Lines Matching defs:sclass
1435 u16 sclass;
1447 if (isec->sclass == SECCLASS_FILE)
1448 isec->sclass = inode_mode_to_security_class(inode->i_mode);
1462 sclass = isec->sclass;
1523 sclass, NULL, &sid);
1563 rc = selinux_genfs_get_sid(dentry, sclass,
1646 u16 sclass;
1656 sclass = initns ? SECCLASS_CAPABILITY : SECCLASS_CAP_USERNS;
1659 sclass = initns ? SECCLASS_CAPABILITY2 : SECCLASS_CAP2_USERNS;
1666 rc = avc_has_perm_noaudit(sid, sid, sclass, av, 0, &avd);
1668 int rc2 = avc_audit(sid, sid, sclass, av, &avd, rc, &ad);
1692 return avc_has_perm(sid, isec->sid, isec->sclass, perms, adp);
1929 rc = avc_has_perm(sid, isec->sid, isec->sclass, av, &ad);
1958 old_isec->sclass, FILE__RENAME, &ad);
1963 old_isec->sclass, DIR__REPARENT, &ad);
1979 new_isec->sclass,
2136 return avc_has_perm(sid, isec->sid, isec->sclass, file_to_av(file),
2352 if (WARN_ON(isec->sclass != SECCLASS_FILE &&
2353 isec->sclass != SECCLASS_MEMFD_FILE))
2408 rc = avc_has_perm(old_crsec->sid, isec->sid, isec->sclass,
2419 rc = avc_has_perm(new_crsec->sid, isec->sid, isec->sclass,
2908 isec->sclass = SECCLASS_FILE;
2986 isec->sclass = newsclass;
3045 isec->sclass = context_isec->sclass;
3049 isec->sclass = SECCLASS_MEMFD_FILE;
3051 isec->sclass = SECCLASS_ANON_INODE;
3054 isec->sclass, name, &isec->sid);
3070 isec->sclass,
3136 return avc_has_perm(sid, isec->sid, isec->sclass, FILE__READ, &ad);
3149 return slow_avc_audit(current_sid(), isec->sid, isec->sclass, perms,
3184 if (isec->sclass != SECCLASS_DIR)
3223 if (isec->sclass != SECCLASS_DIR)
3280 rc = avc_has_perm_noaudit(sid, isec->sid, isec->sclass,
3397 rc = avc_has_perm(sid, isec->sid, isec->sclass,
3437 rc = avc_has_perm(sid, newsid, isec->sclass,
3443 sid, isec->sclass);
3507 isec->sclass = inode_mode_to_security_class(inode->i_mode);
3676 isec->sclass = inode_mode_to_security_class(inode->i_mode);
3890 rc = avc_has_extended_perms(ssid, isec->sid, isec->sclass, requested,
4598 isec->sclass = inode_mode_to_security_class(inode->i_mode);
4924 return avc_has_perm(current_sid(), sksec->sid, sksec->sclass, perms,
4953 u16 sclass = socket_type_to_security_class(family, type, protocol);
4958 err = socket_sockcreate_sid(crsec, sclass, &sid);
4963 isec->sclass = sclass;
4969 sksec->sclass = sclass;
4972 if (sksec->sclass == SECCLASS_SCTP_SOCKET)
5081 sksec->sclass,
5088 switch (sksec->sclass) {
5116 sksec->sclass, node_perm, &ad);
5155 if (sksec->sclass == SECCLASS_TCP_SOCKET ||
5156 sksec->sclass == SECCLASS_SCTP_SOCKET) {
5186 if (sksec->sclass == SECCLASS_SCTP_SOCKET)
5196 switch (sksec->sclass) {
5209 err = avc_has_perm(sksec->sid, sid, sksec->sclass, perm, &ad);
5241 u16 sclass;
5250 sclass = isec->sclass;
5255 newisec->sclass = sclass;
5320 sksec_other->sclass,
5348 return avc_has_perm(ssec->sid, osec->sid, osec->sclass, SOCKET__SENDTO,
5479 if (sksec->sclass == SECCLASS_UNIX_STREAM_SOCKET ||
5480 sksec->sclass == SECCLASS_TCP_SOCKET ||
5481 sksec->sclass == SECCLASS_SCTP_SOCKET)
5540 sksec->sclass = SECCLASS_SOCKET;
5560 newsksec->sclass = sksec->sclass;
5585 sksec->sclass = isec->sclass;
5637 sksec->sclass, SCTP_SOCKET__ASSOCIATION,
5795 newsksec->sclass = sksec->sclass;
5804 ssksec->sclass = sksec->sclass;
5930 sksec->sclass = SECCLASS_TUN_SOCKET;
6236 return avc_has_extended_perms(current_sid(), sksec->sid, sksec->sclass,
6248 u16 sclass = sksec->sclass;
6263 rc = selinux_nlmsg_lookup(sclass, nlh->nlmsg_type, &perm);
6276 " message: protocol=%hu nlmsg_type=%hu sclass=%s"
6279 secclass_map[sclass - 1].name,
6303 static void ipc_init_security(struct ipc_security_struct *isec, u16 sclass)
6305 isec->sclass = sclass;
6321 return avc_has_perm(sid, isec->sid, isec->sclass, perms, &ad);
7356 u16 sclass;
7363 sclass = initns ? SECCLASS_CAPABILITY : SECCLASS_CAP_USERNS;
7366 sclass = initns ? SECCLASS_CAPABILITY2 : SECCLASS_CAP2_USERNS;
7373 return avc_has_perm(current_sid(), bpfsec->grantor_sid, sclass, av,