Home
last modified time | relevance | path

Searched refs:aa_label (Results 1 – 25 of 32) sorted by relevance

12

/linux/security/apparmor/include/
A Dlabel.h100 struct aa_label;
121 struct aa_label { struct
281 bool aa_label_is_subset(struct aa_label *set, struct aa_label *sub);
288 bool aa_label_replace(struct aa_label *old, struct aa_label *new);
292 struct aa_label *aa_label_find(struct aa_label *l);
297 struct aa_label *aa_label_find_merge(struct aa_label *a, struct aa_label *b);
298 struct aa_label *aa_label_merge(struct aa_label *a, struct aa_label *b,
371 static inline struct aa_label *__aa_get_label(struct aa_label *l) in __aa_get_label()
379 static inline struct aa_label *aa_get_label(struct aa_label *l) in aa_get_label()
397 struct aa_label *c; in aa_get_label_rcu()
[all …]
A Dcred.h22 static inline struct aa_label *cred_label(const struct cred *cred) in cred_label()
24 struct aa_label **blob = cred->security + apparmor_blob_sizes.lbs_cred; in cred_label()
31 struct aa_label *label) in set_cred_label()
33 struct aa_label **blob = cred->security + apparmor_blob_sizes.lbs_cred; in set_cred_label()
49 struct aa_label *label = cred_label(cred); in aa_cred_raw_label()
87 static inline struct aa_label *aa_current_raw_label(void) in aa_current_raw_label()
101 static inline struct aa_label *aa_get_current_label(void) in aa_get_current_label()
103 struct aa_label *l = aa_current_raw_label(); in aa_get_current_label()
140 struct aa_label *label = aa_current_raw_label(); in __begin_current_label_crit_section()
162 struct aa_label *label = aa_current_raw_label(); in begin_current_label_crit_section()
[all …]
A Dmount.h28 int aa_remount(struct aa_label *label, const struct path *path,
31 int aa_bind_mount(struct aa_label *label, const struct path *path,
35 int aa_mount_change_type(struct aa_label *label, const struct path *path,
38 int aa_move_mount(struct aa_label *label, const struct path *path,
41 int aa_new_mount(struct aa_label *label, const char *dev_name,
45 int aa_umount(struct aa_label *label, struct vfsmount *mnt, int flags);
47 int aa_pivotroot(struct aa_label *label, const struct path *old_path,
A Dtask.h26 struct aa_label *nnp;
27 struct aa_label *onexec;
28 struct aa_label *previous;
32 int aa_replace_current_label(struct aa_label *label);
33 int aa_set_current_onexec(struct aa_label *label, bool stack);
34 int aa_set_current_hat(struct aa_label *label, u64 token);
36 struct aa_label *aa_get_task_label(struct task_struct *task);
A Dipc.h32 int aa_may_ptrace(struct aa_label *tracer, struct aa_label *tracee,
34 int aa_may_signal(struct aa_label *sender, struct aa_label *target, int sig);
A Dsecid.h16 struct aa_label;
24 struct aa_label *aa_secid_to_label(u32 secid);
30 int aa_alloc_secid(struct aa_label *label, gfp_t gfp);
32 void aa_secid_update(u32 secid, struct aa_label *label);
A Dfile.h43 struct aa_label __rcu *label;
54 static inline struct aa_file_ctx *aa_alloc_file_ctx(struct aa_label *label, in aa_alloc_file_ctx()
79 static inline struct aa_label *aa_get_file_label(struct aa_file_ctx *ctx) in aa_get_file_label()
161 const char *target, struct aa_label *tlabel, kuid_t ouid,
192 int aa_path_perm(const char *op, struct aa_label *label,
196 int aa_path_link(struct aa_label *label, struct dentry *old_dentry,
199 int aa_file_perm(const char *op, struct aa_label *label, struct file *file,
A Dpolicy.h162 struct aa_label label;
188 struct aa_profile *aa_fqlookupn_profile(struct aa_label *base,
192 ssize_t aa_replace_profiles(struct aa_ns *view, struct aa_label *label,
194 ssize_t aa_remove_profiles(struct aa_ns *view, struct aa_label *label,
304 bool aa_policy_view_capable(struct aa_label *label, struct aa_ns *ns);
305 bool aa_policy_admin_capable(struct aa_label *label, struct aa_ns *ns);
306 int aa_may_manage_policy(struct aa_label *label, struct aa_ns *ns,
A Dnet.h50 struct aa_label *label;
51 struct aa_label *peer;
94 int aa_af_perm(struct aa_label *label, const char *op, u32 request, u16 family,
106 int aa_sock_file_perm(struct aa_label *label, const char *op, u32 request,
109 int apparmor_secmark_check(struct aa_label *label, char *op, u32 request,
A Dresource.h36 int aa_task_setrlimit(struct aa_label *label, struct task_struct *task,
39 void __aa_transition_rlimits(struct aa_label *old, struct aa_label *new);
A Dcapability.h18 struct aa_label;
39 int aa_capable(struct aa_label *label, int cap, unsigned int opts);
A Daudit.h111 struct aa_label *label;
119 struct aa_label *peer;
/linux/security/apparmor/
A Dlabel.c73 void __aa_proxy_redirect(struct aa_label *orig, struct aa_label *new) in __aa_proxy_redirect()
88 static void __proxy_share(struct aa_label *old, struct aa_label *new) in __proxy_share()
360 struct aa_label *label = container_of(head, struct aa_label, rcu); in label_free_rcu()
463 static int label_cmp(struct aa_label *a, struct aa_label *b) in label_cmp()
676 struct aa_label *this = rb_entry(*new, struct aa_label, node); in __label_insert()
729 struct aa_label *this = rb_entry(node, struct aa_label, node); in __vec_find()
754 static struct aa_label *__label_find(struct aa_label *label) in __label_find()
907 struct aa_label *aa_label_find(struct aa_label *label) in aa_label_find()
1154 struct aa_label *this = container_of(node, struct aa_label, in __label_find_merge()
1180 struct aa_label *aa_label_find_merge(struct aa_label *a, struct aa_label *b) in aa_label_find_merge()
[all …]
A Dtask.c24 struct aa_label *aa_get_task_label(struct task_struct *task) in aa_get_task_label()
26 struct aa_label *p; in aa_get_task_label()
41 int aa_replace_current_label(struct aa_label *label) in aa_replace_current_label()
43 struct aa_label *old = aa_current_raw_label(); in aa_replace_current_label()
60 struct aa_label *tmp = ctx->nnp; in aa_replace_current_label()
93 int aa_set_current_onexec(struct aa_label *label, bool stack) in aa_set_current_onexec()
115 int aa_set_current_hat(struct aa_label *label, u64 token) in aa_set_current_hat()
A Dsecid.c46 void aa_secid_update(u32 secid, struct aa_label *label) in aa_secid_update()
59 struct aa_label *aa_secid_to_label(u32 secid) in aa_secid_to_label()
61 struct aa_label *label; in aa_secid_to_label()
73 struct aa_label *label = aa_secid_to_label(secid); in apparmor_secid_to_secctx()
100 struct aa_label *label; in apparmor_secctx_to_secid()
124 int aa_alloc_secid(struct aa_label *label, gfp_t gfp) in aa_alloc_secid()
A Ddomain.c65 struct aa_label *tracerl = NULL; in may_change_ptraced_domain()
135 struct aa_label *label, bool stack, in label_compound_match()
514 struct aa_label *label = NULL; in x_table_lookup()
563 struct aa_label *new = NULL; in x_to_label()
612 struct aa_label *base = new; in x_to_label()
629 struct aa_label *new = NULL; in profile_transition()
794 static struct aa_label *handle_onexec(struct aa_label *label, in handle_onexec()
801 struct aa_label *new; in handle_onexec()
857 struct aa_label *label, *new = NULL; in apparmor_bprm_creds_for_exec()
1036 static struct aa_label *change_hat(struct aa_label *label, const char *hats[], in change_hat()
[all …]
A Dipc.c64 struct aa_label *peer, u32 request, in profile_ptrace_perm()
77 struct aa_label *tracer, u32 request, in profile_tracee_perm()
88 struct aa_label *tracee, u32 request, in profile_tracer_perm()
118 int aa_may_ptrace(struct aa_label *tracer, struct aa_label *tracee, in aa_may_ptrace()
188 struct aa_label *peer, u32 request, in profile_signal_perm()
208 int aa_may_signal(struct aa_label *sender, struct aa_label *target, int sig) in aa_may_signal()
A Dfile.c94 const char *target, struct aa_label *tlabel, in aa_audit_file()
157 static int path_name(const char *op, struct aa_label *label, in path_name()
315 int aa_path_perm(const char *op, struct aa_label *label, in aa_path_perm()
457 int aa_path_link(struct aa_label *label, struct dentry *old_dentry, in aa_path_link()
489 struct aa_label *l, *old; in update_file_ctx()
508 struct aa_label *flabel, struct file *file, in __file_path_perm()
563 struct aa_label *flabel, struct file *file, in __file_sock_perm()
602 struct aa_label *flabel; in aa_file_perm()
646 static void revalidate_tty(struct aa_label *label) in revalidate_tty()
677 struct aa_label *label = (struct aa_label *)p; in match_file()
[all …]
A Dresource.c53 unsigned long value, struct aa_label *peer, in audit_resource()
104 int aa_task_setrlimit(struct aa_label *label, struct task_struct *task, in aa_task_setrlimit()
108 struct aa_label *peer; in aa_task_setrlimit()
141 void __aa_transition_rlimits(struct aa_label *old_l, struct aa_label *new_l) in __aa_transition_rlimits()
A Dnet.c134 int aa_af_perm(struct aa_label *label, const char *op, u32 request, u16 family, in aa_af_perm()
145 static int aa_label_sk_perm(struct aa_label *label, const char *op, u32 request, in aa_label_sk_perm()
166 struct aa_label *label; in aa_sk_perm()
181 int aa_sock_file_perm(struct aa_label *label, const char *op, u32 request, in aa_sock_file_perm()
194 struct aa_label *label; in apparmor_secmark_init()
246 int apparmor_secmark_check(struct aa_label *label, char *op, u32 request, in apparmor_secmark_check()
A Dlsm.c150 struct aa_label *label; in apparmor_capget()
183 struct aa_label *label; in apparmor_capable()
206 struct aa_label *label; in common_perm()
342 struct aa_label *label; in apparmor_path_link()
359 struct aa_label *label; in apparmor_path_rename()
410 struct aa_label *label; in apparmor_file_open()
467 struct aa_label *label; in common_file_perm()
541 struct aa_label *label; in apparmor_sb_mount()
572 struct aa_label *label; in apparmor_sb_umount()
586 struct aa_label *label; in apparmor_sb_pivotroot()
[all …]
A Dmount.c398 int aa_remount(struct aa_label *label, const struct path *path, in aa_remount()
422 int aa_bind_mount(struct aa_label *label, const struct path *path, in aa_bind_mount()
459 int aa_mount_change_type(struct aa_label *label, const struct path *path, in aa_mount_change_type()
484 int aa_move_mount(struct aa_label *label, const struct path *path, in aa_move_mount()
518 int aa_new_mount(struct aa_label *label, const char *dev_name, in aa_new_mount()
613 int aa_umount(struct aa_label *label, struct vfsmount *mnt, int flags) in aa_umount()
638 static struct aa_label *build_pivotroot(struct aa_profile *profile, in build_pivotroot()
690 int aa_pivotroot(struct aa_label *label, const struct path *old_path, in aa_pivotroot()
694 struct aa_label *target = NULL; in aa_pivotroot()
A Dpolicy.c111 struct aa_label *l; in __add_profile()
456 struct aa_profile *aa_fqlookupn_profile(struct aa_label *base, in aa_fqlookupn_profile()
617 static int audit_policy(struct aa_label *label, const char *op, in audit_policy()
637 static int policy_ns_capable(struct aa_label *label, in policy_ns_capable()
659 bool aa_policy_view_capable(struct aa_label *label, struct aa_ns *ns) in aa_policy_view_capable()
678 bool aa_policy_admin_capable(struct aa_label *label, struct aa_ns *ns) in aa_policy_admin_capable()
692 struct aa_label *label; in aa_current_policy_view_capable()
704 struct aa_label *label; in aa_current_policy_admin_capable()
721 int aa_may_manage_policy(struct aa_label *label, struct aa_ns *ns, u32 mask) in aa_may_manage_policy()
897 ssize_t aa_replace_profiles(struct aa_ns *policy_ns, struct aa_label *label, in aa_replace_profiles()
[all …]
A Daudit.c75 struct aa_label *label = aad(sa)->label; in audit_pre()
162 struct aa_label *label;
226 struct aa_label *label; in aa_audit_rule_match()
A Dapparmorfs.c415 struct aa_label *label; in policy_update()
478 struct aa_label *label; in profile_remove()
664 struct aa_label *label, *curr; in query_data()
755 struct aa_label *label, *curr; in query_label()
1066 struct aa_label *label = aa_get_label_rcu(&proxy->label); in seq_profile_name_show()
1145 struct aa_label *label; in seq_ns_stacked_show()
1156 struct aa_label *label; in seq_ns_nsstacked_show()
1179 struct aa_label *label; in seq_ns_level_show()
1608 struct aa_label *label; in rawdata_get_link_base()
1780 struct aa_label *label; in ns_mkdir_op()
[all …]

Completed in 42 milliseconds

12