN_H
|
|
|
|
/* Define to 1 if you have the <sys/stat.h> header file. */
|
|
#undef HAVE_SYS_STAT_H
|
|
|
|
/* Define to 1 if you have the <sys/time.h> header file. */
|
|
#undef HAVE_SYS_TIME_H
|
|
|
|
/* Define to 1 if you have the <sys/types.h> header file. */
|
|
#undef HAVE_SYS_TYPES_H
|
|
|
|
/* Define to 1 if you have <sys/wait.h> that is POSIX.1 compatible. */
|
|
#undef HAVE_SYS_WAIT_H
|
|
|
|
/* Define to 1 if you have the <unistd.h> header file. */
|
|
#undef HAVE_UNISTD_H
|
|
|
|
/* Define to 1 if you have the `vfork' function. */
|
|
#undef HAVE_VFORK
|
|
|
|
/* Define to 1 if you have the <vfork.h> header file. */
|
|
#undef HAVE_VFORK_H
|
|
|
|
/* Define to 1 if `fork' works. */
|
|
#undef HAVE_WORKING_FORK
|
|
|
|
/* Define to 1 if `vfork' works. */
|
|
#undef HAVE_WORKING_VFORK
|
|
|
|
/* Define to 1 if `lstat' dereferences a symlink specified with a trailing
|
|
slash. */
|
|
#undef LSTAT_FOLLOWS_SLASHED_SYMLINK
|
|
|
|
/* Name of package */
|
|
#undef PACKAGE
|
|
|
|
/* Define to the address where bug reports for this package should be sent. */
|
|
#undef PACKAGE_BUGREPORT
|
|
|
|
/* Define to the full name of this package. */
|
|
#undef PACKAGE_NAME
|
|
|
|
/* Define to the full name and version of this package. */
|
|
#undef PACKAGE_STRING
|
|
|
|
/* Define to the one symbol short name of this package. */
|
|
#undef PACKAGE_TARNAME
|
|
|
|
/* Define to the version of this package. */
|
|
#undef PACKAGE_VERSION
|
|
|
|
/* Define as the return type of signal handlers (`int' or `void'). */
|
|
#undef RETSIGTYPE
|
|
|
|
/* Define to 1 if you have the ANSI C header files. */
|
|
#undef STDC_HEADERS
|
|
|
|
/* Define to 1 if you can safely include both <sys/time.h> and <time.h>. */
|
|
#undef TIME_WITH_SYS_TIME
|
|
|
|
/* Define to 1 if your <sys/time.h> declares `struct tm'. */
|
|
#undef TM_IN_SYS_TIME
|
|
|
|
/* Version number of package */
|
|
#undef VERSION
|
|
|
|
/* Define to empty if `const' does not conform to ANSI C. */
|
|
#undef const
|
|
|
|
/* Define to `int' if <sys/types.h> doesn't define. */
|
|
#undef gid_t
|
|
|
|
/* Define to rpl_malloc if the replacement function should be used. */
|
|
#undef malloc
|
|
|
|
/* Define to `int' if <sys/types.h> does not define. */
|
|
#undef pid_t
|
|
|
|
/* Define to `unsigned' if <sys/types.h> does not define. */
|
|
#undef size_t
|
|
|
|
/* Define to `int' if <sys/types.h> doesn't define. */
|
|
#undef uid_t
|
|
|
|
/* Define as `fork' if `vfork' does not work. */
|
|
#undef vfork
|