File: perms.h

package info (click to toggle)
apparmor 4.1.0-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid, trixie
  • size: 34,800 kB
  • sloc: ansic: 24,940; python: 24,595; sh: 12,524; cpp: 9,024; yacc: 2,061; makefile: 1,921; lex: 1,215; pascal: 1,145; perl: 1,033; ruby: 365; lisp: 282; exp: 250; java: 212; xml: 159
file content (153 lines) | stat: -rw-r--r-- 4,363 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
 
/*
 *   Copyright (c) 2022
 *   Canonical, Ltd. (All rights reserved)
 *
 *   This program is free software; you can redistribute it and/or
 *   modify it under the terms of version 2 of the GNU General Public
 *   License published by the Free Software Foundation.
 *
 *   This program is distributed in the hope that it will be useful,
 *   but WITHOUT ANY WARRANTY; without even the implied warranty of
 *   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 *   GNU General Public License for more details.
 *
 *   You should have received a copy of the GNU General Public License
 *   along with this program; if not, contact Novell, Inc. or Canonical
 *   Ltd.
 */
#ifndef __AA_PERM_H
#define __AA_PERM_H

/* this represents permissions as used as part of the state machine in
 * the kernel.
 * It is possible this will get further mapped for compatibility with
 * older versions
 */

#include <ostream>
#include <iostream>
using std::ostream;
using std::cerr;

#include <stdint.h>
#include <sys/apparmor.h>

/* same as in immunix.h - make it so they can both be included or used alone */
#ifndef AA_MAY_EXEC
#define AA_MAY_EXEC		1
#define AA_MAY_WRITE		2
#define AA_MAY_READ		4
#define AA_MAY_APPEND		8
#endif

#ifndef AA_MAY_CREATE
// these are in apparmor.h
#define AA_MAY_CREATE		0x0010
#define AA_MAY_DELETE		0x0020
#define AA_MAY_OPEN		0x0040
#define AA_MAY_RENAME		0x0080		/* pair */

#define AA_MAY_SETATTR		0x0100		/* meta write */
#define AA_MAY_GETATTR		0x0200		/* meta read */
#define AA_MAY_SETCRED		0x0400		/* security cred/attr */
#define AA_MAY_GETCRED		0x0800

#define AA_MAY_CHMOD		0x1000		/* pair */
#define AA_MAY_CHOWN		0x2000		/* pair */
#endif
#define AA_MAY_CHGRP		0x4000		/* pair */
#ifndef AA_MAY_CREATE
#define AA_MAY_LOCK		0x8000		/* LINK_SUBSET overlaid */

#define AA_EXEC_MMAP		0x00010000
#endif
#define AA_MAY_MPROT		0x00020000	/* extend conditions */
#ifndef AA_MAY_CREATE
#define AA_MAY_LINK		0x00040000	/* pair */
#endif
#define AA_MAY_SNAPSHOT		0x00080000	/* pair */

#define AA_MAY_DELEGATE
#define AA_CONT_MATCH		0x08000000

// TODO: move into a reworked immunix.h that is dependent on perms.h
#define AA_COMPAT_CONT_MATCH	(AA_CONT_MATCH << 1)

#define AA_MAY_STACK		0x10000000
#define AA_MAY_ONEXEC		0x20000000 /* either stack or change_profile */
#define AA_MAY_CHANGE_PROFILE	0x40000000
#define AA_MAY_CHANGEHAT	0x80000000

#define AA_LINK_SUBSET		AA_MAY_LOCK	/* overlaid */


/*
 * The xindex is broken into 3 parts
 * - index - an index into either the exec name table or the variable table
 * - exec type - which determines how the executable name and index are used
 * - flags - which modify how the destination name is applied
 */
#define AA_X_INDEX_MASK		0xffffff

#define AA_X_TYPE_MASK		0x0c000000
#define AA_X_NONE		AA_INDEX_NONE
#define AA_X_NAME		0x04000000 /* use executable name px */
#define AA_X_TABLE		0x08000000 /* use a specified name ->n# */

#define AA_X_UNSAFE		0x10000000
#define AA_X_CHILD		0x20000000
#define AA_X_INHERIT		0x40000000
#define AA_X_UNCONFINED		0x80000000

typedef uint32_t perm32_t;

class aa_perms {
public:
	perm32_t allow;
	perm32_t deny;	/* explicit deny, or conflict if allow also set */

	perm32_t subtree;	/* allow perm on full subtree only when allow is set */
	perm32_t cond;	/* set only when ~allow and ~deny */

	perm32_t kill;	/* set only when ~allow | deny */
	perm32_t complain;	/* accumulates only used when ~allow & ~deny */
	perm32_t prompt;	/* accumulates only used when ~allow & ~deny */

	perm32_t audit;	/* set only when allow is set */
	perm32_t quiet;	/* set only when ~allow | deny */
	perm32_t hide;	/* set only when  ~allow | deny */


	uint32_t xindex;
	uint32_t tag;	/* tag string index, if present */
	uint32_t label;	/* label string index, if present */

	void dump_header(ostream &os)
	{
		os << "(allow/deny/prompt//audit/quiet//xindex)\n";
	}

	void dump(ostream &os)
	{
		os << std::hex << "(0x" << allow << "/0x" << deny << "/0x"
		   << prompt << "//0x" << audit << "/0x" << quiet
		   << std::dec << "//";
		if (xindex & AA_X_UNSAFE)
			os << "unsafe ";
		if (xindex & AA_X_TYPE_MASK) {
			if (xindex & AA_X_CHILD)
				os << "c";
			else
				os << "p";
		}
		if (xindex & AA_X_INHERIT)
			os << "i";
		if (xindex & AA_X_UNCONFINED)
			os << "u";
		os << (xindex & AA_X_INDEX_MASK);
		os << ")";
	}

};

#endif /* __AA_PERM_H */