Struct google_api_proto::google::cloud::securitycenter::v2::KernelRootkit
source · pub struct KernelRootkit {
pub name: String,
pub unexpected_code_modification: bool,
pub unexpected_read_only_data_modification: bool,
pub unexpected_ftrace_handler: bool,
pub unexpected_kprobe_handler: bool,
pub unexpected_kernel_code_pages: bool,
pub unexpected_system_call_handler: bool,
pub unexpected_interrupt_handler: bool,
pub unexpected_processes_in_runqueue: bool,
}
Expand description
Kernel mode rootkit signatures.
Fields§
§name: String
Rootkit name, when available.
unexpected_code_modification: bool
True if unexpected modifications of kernel code memory are present.
unexpected_read_only_data_modification: bool
True if unexpected modifications of kernel read-only data memory are present.
unexpected_ftrace_handler: bool
True if ftrace
points are present with callbacks pointing to regions
that are not in the expected kernel or module code range.
unexpected_kprobe_handler: bool
True if kprobe
points are present with callbacks pointing to regions
that are not in the expected kernel or module code range.
unexpected_kernel_code_pages: bool
True if kernel code pages that are not in the expected kernel or module code regions are present.
unexpected_system_call_handler: bool
True if system call handlers that are are not in the expected kernel or module code regions are present.
unexpected_interrupt_handler: bool
True if interrupt handlers that are are not in the expected kernel or module code regions are present.
unexpected_processes_in_runqueue: bool
True if unexpected processes in the scheduler run queue are present. Such processes are in the run queue, but not in the process task list.
Trait Implementations§
source§impl Clone for KernelRootkit
impl Clone for KernelRootkit
source§fn clone(&self) -> KernelRootkit
fn clone(&self) -> KernelRootkit
1.0.0 · source§fn clone_from(&mut self, source: &Self)
fn clone_from(&mut self, source: &Self)
source
. Read moresource§impl Debug for KernelRootkit
impl Debug for KernelRootkit
source§impl Default for KernelRootkit
impl Default for KernelRootkit
source§impl Message for KernelRootkit
impl Message for KernelRootkit
source§fn encoded_len(&self) -> usize
fn encoded_len(&self) -> usize
source§fn encode(&self, buf: &mut impl BufMut) -> Result<(), EncodeError>where
Self: Sized,
fn encode(&self, buf: &mut impl BufMut) -> Result<(), EncodeError>where
Self: Sized,
source§fn encode_to_vec(&self) -> Vec<u8>where
Self: Sized,
fn encode_to_vec(&self) -> Vec<u8>where
Self: Sized,
source§fn encode_length_delimited(
&self,
buf: &mut impl BufMut,
) -> Result<(), EncodeError>where
Self: Sized,
fn encode_length_delimited(
&self,
buf: &mut impl BufMut,
) -> Result<(), EncodeError>where
Self: Sized,
source§fn encode_length_delimited_to_vec(&self) -> Vec<u8>where
Self: Sized,
fn encode_length_delimited_to_vec(&self) -> Vec<u8>where
Self: Sized,
source§fn decode(buf: impl Buf) -> Result<Self, DecodeError>where
Self: Default,
fn decode(buf: impl Buf) -> Result<Self, DecodeError>where
Self: Default,
source§fn decode_length_delimited(buf: impl Buf) -> Result<Self, DecodeError>where
Self: Default,
fn decode_length_delimited(buf: impl Buf) -> Result<Self, DecodeError>where
Self: Default,
source§fn merge(&mut self, buf: impl Buf) -> Result<(), DecodeError>where
Self: Sized,
fn merge(&mut self, buf: impl Buf) -> Result<(), DecodeError>where
Self: Sized,
self
. Read moresource§fn merge_length_delimited(&mut self, buf: impl Buf) -> Result<(), DecodeError>where
Self: Sized,
fn merge_length_delimited(&mut self, buf: impl Buf) -> Result<(), DecodeError>where
Self: Sized,
self
.source§impl PartialEq for KernelRootkit
impl PartialEq for KernelRootkit
source§fn eq(&self, other: &KernelRootkit) -> bool
fn eq(&self, other: &KernelRootkit) -> bool
self
and other
values to be equal, and is used
by ==
.impl StructuralPartialEq for KernelRootkit
Auto Trait Implementations§
impl Freeze for KernelRootkit
impl RefUnwindSafe for KernelRootkit
impl Send for KernelRootkit
impl Sync for KernelRootkit
impl Unpin for KernelRootkit
impl UnwindSafe for KernelRootkit
Blanket Implementations§
source§impl<T> BorrowMut<T> for Twhere
T: ?Sized,
impl<T> BorrowMut<T> for Twhere
T: ?Sized,
source§fn borrow_mut(&mut self) -> &mut T
fn borrow_mut(&mut self) -> &mut T
§impl<T> Instrument for T
impl<T> Instrument for T
§fn instrument(self, span: Span) -> Instrumented<Self>
fn instrument(self, span: Span) -> Instrumented<Self>
§fn in_current_span(self) -> Instrumented<Self>
fn in_current_span(self) -> Instrumented<Self>
source§impl<T> IntoRequest<T> for T
impl<T> IntoRequest<T> for T
source§fn into_request(self) -> Request<T>
fn into_request(self) -> Request<T>
T
in a tonic::Request