Home
last modified time | relevance | path

Searched refs:audit (Results 1 – 25 of 28) sorted by relevance

12

/systemd-251/src/core/
Dselinux-access.c47 const struct audit_info *audit = auditdata; in audit_callback() local
54 if (sd_bus_creds_get_audit_login_uid(audit->creds, &login_uid) >= 0) in audit_callback()
56 if (sd_bus_creds_get_euid(audit->creds, &uid) >= 0) in audit_callback()
58 if (sd_bus_creds_get_egid(audit->creds, &gid) >= 0) in audit_callback()
64audit->path ? " path=\"" : "", strempty(audit->path), audit->path ? "\"" : "", in audit_callback()
65audit->cmdline ? " cmdline=\"" : "", strempty(audit->cmdline), audit->cmdline ? "\"" : "", in audit_callback()
66audit->function ? " function=\"" : "", strempty(audit->function), audit->function ? "\"" : ""); in audit_callback()
Dmeson.build6 audit-fd.c
7 audit-fd.h
/systemd-251/src/fundamental/
Defivars-fundamental.c21 sd_bool audit, in decode_secure_boot_mode() argument
26 if (secure && deployed && !audit && !setup) in decode_secure_boot_mode()
28 if (secure && !deployed && !audit && !setup) in decode_secure_boot_mode()
30 if (!secure && !deployed && audit && setup) in decode_secure_boot_mode()
32 if (!secure && !deployed && !audit && setup) in decode_secure_boot_mode()
37 if (!secure && !deployed && !audit && !setup) in decode_secure_boot_mode()
Defivars-fundamental.h35 sd_bool audit,
/systemd-251/src/boot/efi/
Dsecure-boot.c17 BOOLEAN secure, audit = FALSE, deployed = FALSE, setup = FALSE; in secure_boot_mode() local
26 (void) efivar_get_boolean_u8(EFI_GLOBAL_GUID, L"AuditMode", &audit); in secure_boot_mode()
30 return decode_secure_boot_mode(secure, audit, deployed, setup); in secure_boot_mode()
/systemd-251/src/journal/
Dmeson.build4 'journald-audit.c',
5 'journald-audit.h',
117 [files('fuzz-journald-audit.c',
/systemd-251/units/
Dsystemd-journald-audit.socket15 ConditionSecurity=audit
21 ListenNetlink=audit 1
Dsystemd-journald.service.in15 After=systemd-journald.socket systemd-journald-dev-log.socket systemd-journald-audit.socket syslog.…
36 Sockets=systemd-journald.socket systemd-journald-dev-log.socket systemd-journald-audit.socket
Dmeson.build127 ['systemd-journald-audit.socket', '',
/systemd-251/src/basic/
Defivars.c344 int audit = read_flag(EFI_GLOBAL_VARIABLE(AuditMode)); in efi_get_secure_boot_mode() local
348 secure, audit, deployed, setup); in efi_get_secure_boot_mode()
350 return (cache = decode_secure_boot_mode(secure, audit > 0, deployed > 0, setup > 0)); in efi_get_secure_boot_mode()
Dmeson.build16 'audit-util.c',
17 'audit-util.h',
/systemd-251/src/libsystemd/
Dmeson.build4 'sd-journal/audit-type.c',
5 'sd-journal/audit-type.h',
36 'linux/audit.h']
209 [files('sd-journal/test-audit-type.c')],
/systemd-251/test/fuzz/fuzz-journald-audit/
Dbasic1 audit(1542398162.211:744): pid=7376 uid=1000 auid=1000 ses=6 subj=unconfined_u:unconfined_r:unconfi…
Dcrash1 audit(1542398162.211:744) pid=7376 uid=1000 auid=1000 ses=6 subj=unconfined_u:unconfined_r:unconfin…
/systemd-251/mkosi.default.d/fedora/
D10-mkosi.fedora27 pkgconfig(audit)
/systemd-251/test/
Dmkosi.default.networkd-test26 audit-libs-devel
/systemd-251/mkosi.default.d/centos_epel/
D10-mkosi.centos_epel32 pkgconfig(audit)
/systemd-251/src/shared/
Dlogs-show.c218 bool audit, in print_multiline() argument
231 if (audit && strempty(color_on)) { in print_multiline()
447 bool ellipsized = false, audit; in output_short() local
500 audit = streq_ptr(transport, "audit"); in output_short()
618 print_multiline(f, n + 2, n_columns, flags, p, audit, in output_short()
/systemd-251/docs/
DCONTAINER_INTERFACE.md340 namespaces. The kernel's audit subsystem is still not virtualized for
342 actual attempt to make use of the audit subsystem will fail. Note that
343 systemd's audit support is partially conditioned on these capabilities, thus
346 systemd will assume that audit is available and works, and some components
348 native support for container-virtualized audit, adding the capability to the
DJOURNAL_NATIVE_PROTOCOL.md15 * Audit records via the kernel's audit subsystem
DROOT_STORAGE_DAEMONS.md168 not-so-obvious such as security contexts or audit trails) from its parent
DENVIRONMENT.md109 for example in `systemd-nspawn`, will be logged to the audit log, if the
/systemd-251/
DREADME165 line option "audit=0", or turn it off at kernel compile time using:
171 with audit being enabled. This works correctly only on kernels 3.14 and
172 newer though. TL;DR: turn audit off, still.
Dmeson_options.txt358 option('audit', type : 'combo', choices : ['auto', 'true', 'false'], combo
/systemd-251/man/rules/
Dmeson.build932 'systemd-journald-audit.socket',

12