Implementation of functions to interact with the security context. More...
#include <BPSecLib_Private.h>#include "AbsSecBlock.h"#include "PublicInterfaceImpl.h"#include "SecOperation.h"#include "SecurityActionSet.h"#include "SecurityResultSet.h"
Include dependency graph for SecurityContext.c:Functions | |
| static int | BSL_ExecBIBSource (BSL_SecCtx_Execute_f sec_context_fn, BSL_LibCtx_t *lib, BSL_BundleRef_t *bundle, BSL_SecOper_t *sec_oper, BSL_SecOutcome_t *outcome) |
| static int | BSL_ExecBIBAccept (BSL_SecCtx_Execute_f sec_context_fn, BSL_LibCtx_t *lib, BSL_BundleRef_t *bundle, BSL_SecOper_t *sec_oper, BSL_SecOutcome_t *outcome) |
| static int | BSL_ExecBCBAcceptor (BSL_SecCtx_Execute_f sec_context_fn, BSL_LibCtx_t *lib, BSL_BundleRef_t *bundle, BSL_SecOper_t *sec_oper, BSL_SecOutcome_t *outcome) |
| static int | BSL_ExecBCBSource (BSL_SecCtx_Execute_f sec_context_fn, BSL_LibCtx_t *lib, BSL_BundleRef_t *bundle, BSL_SecOper_t *sec_oper, BSL_SecOutcome_t *outcome) |
| int | BSL_SecCtx_ExecutePolicyActionSet (BSL_LibCtx_t *lib, BSL_SecurityResponseSet_t *output_response, BSL_BundleRef_t *bundle, const BSL_SecurityActionSet_t *action_set) |
| Call the underlying security context to perform the given action. | |
| bool | BSL_SecCtx_ValidatePolicyActionSet (BSL_LibCtx_t *lib, const BSL_BundleRef_t *bundle, const BSL_SecurityActionSet_t *action_set) |
Detailed Description
Implementation of functions to interact with the security context.
- Todo:
Enable checking (not just using a stub returning True.)
Complete implementation for BCB acceptor.
Function Documentation
◆ BSL_SecCtx_ExecutePolicyActionSet()
| int BSL_SecCtx_ExecutePolicyActionSet | ( | BSL_LibCtx_t * | lib, |
| BSL_SecurityResponseSet_t * | output_response, | ||
| BSL_BundleRef_t * | bundle, | ||
| const BSL_SecurityActionSet_t * | action_set | ||
| ) |
Call the underlying security context to perform the given action.
- Parameters
-
[in] lib This BSL context [out] output_response Pointer to allocated, zeroed memory into which the response is populated [in,out] bundle Pointer to bundle, which may be modified. [in] action_set Action containing all params and operations.
- Returns
- 0 on success, negative on failure.
Notes:
- It should evaluate every security operation, even if earlier ones failed.
- The outcome can indicate in the policy action response how exactly it fared (pass, fail, etc)
- BCB will be a special case, since it actively manipulates the BTSD
References BSL_CALLOC, BSL_FREE, BSL_LOG_ERR, BSL_SECOP_CONCLUSION_FAILURE, BSL_SECOP_CONCLUSION_SUCCESS, BSL_SecOper_IsBIB(), BSL_SecOper_IsRoleSource(), BSL_SecOper_SetConclusion(), BSL_SecurityActionSet_CountOperations(), BSL_SecurityActionSet_IsConsistent(), BSL_SecurityResponseSet_Init(), and BSL_SUCCESS.
Referenced by BSL_API_ApplySecurity(), test_SecurityContext_BIB_Acceptor(), test_SecurityContext_BIB_Source(), test_SecurityContext_BIB_Verifier(), and test_SecurityContext_BIB_Verifier_Failure().
◆ BSL_SecCtx_ValidatePolicyActionSet()
| bool BSL_SecCtx_ValidatePolicyActionSet | ( | BSL_LibCtx_t * | lib, |
| const BSL_BundleRef_t * | bundle, | ||
| const BSL_SecurityActionSet_t * | action_set | ||
| ) |
- Todo:
- Doxygen
Referenced by BSL_API_QuerySecurity().
