diff options
Diffstat (limited to 'contrib/openbsm')
-rw-r--r-- | contrib/openbsm/CHANGELOG | 97 | ||||
-rw-r--r-- | contrib/openbsm/FREEBSD-upgrade | 44 | ||||
-rw-r--r-- | contrib/openbsm/Makefile | 9 | ||||
-rw-r--r-- | contrib/openbsm/bin/Makefile | 10 | ||||
-rw-r--r-- | contrib/openbsm/bin/audit/Makefile | 12 | ||||
-rw-r--r-- | contrib/openbsm/bin/auditd/Makefile | 13 | ||||
-rw-r--r-- | contrib/openbsm/bin/auditreduce/Makefile | 12 | ||||
-rw-r--r-- | contrib/openbsm/bin/praudit/Makefile | 12 | ||||
-rw-r--r-- | contrib/openbsm/bsm/Makefile | 22 | ||||
-rw-r--r-- | contrib/openbsm/config/config.h | 189 | ||||
-rw-r--r-- | contrib/openbsm/etc/audit_class | 1 | ||||
-rw-r--r-- | contrib/openbsm/etc/audit_control | 1 | ||||
-rw-r--r-- | contrib/openbsm/etc/audit_event | 46 | ||||
-rw-r--r-- | contrib/openbsm/etc/audit_user | 1 | ||||
-rw-r--r-- | contrib/openbsm/etc/audit_warn | 1 | ||||
-rw-r--r-- | contrib/openbsm/libbsm/Makefile | 125 | ||||
-rw-r--r-- | contrib/openbsm/man/Makefile | 22 | ||||
-rw-r--r-- | contrib/openbsm/tools/Makefile | 13 |
18 files changed, 239 insertions, 391 deletions
diff --git a/contrib/openbsm/CHANGELOG b/contrib/openbsm/CHANGELOG deleted file mode 100644 index 9856109..0000000 --- a/contrib/openbsm/CHANGELOG +++ /dev/null @@ -1,97 +0,0 @@ -OpenBSM 1.0 alpha 4 - -- Remove "audit" user example from audit_user, as it's not present on most - systems. -- Add cannot_audit() function non-Darwin systems that wraps auditon(); - required by OpenSSH BSM support. Convert Darwin cannot_audit() into a - function rather than a macro. -- Library build fixed on Darwin following include file tweaks. The native - Darwin sys/audit.h conflicts with bsm/audit.h due to duplicate types, so - for now we force bsm_wrappers.c to not perform a nested include of - sys/audit.h. - -OpenBSM 1.0 alpha 3 - -- Man page formatting, cross reference, mlinks, and accuracy improvements. -- auditd and tools now compile and run on FreeBSD/arm. -- auditd will now fchown() the trail file to the audit review group, if - defined at compile-time. -- Added AUE_SYSARCH for FreeBSD. -- Definition of AUE_SETFSGID fixed for Linux. - -OpenBSM 1.0 alpha 2 - -- Man page formatting improvements. -- A number of new audit event identifiers for FreeBSD, Linux, and POSIX.1b - events. -- Remove 'tfm' class, unused in OpenBSM. - -OpenBSM 1.0 alpha 1 - -- Import of Darwin74 BSM drop -- Use 'syslog' for audit log warnings, rather than echoing to a file in - audit_warn. -- Compile using BSD make infrastructure. -- Integrate bsm/ include files from Darwin74 XNU drop into OpenBSM. -- Narrow set of symbols and defines that are exposed in user space: don't - compile in code relying on kernel-only types such as 'struct socket'. -- Add README, including basic build documentation. -- Compilation of Apple-specific notify and Machroutines now #ifdef __APPLE__. -- Staticize libbsm global variables to avoid leakage into application. -- Add free_au_user_ent() so that au_user_ent's don't have to be leaked. -- Clean up bogus nul-termination checks in libbsm. -- Add libbsm API man pages: au_class.3 au_control.3 au_event.3 - au_free_token.3 au_io.3 au_mask.3 au_token.3 au_user.3 libbsm.3. -- Add man pages for BSM system calls: audit.2 auditctl.2 auditon.2 getaudit.2 - getauid.2 setaudit.2 setauid.2 -- Modify various libbsm interfaces to more consistently return 'errno' values - on failure. -- Break out au_close() into constituent parts, allowing records to be written - to memory as well as files. -- Prefix various defines with 'BSM_' to reduce name space pollution. -- Added audit_internal.h, which can be used by a kernel audit implementation - wanting to rely on libbsm components. -- Build with warnings, and eliminate warnings. -- Make libbsm endian-independent, storing and reading BSM are big endian - (network byte order) rather than native byte order. More consistently - print IP addresses using the IP address print routine. These changes - make use of sys/endian.h from *BSD; since this isn't present on Darwin, - add it to OpenBSM as compat/endian.h, which is used only on Darwin. -- Import of Darwin80 BSM drop, including 64-bit file IDs, better - documentation of private APIs, and bug fixes. -- White space cleanup. -- Add audit.log.5, a first cut at a man page documenting the BSM file format. -- Teach au_read_rec() to recognize stand-alone file tokens, which are present - at the beginning and end of Solaris audit trails. Technically, these - appear to violate the high level BSM spec, which suggests that all tokens - are present in records, but need to be supported. -- Implement HEADER64, ATTR64, SUBJECT64 token types, which make it possible - to run praudit(1) on basic Solaris BSM streams. -- Switched to Solaris spelling of token names; Darwin spellings are now - deprecated and will be removed in a future version of OpenBSM. -- Adopt Solaris model for representing IPv4 and IPv6 addresses. -- Prefer C99 types. -- Attempt to universally adopt the BSD style(9) coding style for - consistency. -- auditreduce(1) now has a usage message. -- Update support for auditctl(2) system call to support FreeBSD. -- Add support for /dev/audit as the trigger source on FreeBSD. -- Add additional event types for Darwin, FreeBSD, and Solaris. Annotate - conflicts (there are a few, unfortunately). Correct spellings, comment, - sort, etc. These include {get,set}res[ug]id(), sendfile(), lchflags(), - eaccess(), kqueue(), kevent(), poll(), lchmod(). -- Relicensed under a BSD license, many thanks to Apple, Inc! -- Many bug fixes, cleanups, thread safety in the class, control, event, - and user system audit databases. Annotate some persisting atomicity - bugs associated with the API and implementation. -- Add audump test tool. -- Adopt OpenSolaris BSM API memory semantics: caller allocates memory, - or static memory is returned for non-_r() versions of API calls. - _free() calls dropped as a result, and source code compatibility with - OpenSolaris improved significantly. -- Annotate BSM events with origin OS and compatibility information. -- auditd(8), audit(8) added to the OpenBSM distribution. auditd extended - to support reloading of kernel event table. -- Allow comments in /etc/security configuration files. - -$P4: //depot/projects/trustedbsd/openbsm/CHANGELOG#12 $ diff --git a/contrib/openbsm/FREEBSD-upgrade b/contrib/openbsm/FREEBSD-upgrade new file mode 100644 index 0000000..1f5f059 --- /dev/null +++ b/contrib/openbsm/FREEBSD-upgrade @@ -0,0 +1,44 @@ +Upgrade Instructions for OpenBSM +-------------------------------- + +OpenBSM integrates into the FreeBSD source tree in several places: + +src/contrib/openbsm The OpenBSM distribution itself +src/sys/bsm Modified versions of some bsm/ include files +src/sys/security/audit Kernel audit framework, some OpenBSM-based files +src/usr.sbin/*audit* Makefiles for various OpenBSM tools +src/etc/Makefile Installation of /etc OpenBSM files +src/lib/libbsm/* Build for OpenBSM library + +OpenBSM is normally built using an integrated autoconf/automake build +system. For the purposes of tight integration with FreeBSD, we use an +adapted BSD make (bmake) build system loosely based on the automake +setup. We also rely on a static config.h generated when OpenBSM is +imported, rather than re-configuring every build. This leads to a +more reproduceable build environment, and avoids dependence on things +not in the base tree (i.e., autoconf, automake, GNU make, etc). An +upgrade of OpenBSM generally involves the following steps: + +- Vendor import of OpenBSM into src/contrib. +- Run configure, commit src/contrib/openbsm/config/config.h. +- Replication of src/contrib/openbsm/bsm changes into src/sys/bsm. +- Possible updates to src/sys/security/audit, especially relating to + bsm_token.c. +- Update any library, tool, or etc BSD Makefiles to add new files, + defines, or other generally useful or necessary things. + +Normally, the CVS vendor import goes along the following lines: + + cd ~/p4/projects/trustedbsd/openbsm + cvs -n -d rwatson@repoman.FreeBSD.org:/home/ncvs -q import \ + src/contrib/openbsm TrustedBSD OPENBSM_1_0_ALPHA_1 + +Replacing the version string as required. Remove the "-n" argument once +the import is tested in order to perform the actual import. + +Propagation of changes to src/sys/{bsm,security/audit} is something that +requires careful coordination and attention to detail. These files are +not on CVS vendor branches, but do have the same local vs. vendor merge +issues. + +$FreeBSD$ diff --git a/contrib/openbsm/Makefile b/contrib/openbsm/Makefile deleted file mode 100644 index b480723..0000000 --- a/contrib/openbsm/Makefile +++ /dev/null @@ -1,9 +0,0 @@ -# -# $P4: //depot/projects/trustedbsd/openbsm/Makefile#2 $ -# - -SUBDIR= bsm \ - libbsm \ - bin - -.include <bsd.subdir.mk> diff --git a/contrib/openbsm/bin/Makefile b/contrib/openbsm/bin/Makefile deleted file mode 100644 index 3bc4a6c..0000000 --- a/contrib/openbsm/bin/Makefile +++ /dev/null @@ -1,10 +0,0 @@ -# -# $P4: //depot/projects/trustedbsd/openbsm/bin/Makefile#4 $ -# - -SUBDIR= audit \ - auditd \ - auditreduce \ - praudit - -.include <bsd.subdir.mk> diff --git a/contrib/openbsm/bin/audit/Makefile b/contrib/openbsm/bin/audit/Makefile deleted file mode 100644 index cec37ea..0000000 --- a/contrib/openbsm/bin/audit/Makefile +++ /dev/null @@ -1,12 +0,0 @@ -# -# $P4: //depot/projects/trustedbsd/openbsm/bin/audit/Makefile#2 $ -# - -CFLAGS+= -I- -I ../.. -I ../../libbsm -L ../../libbsm -I. -PROG= audit -MAN= audit.8 -DPADD= /usr/lib/libbsm.a -LDADD= -lbsm -BINDIR= /usr/sbin - -.include <bsd.prog.mk> diff --git a/contrib/openbsm/bin/auditd/Makefile b/contrib/openbsm/bin/auditd/Makefile deleted file mode 100644 index fbbdc47..0000000 --- a/contrib/openbsm/bin/auditd/Makefile +++ /dev/null @@ -1,13 +0,0 @@ -# -# $P4: //depot/projects/trustedbsd/openbsm/bin/auditd/Makefile#2 $ -# - -CFLAGS+= -I- -I ../.. -I ../../libbsm -L ../../libbsm -I. -PROG= auditd -SRCS= audit_warn.c auditd.c -MAN= auditd.8 -DPADD= /usr/lib/libbsm.a -LDADD= -lbsm -BINDIR= /usr/sbin - -.include <bsd.prog.mk> diff --git a/contrib/openbsm/bin/auditreduce/Makefile b/contrib/openbsm/bin/auditreduce/Makefile deleted file mode 100644 index f4c292a..0000000 --- a/contrib/openbsm/bin/auditreduce/Makefile +++ /dev/null @@ -1,12 +0,0 @@ -# -# $P4: //depot/projects/trustedbsd/openbsm/bin/auditreduce/Makefile#4 $ -# - -CFLAGS+= -I- -I ../.. -I ../../libbsm -L ../../libbsm -I. -PROG= auditreduce -MAN= auditreduce.1 -DPADD= /usr/lib/libbsm.a -LDADD= -lbsm -BINDIR= /usr/sbin - -.include <bsd.prog.mk> diff --git a/contrib/openbsm/bin/praudit/Makefile b/contrib/openbsm/bin/praudit/Makefile deleted file mode 100644 index 34e136b..0000000 --- a/contrib/openbsm/bin/praudit/Makefile +++ /dev/null @@ -1,12 +0,0 @@ -# -# $P4: //depot/projects/trustedbsd/openbsm/bin/praudit/Makefile#4 $ -# - -CFLAGS+= -I- -I ../.. -I ../../libbsm -L ../../libbsm -I. -PROG= praudit -MAN= praudit.1 -DPADD= /usr/lib/libbsm.a -LDADD= -lbsm -BINDIR= /usr/sbin - -.include <bsd.prog.mk> diff --git a/contrib/openbsm/bsm/Makefile b/contrib/openbsm/bsm/Makefile deleted file mode 100644 index ba63701..0000000 --- a/contrib/openbsm/bsm/Makefile +++ /dev/null @@ -1,22 +0,0 @@ -# -# $P4: //depot/projects/trustedbsd/openbsm/bsm/Makefile#7 $ -# - -INCS= audit.h \ - audit_internal.h \ - audit_kevents.h \ - audit_record.h \ - audit_uevents.h \ - libbsm.h - -TARGET= ${DESTDIR}/usr/include/bsm - -all: -default: -depend: -clean: - -install: - mkdir -p -m 0755 ${TARGET} - install -o root -g wheel -m 0644 ${INCS} ${TARGET} - diff --git a/contrib/openbsm/config/config.h b/contrib/openbsm/config/config.h new file mode 100644 index 0000000..2503155 --- /dev/null +++ b/contrib/openbsm/config/config.h @@ -0,0 +1,189 @@ +/* config/config.h. Generated by configure. */ +/* config/config.h.in. Generated from configure.ac by autoheader. */ +/* $FreeBSD$ + +/* Define to 1 if you have the `alarm' function. */ +#define HAVE_ALARM 1 + +/* Define if audit system calls present */ +#define HAVE_AUDIT_SYSCALLS + +/* Define to 1 if you have the `bzero' function. */ +#define HAVE_BZERO 1 + +/* Define to 1 if your system has a working `chown' function. */ +#define HAVE_CHOWN 1 + +/* Define to 1 if you have the <dlfcn.h> header file. */ +#define HAVE_DLFCN_H 1 + +/* Define to 1 if you have the <endian.h> header file. */ +/* #undef HAVE_ENDIAN_H */ + +/* Define to 1 if you have the `fork' function. */ +#define HAVE_FORK 1 + +/* Define to 1 if you have the `ftruncate' function. */ +#define HAVE_FTRUNCATE 1 + +/* Define if queue.h includes LIST_FIRST */ +#define HAVE_FULL_QUEUE_H + +/* Define to 1 if you have the `gettimeofday' function. */ +#define HAVE_GETTIMEOFDAY 1 + +/* Define to 1 if you have the `inet_ntoa' function. */ +#define HAVE_INET_NTOA 1 + +/* Define to 1 if you have the <inttypes.h> header file. */ +#define HAVE_INTTYPES_H 1 + +/* Define if ipc_perm.__key instead of key */ +/* #undef HAVE_IPC_PERM___KEY */ + +/* Define if ipc_perm.__seq instead of seq */ +/* #undef HAVE_IPC_PERM___SEQ */ + +/* Define to 1 if you have the <machine/endian.h> header file. */ +#define HAVE_MACHINE_ENDIAN_H 1 + +/* Define to 1 if you have the <mach/mach.h> header file. */ +/* #undef HAVE_MACH_MACH_H */ + +/* Define to 1 if your system has a GNU libc compatible `malloc' function, and + to 0 otherwise. */ +#define HAVE_MALLOC 1 + +/* Define to 1 if you have the <memory.h> header file. */ +#define HAVE_MEMORY_H 1 + +/* Define to 1 if you have the `memset' function. */ +#define HAVE_MEMSET 1 + +/* Define to 1 if `stat' has the bug that it succeeds when given the + zero-length file name argument. */ +/* #undef HAVE_STAT_EMPTY_STRING_BUG */ + +/* Define to 1 if you have the <stdint.h> header file. */ +#define HAVE_STDINT_H 1 + +/* Define to 1 if you have the <stdlib.h> header file. */ +#define HAVE_STDLIB_H 1 + +/* Define to 1 if you have the `strchr' function. */ +#define HAVE_STRCHR 1 + +/* Define to 1 if you have the `strerror' function. */ +#define HAVE_STRERROR 1 + +/* Define to 1 if you have the `strftime' function. */ +#define HAVE_STRFTIME 1 + +/* Define to 1 if you have the <strings.h> header file. */ +#define HAVE_STRINGS_H 1 + +/* Define to 1 if you have the <string.h> header file. */ +#define HAVE_STRING_H 1 + +/* Define to 1 if you have the `strrchr' function. */ +#define HAVE_STRRCHR 1 + +/* Define to 1 if you have the `strstr' function. */ +#define HAVE_STRSTR 1 + +/* Define to 1 if you have the `strtol' function. */ +#define HAVE_STRTOL 1 + +/* Define to 1 if you have the `strtoul' function. */ +#define HAVE_STRTOUL 1 + +/* Define to 1 if `st_rdev' is member of `struct stat'. */ +#define HAVE_STRUCT_STAT_ST_RDEV 1 + +/* Define to 1 if you have the <sys/endian.h> header file. */ +#define HAVE_SYS_ENDIAN_H 1 + +/* Define to 1 if you have the <sys/stat.h> header file. */ +#define HAVE_SYS_STAT_H 1 + +/* Define to 1 if you have the <sys/time.h> header file. */ +#define HAVE_SYS_TIME_H 1 + +/* Define to 1 if you have the <sys/types.h> header file. */ +#define HAVE_SYS_TYPES_H 1 + +/* Define to 1 if you have <sys/wait.h> that is POSIX.1 compatible. */ +#define HAVE_SYS_WAIT_H 1 + +/* Define to 1 if you have the <unistd.h> header file. */ +#define HAVE_UNISTD_H 1 + +/* Define to 1 if you have the `vfork' function. */ +#define HAVE_VFORK 1 + +/* Define to 1 if you have the <vfork.h> header file. */ +/* #undef HAVE_VFORK_H */ + +/* Define to 1 if `fork' works. */ +#define HAVE_WORKING_FORK 1 + +/* Define to 1 if `vfork' works. */ +#define HAVE_WORKING_VFORK 1 + +/* Define to 1 if `lstat' dereferences a symlink specified with a trailing + slash. */ +/* #undef LSTAT_FOLLOWS_SLASHED_SYMLINK */ + +/* Name of package */ +#define PACKAGE "OpenBSM" + +/* Define to the address where bug reports for this package should be sent. */ +#define PACKAGE_BUGREPORT "trustedbsd-audit@TrustesdBSD.org" + +/* Define to the full name of this package. */ +#define PACKAGE_NAME "OpenBSM" + +/* Define to the full name and version of this package. */ +#define PACKAGE_STRING "OpenBSM 1.0a6" + +/* Define to the one symbol short name of this package. */ +#define PACKAGE_TARNAME "openbsm" + +/* Define to the version of this package. */ +#define PACKAGE_VERSION "1.0a6" + +/* Define as the return type of signal handlers (`int' or `void'). */ +#define RETSIGTYPE void + +/* Define to 1 if you have the ANSI C header files. */ +#define STDC_HEADERS 1 + +/* Define to 1 if you can safely include both <sys/time.h> and <time.h>. */ +#define TIME_WITH_SYS_TIME 1 + +/* Define to 1 if your <sys/time.h> declares `struct tm'. */ +/* #undef TM_IN_SYS_TIME */ + +/* Version number of package */ +#define VERSION "1.0a6" + +/* Define to empty if `const' does not conform to ANSI C. */ +/* #undef const */ + +/* Define to `int' if <sys/types.h> doesn't define. */ +/* #undef gid_t */ + +/* Define to rpl_malloc if the replacement function should be used. */ +/* #undef malloc */ + +/* Define to `int' if <sys/types.h> does not define. */ +/* #undef pid_t */ + +/* Define to `unsigned' if <sys/types.h> does not define. */ +/* #undef size_t */ + +/* Define to `int' if <sys/types.h> doesn't define. */ +/* #undef uid_t */ + +/* Define as `fork' if `vfork' does not work. */ +/* #undef vfork */ diff --git a/contrib/openbsm/etc/audit_class b/contrib/openbsm/etc/audit_class index 3a7da08..f65ae41 100644 --- a/contrib/openbsm/etc/audit_class +++ b/contrib/openbsm/etc/audit_class @@ -1,5 +1,6 @@ # # $P4: //depot/projects/trustedbsd/openbsm/etc/audit_class#4 $ +# $FreeBSD$ # # This file must match audit.h # diff --git a/contrib/openbsm/etc/audit_control b/contrib/openbsm/etc/audit_control index fb1ce1a..7e60cbc 100644 --- a/contrib/openbsm/etc/audit_control +++ b/contrib/openbsm/etc/audit_control @@ -1,5 +1,6 @@ # # $P4: //depot/projects/trustedbsd/openbsm/etc/audit_control#3 $ +# $FreeBSD$ # dir:/var/audit flags:lo diff --git a/contrib/openbsm/etc/audit_event b/contrib/openbsm/etc/audit_event index ae5021a..2731c1d 100644 --- a/contrib/openbsm/etc/audit_event +++ b/contrib/openbsm/etc/audit_event @@ -1,5 +1,6 @@ # -# $P4: //depot/projects/trustedbsd/openbsm/etc/audit_event#11 $ +# $P4: //depot/projects/trustedbsd/openbsm/etc/audit_event#10 $ +# $FreeBSD$ # 0:AUE_NULL:indir system call:no 1:AUE_EXIT:exit(2):pc @@ -314,49 +315,6 @@ 378:AUE_KEVENT:kevent(2):no 379:AUE_FSYNC:fsync(2):fm 380:AUE_NMOUNT:nmount(2):ad -381:AUE_BDFLUSH:bdflush(2):ad -382:AUE_SETFSUID:setfsuid(2):ot -383:AUE_SETFSGID:setfsgid(2):ot -384:AUE_PERSONALITY:personality(2):pc -385:AUE_SCHED_GETSCHEDULER:getscheduler(2):ad -386:AUE_SCHED_SETSCHEDULER:setscheduler(2):ad -387:AUE_PRCTL:prctl(2):pc -388:AUE_GETCWD:getcwd(2):pc -389:AUE_CAPGET:capget(2):pc -390:AUE_CAPSET:capset(2):pc -391:AUE_PIVOT_ROOT:pivot_root(2):pc -392:AUE_RTPRIO::rtprio(2):pc -393:AUE_SCHED_GETPARAM:sched_getparam(2):ad -394:AUE_SCHED_SETPARAM:sched_setparam(2):ad -395:AUE_SCHED_GET_PRIORITY_MAX:sched_get_priority_max(2):ad -396:AUE_SCHED_GET_PRIORITY_MIN:sched_get_priority_min(2):ad -397:AUE_SCHED_RR_GET_INTERVAL:sched_rr_get_interval(2):ad -398:AUE_ACL_GET_FILE:acl_get_file(2):fa -399:AUE_ACL_SET_FILE:acl_set_file(2):fm -400:AUE_ACL_GET_FD:acl_get_fd(2):fa -401:AUE_ACL_SET_FD:acl_set_fd(2):fm -402:AUE_ACL_DELETE_FILE:acl_delete_file(2):fm -403:AUE_ACL_DELETE_FD:acl_delete_fd(2):fm -404:AUE_ACL_CHECK_FILE:acl_aclcheck_file(2):fa -405:AUE_ACL_CHECK_FD:acl_aclcheck_fd(2):fa -406:AUE_ACL_GET_LINK:acl_get_link(2):fa -407:AUE_ACL_SET_LINK:acl_set_link(2):fm -408:AUE_ACL_DELETE_LINK:acl_delete_link(2):fm -409:AUE_ACL_CHECK_LINK:acl_aclcheck_link(2):fa -410:AUE_SYSARCH:sysarch(2):na -411:AUE_EXTATTRCTL:extattrctl(2):fm -412:AUE_EXTATTR_GET_FILE:extattr_get_file(2):fa -413:AUE_EXTATTR_SET_FILE:extattr_set_file(2):fm -414:AUE_EXTATTR_LIST_FILE:extattr_list_file(2):fa -415:AUE_EXTATTR_DELETE_FILE:extattr_delete_file(2):fm -416:AUE_EXTATTR_GET_FD:extattr_get_fd(2):fa -417:AUE_EXTATTR_SET_FD:extattr_set_fd(2):fm -418:AUE_EXTATTR_LIST_FD:extattr_list_fd(2):fa -419:AUE_EXTATTR_DELETE_FD:extattr_delete_fd(2):fm -420:AUE_EXTATTR_GET_LINK:extattr_get_link(2):fa -421:AUE_EXTATTR_SET_LINK:extattr_set_link(2):fm -422:AUE_EXTATTR_LIST_LINK:extattr_list_link(2):fa -423:AUE_EXTATTR_DELETE_LINK:extattr_delete_link(2):fm 6152:AUE_login:login - local:lo 6153:AUE_logout:logout - local:lo 6159:AUE_su:su(1):lo diff --git a/contrib/openbsm/etc/audit_user b/contrib/openbsm/etc/audit_user index 7b92f06..0cce4f1 100644 --- a/contrib/openbsm/etc/audit_user +++ b/contrib/openbsm/etc/audit_user @@ -1,4 +1,5 @@ # # $P4: //depot/projects/trustedbsd/openbsm/etc/audit_user#3 $ +# $FreeBSD$ # root:lo:no diff --git a/contrib/openbsm/etc/audit_warn b/contrib/openbsm/etc/audit_warn index 3612fc9..c5a3159 100644 --- a/contrib/openbsm/etc/audit_warn +++ b/contrib/openbsm/etc/audit_warn @@ -1,5 +1,6 @@ #!/bin/sh # # $P4: //depot/projects/trustedbsd/openbsm/etc/audit_warn#3 $ +# $FreeBSD$ # logger -p security.warning "audit warning: $@" diff --git a/contrib/openbsm/libbsm/Makefile b/contrib/openbsm/libbsm/Makefile deleted file mode 100644 index 00534aa..0000000 --- a/contrib/openbsm/libbsm/Makefile +++ /dev/null @@ -1,125 +0,0 @@ -# -# OpenBSM libbsm -# -# $P4: //depot/projects/trustedbsd/openbsm/libbsm/Makefile#13 $ -# - -LIB= bsm -SHLIB_MAJOR= 1 - -CFLAGS+=-I- \ - -I .. \ - -Wall - -SRCS= bsm_audit.c \ - bsm_class.c \ - bsm_control.c \ - bsm_event.c \ - bsm_flags.c \ - bsm_io.c \ - bsm_mask.c \ - bsm_notify.c \ - bsm_token.c \ - bsm_user.c \ - bsm_wrappers.c - -MAN= libbsm.3 \ - au_class.3 \ - au_control.3 \ - au_event.3 \ - au_free_token.3 \ - au_io.3 \ - au_mask.3 \ - au_token.3 \ - au_user.3 - -MLINKS= libbsm.3 bsm.3 \ - au_class.3 getauclassent.3 \ - au_class.3 getauclassent_r.3 \ - au_class.3 getauclassnam.3 \ - au_class.3 getauclassnam_r.3 \ - au_class.3 setauclass.3 \ - au_class.3 endauclass.3 \ - au_control.3 setac.3 \ - au_control.3 endac.3 \ - au_control.3 getacdir.3 \ - au_control.3 getacmin.3 \ - au_control.3 getacflg.3 \ - au_control.3 getacna.3 \ - au_event.3 setauevent.3 \ - au_event.3 endauevent.3 \ - au_event.3 getauevent.3 \ - au_event.3 getauevent_r.3 \ - au_event.3 getauevnam.3 \ - au_event.3 getauevnam_r.3 \ - au_event.3 getauevnum.3 \ - au_event.3 getauevnum_r.3 \ - au_event.3 getauevnonam.3 \ - au_event.3 getauevnonam_r.3 \ - au_io.3 au_fetch_tok.3 \ - au_io.3 au_print_tok.3 \ - au_io.3 au_read_rec.3 \ - au_mask.3 au_preselect.3 \ - au_mask.3 getauditflagsbin.3 \ - au_mask.3 getauditflagschar.3 \ - au_user.3 setauuser.3 \ - au_user.3 endauuser.3 \ - au_user.3 getauuserent.3 \ - au_user.3 getauusernam.3 \ - au_user.3 au_user_mask.3 \ - au_user.3 getfauditflags.3 \ - au_token.3 au_to_arg32.3 \ - au_token.3 au_to_arg64.3 \ - au_token.3 au_to_arg.3 \ - au_token.3 au_to_attr64.3 \ - au_token.3 au_to_data.3 \ - au_token.3 au_to_exit.3 \ - au_token.3 au_to_groups.3 \ - au_token.3 au_to_newgroups.3 \ - au_token.3 au_to_in_addr.3 \ - au_token.3 au_to_in_addr_ex.3 \ - au_token.3 au_to_ip.3 \ - au_token.3 au_to_ipc.3 \ - au_token.3 au_to_ipc_perm.3 \ - au_token.3 au_to_iport.3 \ - au_token.3 au_to_opaque.3 \ - au_token.3 au_to_file.3 \ - au_token.3 au_to_text.3 \ - au_token.3 au_to_path.3 \ - au_token.3 au_to_process32.3 \ - au_token.3 au_to_process64.3 \ - au_token.3 au_to_process.3 \ - au_token.3 au_to_process32_ex.3 \ - au_token.3 au_to_process64_ex.3 \ - au_token.3 au_to_process_ex.3 \ - au_token.3 au_to_return32.3 \ - au_token.3 au_to_return64.3 \ - au_token.3 au_to_return.3 \ - au_token.3 au_to_seq.3 \ - au_token.3 au_to_socket.3 \ - au_token.3 au_to_socket_ex_32.3 \ - au_token.3 au_to_socket_ex_128.3 \ - au_token.3 au_to_sock_inet32.3 \ - au_token.3 au_to_sock_inet128.3 \ - au_token.3 au_to_sock_inet.3 \ - au_token.3 au_to_subject32.3 \ - au_token.3 au_to_subject64.3 \ - au_token.3 au_to_subject.3 \ - au_token.3 au_to_subject32_ex.3 \ - au_token.3 au_to_subject64_ex.3 \ - au_token.3 au_to_subject_ex.3 \ - au_token.3 au_to_me.3 \ - au_token.3 au_to_exec_args.3 \ - au_token.3 au_to_exec_env.3 \ - au_token.3 au_to_header.3 \ - au_token.3 au_to_header32.3 \ - au_token.3 au_to_header64.3 \ - au_token.3 au_to_trailer.3 - -beforeinstall: - if test -d ${INCSDIR}; then \ - else \ - mkdir ${INCSDIR}; \ - fi; - -.include <bsd.lib.mk> diff --git a/contrib/openbsm/man/Makefile b/contrib/openbsm/man/Makefile deleted file mode 100644 index 1fbbc31..0000000 --- a/contrib/openbsm/man/Makefile +++ /dev/null @@ -1,22 +0,0 @@ -# -# $P4: //depot/projects/trustedbsd/openbsm/man/Makefile#7 $ -# - -MAN= audit.2 \ - auditctl.2 \ - auditon.2 \ - getaudit.2 \ - getauid.2 \ - setaudit.2 \ - setauid.2 \ - audit.log.5 \ - audit_class.5 \ - audit_control.5 \ - audit_event.5 \ - audit_user.5 \ - audit_warn.5 - -MLINKS= getaudit.2 getaudit_addr.2 \ - setaudit.2 setaudit_addr.2 - -.include <bsd.prog.mk> diff --git a/contrib/openbsm/tools/Makefile b/contrib/openbsm/tools/Makefile deleted file mode 100644 index 79e582d..0000000 --- a/contrib/openbsm/tools/Makefile +++ /dev/null @@ -1,13 +0,0 @@ -# -# $P4: //depot/projects/trustedbsd/openbsm/tools/Makefile#3 $ -# - -CFLAGS+= -I- -I .. -I ../libbsm -L ../libbsm -I. -PROG= audump -NO_MAN= -DPADD= /usr/lib/libbsm.a -LDADD= -lbsm -BINDIR= /usr/sbin -WARNS= 3 - -.include <bsd.prog.mk> |