Linux ams-business-8.hostwindsdns.com 4.18.0-553.80.1.lve.el8.x86_64 #1 SMP Wed Oct 22 19:29:36 UTC 2025 x86_64
LiteSpeed
Server IP : 192.236.177.161 & Your IP : 216.73.216.50
Domains :
Cant Read [ /etc/named.conf ]
User : ajzdfbpz
Terminal
Auto Root
Create File
Create Folder
Localroot Suggester
Backdoor Destroyer
Readme
/
usr /
lib64 /
python3.6 /
site-packages /
setools /
Delete
Unzip
Name
Size
Permission
Date
Action
__pycache__
[ DIR ]
drwxr-xr-x
2024-02-12 23:51
diff
[ DIR ]
drwxr-xr-x
2024-02-12 23:51
__init__.py
2.79
KB
-rw-r--r--
2023-10-15 02:31
boolquery.py
2.19
KB
-rw-r--r--
2020-04-01 14:57
boundsquery.py
2.35
KB
-rw-r--r--
2020-04-01 14:57
categoryquery.py
1.88
KB
-rw-r--r--
2020-04-01 14:57
commonquery.py
2.11
KB
-rw-r--r--
2020-04-01 14:57
constraintquery.py
5.5
KB
-rw-r--r--
2020-04-01 14:57
defaultquery.py
2.8
KB
-rw-r--r--
2020-04-01 14:57
descriptors.py
7.47
KB
-rw-r--r--
2020-04-01 14:57
devicetreeconquery.py
2.72
KB
-rw-r--r--
2020-04-01 14:57
dta.py
21.4
KB
-rw-r--r--
2023-10-15 02:31
exception.py
5.97
KB
-rw-r--r--
2020-04-01 14:57
fsusequery.py
3.36
KB
-rw-r--r--
2020-04-01 14:57
genfsconquery.py
3.68
KB
-rw-r--r--
2020-04-01 14:57
ibendportconquery.py
3.52
KB
-rw-r--r--
2020-04-01 14:57
ibpkeyconquery.py
5.22
KB
-rw-r--r--
2020-04-01 14:57
infoflow.py
14.59
KB
-rw-r--r--
2023-10-15 02:31
initsidquery.py
2.79
KB
-rw-r--r--
2020-04-01 14:57
iomemconquery.py
4.44
KB
-rw-r--r--
2020-04-01 14:57
ioportconquery.py
4.46
KB
-rw-r--r--
2020-04-01 14:57
mixins.py
7.14
KB
-rw-r--r--
2020-04-01 14:57
mlsrulequery.py
4.59
KB
-rw-r--r--
2020-04-01 14:57
netifconquery.py
2.93
KB
-rw-r--r--
2020-04-01 14:57
nodeconquery.py
4.16
KB
-rw-r--r--
2020-04-01 14:57
objclassquery.py
3.78
KB
-rw-r--r--
2020-04-01 14:57
pcideviceconquery.py
3.04
KB
-rw-r--r--
2020-04-01 14:57
perm_map
87.16
KB
-rw-r--r--
2020-04-01 14:57
permmap.py
16.1
KB
-rw-r--r--
2020-04-01 14:57
pirqconquery.py
2.95
KB
-rw-r--r--
2020-04-01 14:57
polcapquery.py
1.64
KB
-rw-r--r--
2020-04-01 14:57
policyrep.cpython-36m-x86_64-linux-gnu.so
1.87
MB
-rwxr-xr-x
2023-10-15 02:32
portconquery.py
5.04
KB
-rw-r--r--
2020-04-01 14:57
query.py
1.69
KB
-rw-r--r--
2020-04-01 14:57
rbacrulequery.py
5.61
KB
-rw-r--r--
2020-04-01 14:57
rolequery.py
2.48
KB
-rw-r--r--
2020-04-01 14:57
sensitivityquery.py
2.65
KB
-rw-r--r--
2020-04-01 14:57
terulequery.py
9.11
KB
-rw-r--r--
2020-04-01 14:57
typeattrquery.py
2.62
KB
-rw-r--r--
2020-04-01 14:57
typequery.py
3.43
KB
-rw-r--r--
2020-04-01 14:57
userquery.py
4.68
KB
-rw-r--r--
2020-04-01 14:57
util.py
5.32
KB
-rw-r--r--
2020-04-01 14:57
Save
Rename
# Copyright 2014-2015, Tresys Technology, LLC # # This file is part of SETools. # # SETools is free software: you can redistribute it and/or modify # it under the terms of the GNU Lesser General Public License as # published by the Free Software Foundation, either version 2.1 of # the License, or (at your option) any later version. # # SETools is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public # License along with SETools. If not, see # <http://www.gnu.org/licenses/>. # import logging import re from . import mixins, query from .descriptors import CriteriaDescriptor, CriteriaSetDescriptor from .exception import RuleUseError, RuleNotConditional from .policyrep import IoctlSet, TERuletype from .util import match_regex, match_indirect_regex, match_regex_or_set class TERuleQuery(mixins.MatchObjClass, mixins.MatchPermission, query.PolicyQuery): """ Query the Type Enforcement rules. Parameter: policy The policy to query. Keyword Parameters/Class attributes: ruletype The list of rule type(s) to match. source The name of the source type/attribute to match. source_indirect If true, members of an attribute will be matched rather than the attribute itself. Default is true. source_regex If true, regular expression matching will be used on the source type/attribute. Obeys the source_indirect option. Default is false. target The name of the target type/attribute to match. target_indirect If true, members of an attribute will be matched rather than the attribute itself. Default is true. target_regex If true, regular expression matching will be used on the target type/attribute. Obeys target_indirect option. Default is false. tclass The object class(es) to match. tclass_regex If true, use a regular expression for matching the rule's object class. Default is false. perms The set of permission(s) to match. perms_equal If true, the permission set of the rule must exactly match the permissions criteria. If false, any set intersection will match. Default is false. perms_regex If true, regular expression matching will be used on the permission names instead of set logic. Default is false. perms_subset If true, the rule matches if the permissions criteria is a subset of the rule's permission set. Default is false. default The name of the default type to match. default_regex If true, regular expression matching will be used on the default type. Default is false. boolean The set of boolean(s) to match. boolean_regex If true, regular expression matching will be used on the booleans. Default is false. boolean_equal If true, the booleans in the conditional expression of the rule must exactly match the criteria. If false, any set intersection will match. Default is false. """ ruletype = CriteriaSetDescriptor(enum_class=TERuletype) source = CriteriaDescriptor("source_regex", "lookup_type_or_attr") source_regex = False source_indirect = True target = CriteriaDescriptor("target_regex", "lookup_type_or_attr") target_regex = False target_indirect = True default = CriteriaDescriptor("default_regex", "lookup_type_or_attr") default_regex = False boolean = CriteriaSetDescriptor("boolean_regex", "lookup_boolean") boolean_regex = False boolean_equal = False _xperms = None xperms_equal = False @property def xperms(self): return self._xperms @xperms.setter def xperms(self, value): if value: pending_xperms = set() for low, high in value: if not (0 <= low <= 0xffff): raise ValueError("{0:#07x} is not a valid ioctl.".format(low)) if not (0 <= high <= 0xffff): raise ValueError("{0:#07x} is not a valid ioctl.".format(high)) if high < low: high, low = low, high pending_xperms.update(i for i in range(low, high + 1)) self._xperms = IoctlSet(pending_xperms) else: self._xperms = None def __init__(self, policy, **kwargs): super(TERuleQuery, self).__init__(policy, **kwargs) self.log = logging.getLogger(__name__) def results(self): """Generator which yields all matching TE rules.""" self.log.info("Generating TE rule results from {0.policy}".format(self)) self.log.debug("Ruletypes: {0.ruletype}".format(self)) self.log.debug("Source: {0.source!r}, indirect: {0.source_indirect}, " "regex: {0.source_regex}".format(self)) self.log.debug("Target: {0.target!r}, indirect: {0.target_indirect}, " "regex: {0.target_regex}".format(self)) self._match_object_class_debug(self.log) self._match_perms_debug(self.log) self.log.debug("Xperms: {0.xperms!r}, eq: {0.xperms_equal}".format(self)) self.log.debug("Default: {0.default!r}, regex: {0.default_regex}".format(self)) self.log.debug("Boolean: {0.boolean!r}, eq: {0.boolean_equal}, " "regex: {0.boolean_regex}".format(self)) for rule in self.policy.terules(): # # Matching on rule type # if self.ruletype: if rule.ruletype not in self.ruletype: continue # # Matching on source type # if self.source and not match_indirect_regex( rule.source, self.source, self.source_indirect, self.source_regex): continue # # Matching on target type # if self.target and not match_indirect_regex( rule.target, self.target, self.target_indirect, self.target_regex): continue # # Matching on object class # if not self._match_object_class(rule): continue # # Matching on permission set # try: if self.perms and rule.extended: if self.perms_equal and len(self.perms) > 1: # if criteria is more than one standard permission, # extended perm rules can never match if the # permission set equality option is on. continue if rule.xperm_type not in self.perms: continue elif not self._match_perms(rule): continue except RuleUseError: continue # # Matching on extended permissions # try: if self.xperms and not match_regex_or_set( rule.perms, self.xperms, self.xperms_equal, False): continue except RuleUseError: continue # # Matching on default type # if self.default: try: # because default type is always a single # type, hard-code indirect to True # so the criteria can be an attribute if not match_indirect_regex( rule.default, self.default, True, self.default_regex): continue except RuleUseError: continue # # Match on Boolean in conditional expression # if self.boolean: try: if not match_regex_or_set( rule.conditional.booleans, self.boolean, self.boolean_equal, self.boolean_regex): continue except RuleNotConditional: continue # if we get here, we have matched all available criteria yield rule