函数逻辑报告 |
Source Code:kernel\auditsc.c |
Create Date:2022-07-27 12:29:39 |
| Last Modify:2020-03-17 16:31:21 | Copyright©Brick |
| 首页 | 函数Tree |
| 注解内核,赢得工具 | 下载SCCT | English |
函数名称:audit_match_perm
函数原型:static int audit_match_perm(struct audit_context *ctx, int mask)
返回类型:int
参数:
| 类型 | 参数 | 名称 |
|---|---|---|
| struct audit_context * | ctx | |
| int | mask |
| 136 | 如果此条件成立可能性小(为编译器优化)(!ctx)则返回:0 |
| 141 | 当:audit_classify_syscall(arch, n)恒等于0 |
| 142 | 如果mask按位与AUDIT_PERM_WRITE且audit_match_class(AUDIT_CLASS_WRITE, n)则返回:1 |
| 145 | 如果mask按位与AUDIT_PERM_READ且audit_match_class(AUDIT_CLASS_READ, n)则返回:1 |
| 148 | 如果mask按位与AUDIT_PERM_ATTR且audit_match_class(AUDIT_CLASS_CHATTR, n)则返回:1 |
| 151 | 返回:0 |
| 152 | 当:audit_classify_syscall(arch, n)恒等于1 |
| 153 | 如果mask按位与AUDIT_PERM_WRITE且audit_match_class(AUDIT_CLASS_WRITE_32, n)则返回:1 |
| 156 | 如果mask按位与AUDIT_PERM_READ且audit_match_class(AUDIT_CLASS_READ_32, n)则返回:1 |
| 159 | 如果mask按位与AUDIT_PERM_ATTR且audit_match_class(AUDIT_CLASS_CHATTR_32, n)则返回:1 |
| 162 | 返回:0 |
| 163 | 当:audit_classify_syscall(arch, n)恒等于2 |
| 165 | 当:audit_classify_syscall(arch, n)恒等于3 |
| 167 | 当:audit_classify_syscall(arch, n)恒等于4 |
| 168 | 返回:mask按位与AUDIT_PERM_WRITE且调用参数[0]恒等于sys_bind(2) |
| 169 | 当:audit_classify_syscall(arch, n)恒等于5 |
| 170 | 返回:mask按位与AUDIT_PERM_EXEC |
| 171 | 默认 |
| 172 | 返回:0 |
| 名称 | 描述 |
|---|---|
| audit_filter_rules | Compare a task_struct with an audit_rule. Return 1 on match, 0* otherwise.* If task_creation is true, this is an explicit indication that we are* filtering a task rule at task creation time. This and tsk == current are |
| 源代码转换工具 开放的插件接口 | X |
|---|---|
| 支持:c/c++/esqlc/java Oracle/Informix/Mysql 插件可实现:逻辑报告 代码生成和批量转换代码 |