7029 want per-process exploit mitigation features (secflags) 7030 want basic address space layout randomization (aslr) 7031 noexec_user_stack should be a secflag 7032 want a means to forbid mappings around NULL.
1 () () 2 3 4 5 <?xml version="1.0" encoding="UTF-8" ?> 6 7 <!-- 8 Copyright 2010 Sun Microsystems, Inc. All rights reserved. 9 Use is subject to license terms. 10 11 CDDL HEADER START 12 13 The contents of this file are subject to the terms of the 14 Common Development and Distribution License (the "License"). 15 You may not use this file except in compliance with the License. 16 17 You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 18 or http://www.opensolaris.org/os/licensing. 19 See the License for the specific language governing permissions 20 and limitations under the License. 21 22 When distributing Covered Code, include this CDDL HEADER in each 23 file and include the License file at usr/src/OPENSOLARIS.LICENSE. 24 If applicable, add the following below this CDDL HEADER, with the 25 fields enclosed by brackets "[]" replaced with your own identifying 26 information: Portions Copyright [yyyy] [name of copyright owner] 27 28 CDDL HEADER END --> 29 30 <xsl:stylesheet xmlns:xsl="http://www.w3.org/1999/XSL/Transform" 31 version="1.0"> 32 33 <!-- set the output properties --> <xsl:output method="html"/> 34 35 <!-- root rule --> <xsl:template match="/"> <HTML> 36 <HEAD><TITLE>Audit Trail Data</TITLE></HEAD> 37 <BODY BGColor="#FFFFFF" Text="#000000"> 38 <CENTER> 39 <FONT FACE="Arial" SIZE="+1"> 40 <B>Audit Trail Data</B> 41 </FONT> 42 <BR/> 43 </CENTER> 44 <xsl:apply-templates/> 45 <HR/> 46 </BODY> </HTML> </xsl:template> 47 48 <!-- suppress non-selected nodes--> <xsl:template match="*"/> 49 50 <!-- main rule for document element --> <xsl:template match="audit"> 51 <HR/> <xsl:for-each select="record | file"> <xsl:if 52 test="(self::file)"> <BR/> <BR/> 53 <B>File: </B> <I>time: </I> <xsl:choose> 54 <xsl:when test="@time"> <xsl:value-of select="@time"/> 55 + <xsl:value-of select="@msec"/>msec </xsl:when> 56 <xsl:when test="@iso8601"> <xsl:value-of 57 select="@iso8601"/> </xsl:when> </xsl:choose> 58 <BR/> <xsl:value-of select="."/> </xsl:if> 59 <xsl:if test="(self::record)"> <BR/> <BR/> 60 <B>Event: </B> <B><xsl:value-of select="@event"/></B><BR/> 61 <I>time: </I> <xsl:choose> <xsl:when test="@time"> 62 <xsl:value-of select="@time"/> + <xsl:value-of 63 select="@msec"/>msec </xsl:when> 64 <xsl:when test="@iso8601"> <xsl:value-of 65 select="@iso8601"/> </xsl:when> </xsl:choose> 66 <I> vers: </I><xsl:value-of select="@version"/> <I> mod: 67 </I><xsl:value-of select="@modifier"/> <I> host: </I><xsl:value-of 68 select="@host"/> 69 <xsl:apply-templates/> </xsl:if> </xsl:for-each> 70 </xsl:template> 71 72 <!-- Start of handling for remaining tokens --> 73 74 <xsl:template match="text"> <BR/> <I>TEXT: </I> <xsl:value-of 75 select="."/> </xsl:template> 76 77 <xsl:template match="path"> <BR/> <I>PATH: </I> <xsl:value-of 78 select="."/> </xsl:template> 79 80 <xsl:template match="path_attr"> <BR/> <I>PATH_ATTR </I> <xsl:apply- 81 templates/> </xsl:template> 82 83 <xsl:template match="xattr"> <BR/> <I>xattr: </I> <xsl:value-of 84 select="."/> </xsl:template> 85 86 <xsl:template match="host"> <BR/> <I>HOST: </I> <xsl:value-of 87 select="."/> </xsl:template> 88 89 <xsl:template match="subject"> <BR/> <I>SUBJECT </I> <I> audit- 90 uid: </I><xsl:value-of select="@audit-uid"/> <I> uid: </I><xsl:value-of 91 select="@uid"/> <I> gid: </I><xsl:value-of select="@gid"/> <I> ruid: 92 </I><xsl:value-of select="@ruid"/> <I> rgid: </I><xsl:value-of 93 select="@rgid"/> <I> pid: </I><xsl:value-of select="@pid"/> <I> sid: 94 </I><xsl:value-of select="@sid"/> <I> tid: </I><xsl:value-of select="@tid"/> 95 </xsl:template> 96 97 <xsl:template match="process"> <BR/> <I>PROCESS </I> <I> audit- 98 uid: </I><xsl:value-of select="@audit-uid"/> <I> uid: </I><xsl:value-of 99 select="@uid"/> <I> gid: </I><xsl:value-of select="@gid"/> <I> ruid: 100 </I><xsl:value-of select="@ruid"/> <I> rgid: </I><xsl:value-of 101 select="@rgid"/> <I> pid: </I><xsl:value-of select="@pid"/> <I> sid: 102 </I><xsl:value-of select="@sid"/> <I> tid: </I><xsl:value-of select="@tid"/> 103 </xsl:template> 104 105 <xsl:template match="return"> <BR/> <I>RETURN </I> <I> errval: 106 </I><xsl:value-of select="@errval"/> <I> retval: </I><xsl:value-of 107 select="@retval"/> </xsl:template> 108 109 <xsl:template match="exit"> <BR/> <I>EXIT </I> <I> errval: 110 </I><xsl:value-of select="@errval"/> <I> retval: </I><xsl:value-of 111 select="@retval"/> </xsl:template> 112 113 <xsl:template match="sequence"> <BR/> <I>SEQUENCE </I> <I> seq-num: 114 </I><xsl:value-of select="@seq-num"/> </xsl:template> 115 116 <xsl:template match="fmri"> <BR/> <I>FMRI: </I> <xsl:value-of 117 select="."/> </xsl:template> 118 119 <xsl:template match="user"> <BR/> <I>USER </I> <I> uid: 120 </I><xsl:value-of select="@uid"/> <I> username: </I><xsl:value-of 121 select="@username"/> </xsl:template> 122 123 <xsl:template match="group"> <BR/> <I>GROUP </I> <xsl:apply-templates/> 124 </xsl:template> 125 126 <xsl:template match="gid"> <BR/> <I>gid: </I> <xsl:value-of 127 select="."/> </xsl:template> 128 129 <xsl:template match="opaque"> <BR/> <I>OPAQUE: </I> <xsl:value-of 130 select="."/> </xsl:template> 131 132 <xsl:template match="liaison"> <BR/> <I>LIAISON: </I> <xsl:value-of 133 select="."/> </xsl:template> 134 135 <xsl:template match="argument"> <BR/> <I>ARGUMENT </I> <I> arg-num: 136 </I><xsl:value-of select="@arg-num"/> <I> value: </I><xsl:value-of 137 select="@value"/> <I> desc: </I><xsl:value-of select="@desc"/> 138 </xsl:template> 139 140 <xsl:template match="attribute"> <BR/> <I>ATTRIBUTE </I> <I> mode: 141 </I><xsl:value-of select="@mode"/> <I> uid: </I><xsl:value-of 142 select="@uid"/> <I> gid: </I><xsl:value-of select="@gid"/> <I> fsid: 143 </I><xsl:value-of select="@fsid"/> <I> nodeid: </I><xsl:value-of 144 select="@nodeid"/> <I> device: </I><xsl:value-of select="@device"/> 145 </xsl:template> 146 147 <xsl:template match="cmd"> <BR/> <I>CMD </I> <xsl:apply-templates/> 148 </xsl:template> 149 150 <xsl:template match="argv"> <BR/> <I>argv: </I> <xsl:value-of 151 select="."/> </xsl:template> 152 153 <xsl:template match="arge"> <BR/> <I>arge: </I> <xsl:value-of 154 select="."/> </xsl:template> 155 156 <xsl:template match="exec_args"> <BR/> <I>EXEC_ARGS </I> <xsl:apply- 157 templates/> </xsl:template> 158 159 <xsl:template match="arg"> <BR/> <I>arg: </I> <xsl:value-of 160 select="."/> </xsl:template> 161 162 <xsl:template match="exec_env"> <BR/> <I>EXEC_ENV </I> <xsl:apply- 163 templates/> </xsl:template> 164 165 <xsl:template match="env"> <BR/> <I>env: </I> <xsl:value-of 166 select="."/> </xsl:template> 167 168 <xsl:template match="arbitrary"> <BR/> <I>ARBITRARY: </I> <I> print: 169 </I><xsl:value-of select="@print"/> <I> type: </I><xsl:value-of 170 select="@type"/> <I> count: </I><xsl:value-of select="@count"/> <BR/> 171 <xsl:value-of select="."/> </xsl:template> 172 173 <xsl:template match="privilege"> <BR/> <I>PRIVILEGE: </I> <I> set-type: 174 </I><xsl:value-of select="@set-type"/> <BR/> <xsl:value-of select="."/> 175 </xsl:template> 176 177 <xsl:template match="use_of_privilege"> <BR/> <I>USE_OF_PRIVILEGE: 178 </I> <I> result: </I><xsl:value-of select="@result"/> <BR/> 179 <xsl:value-of select="."/> </xsl:template> 180 181 <xsl:template match="secflags"> <BR/> <I>SECFLAGS: </I> <I> set-type: 182 </I><xsl:value-of select="@set-type"/> <BR/> <xsl:value-of select="."/> 183 </xsl:template> 184 185 <xsl:template match="sensitivity_label"> <BR/> <I>SENSITIVITY_LABEL: 186 </I> <xsl:value-of select="."/> </xsl:template> 187 188 <xsl:template match="use_of_authorization"> <BR/> 189 <I>USE_OF_AUTHORIZATION: </I> <xsl:value-of select="."/> </xsl:template> 190 191 <xsl:template match="IPC"> <BR/> <I>IPC </I> <I> ipc-type: 192 </I><xsl:value-of select="@ipc-type"/> <I> ipc-id: </I><xsl:value-of 193 select="@ipc-id"/> </xsl:template> 194 195 <xsl:template match="IPC_perm"> <BR/> <I>IPC_PERM </I> <I> uid: 196 </I><xsl:value-of select="@uid"/> <I> gid: </I><xsl:value-of select="@gid"/> 197 <I> creator-uid: </I><xsl:value-of select="@creator-uid"/> <I> creator-gid: 198 </I><xsl:value-of select="@creator-gid"/> <I> mode: </I><xsl:value-of 199 select="@mode"/> <I> seq: </I><xsl:value-of select="@seq"/> <I> key: 200 </I><xsl:value-of select="@key"/> </xsl:template> 201 202 <xsl:template match="ip_address"> <BR/> <I>IP_ADDRESS: </I> <xsl:value- 203 of select="."/> </xsl:template> 204 205 <xsl:template match="ip_port"> <BR/> <I>IP_PORT: </I> <xsl:value-of 206 select="."/> </xsl:template> 207 208 <xsl:template match="ip"> <BR/> <I>IP </I> <I> version: 209 </I><xsl:value-of select="@version"/> <I> service_type: </I><xsl:value-of 210 select="@service_type"/> <I> len: </I><xsl:value-of select="@len"/> <I> 211 id: </I><xsl:value-of select="@id"/> <I> offset: </I><xsl:value-of 212 select="@offset"/> <I> time_to_live: </I><xsl:value-of 213 select="@time_to_live"/> <I> protocol: </I><xsl:value-of 214 select="@protocol"/> <I> cksum: </I><xsl:value-of select="@cksum"/> <I> 215 src_addr: </I><xsl:value-of select="@src_addr"/> <I> dest_addr: 216 </I><xsl:value-of select="@dest_addr"/> </xsl:template> 217 218 <xsl:template match="old_socket"> <BR/> <I>OLD_SOCKET </I> <I> type: 219 </I><xsl:value-of select="@type"/> <I> port: </I><xsl:value-of 220 select="@port"/> <I> addr: </I><xsl:value-of select="@addr"/> 221 </xsl:template> 222 223 <xsl:template match="socket"> <BR/> <I>SOCKET </I> <I> 224 sock_domain: </I><xsl:value-of select="@sock_domain"/> <I> sock_type: 225 </I><xsl:value-of select="@sock_type"/> <I> lport: </I><xsl:value-of 226 select="@lport"/> <I> laddr: </I><xsl:value-of select="@laddr"/> <I> 227 fport: </I><xsl:value-of select="@fport"/> <I> faddr: </I><xsl:value-of 228 select="@faddr"/> </xsl:template> 229 230 <xsl:template match="acl"> <BR/> <I>ACL </I> <xsl:choose> 231 <xsl:when test="@mode"> <!-- old ACL entry --> <I> type: 232 </I><xsl:value-of select="@type"/> <I> value: </I><xsl:value-of 233 select="@value"/> <I> mode: </I><xsl:value-of select="@mode"/> 234 </xsl:when> <xsl:otherwise> <I> flags: </I><xsl:value-of 235 select="@flags"/> <I> id: </I><xsl:value-of select="@id"/> 236 <I> access_mask: </I><xsl:value-of select="@access_mask"/> <I> 237 type: </I><xsl:value-of select="@type"/> </xsl:otherwise> 238 </xsl:choose> </xsl:template> 239 240 <xsl:template match="tid"> <BR/> <I>terminal id: </I> <I> 241 type=</I><xsl:value-of select="@type"/> <xsl:apply-templates/> 242 </xsl:template> 243 244 <xsl:template match="ipadr"> <I> local-port: </I><xsl:value-of 245 select="@local-port"/> <I> remote-port: </I><xsl:value-of select="@remote- 246 port"/> <I> host: </I><xsl:value-of select="@host"/> </xsl:template> 247 248 <xsl:template match="X_atom"> <BR/> <I>X_ATOM: </I> <xsl:value-of 249 select="."/> </xsl:template> 250 251 <xsl:template match="X_color_map"> <BR/> <I>X_COLOR_MAP </I> <I> 252 xid: </I><xsl:value-of select="@xid"/><I> xcreator-uid: </I><xsl:value-of 253 select="@xcreator-uid"/> </xsl:template> 254 255 <xsl:template match="X_cursor"> <BR/> <I>X_CURSOR </I> <I> xid: 256 </I><xsl:value-of select="@xid"/><I> xcreator-uid: </I><xsl:value-of 257 select="@xcreator-uid"/> </xsl:template> 258 259 <xsl:template match="X_font"> <BR/> <I>X_FONT </I> <I> xid: 260 </I><xsl:value-of select="@xid"/><I> xcreator-uid: </I><xsl:value-of 261 select="@xcreator-uid"/> </xsl:template> 262 263 <xsl:template match="X_graphic_context"> <BR/> <I>X_GRAPHIC_CONTEXT 264 </I> <I> xid: </I><xsl:value-of select="@xid"/><I> xcreator-uid: 265 </I><xsl:value-of select="@xcreator-uid"/> </xsl:template> 266 267 <xsl:template match="X_pixmap"> <BR/> <I>X_PIXMAP </I> <I> xid: 268 </I><xsl:value-of select="@xid"/><I> xcreator-uid: </I><xsl:value-of 269 select="@xcreator-uid"/> </xsl:template> 270 271 <xsl:template match="X_window"> <BR/> <I>X_WINDOW </I> <I> xid: 272 </I><xsl:value-of select="@xid"/><I> xcreator-uid: </I><xsl:value-of 273 select="@xcreator-uid"/> </xsl:template> 274 275 <xsl:template match="X_property"> <BR/> <I>X_PROPERTY: </I> <I> xid: 276 </I><xsl:value-of select="@xid"/><I> xcreator-uid: </I><xsl:value-of 277 select="@xcreator-uid"/> <BR/> <xsl:value-of select="."/> 278 </xsl:template> 279 280 <xsl:template match="X_client"> <BR/> <I>X_CLIENT: </I> <xsl:value-of 281 select="."/> </xsl:template> 282 283 <xsl:template match="X_selection"> <BR/> <I>X_SELECTION </I> 284 <xsl:apply-templates/> </xsl:template> 285 286 <xsl:template match="x_sel_text"> <BR/> <I>x_sel_text: </I> <xsl:value- 287 of select="."/> </xsl:template> 288 289 <xsl:template match="x_sel_type"> <BR/> <I>x_sel_type: </I> <xsl:value- 290 of select="."/> </xsl:template> 291 292 <xsl:template match="x_sel_data"> <BR/> <I>x_sel_data: </I> <xsl:value- 293 of select="."/> </xsl:template> 294 295 <xsl:template match="zone"> <BR/> <I>ZONE </I> <I> name: 296 </I><xsl:value-of select="@name"/> </xsl:template> 297 298 </xsl:stylesheet> 299 300 301 302 August 29, 2016 () --- EOF ---