Lines Matching defs:security
3 * Security-Enhanced Linux (SELinux) security module
211 * initialise the security for the init task
224 * get the security ID of a set of credentials
260 * get the objective security ID of a task
275 * Try reloading inode security labels that have been marked as invalid. The
294 * reloading the inode security label if necessary. This will fail if
323 * Get the security label of an inode.
342 * Get the security label of a dentry's backing inode.
365 * As not all inode security structures are in a list, we check for
538 pr_warn("SELinux: (dev %s, type %s) has no security xattr handler\n",
665 after the initial policy is loaded and the security
675 "before the security server is initialized\n");
682 * Since the generic VFS calls will not contain any security mount data
687 * this sb does not set any security options. (The first options
699 * than once with different security options.
776 * line and security labels must be ignored.
886 "security settings for (dev %s, type %s)\n", sb->s_id,
918 "different security settings for (dev %s, "
1028 pr_warn("SELinux: Unable to set superblock options before the security server is initialized\n");
1429 /* The inode's security attributes must be initialized before first use. */
1453 after the initial policy is loaded and the security
2267 /* binprm security operations */
2605 /* superblock security operations */
2779 pr_warn("SELinux: unable to change security options "
2843 * Ensure that fc->security remains NULL when no options are set
2859 fc->security = opts;
2866 const struct selinux_mnt_opts *src = src_fc->security;
2871 fc->security = kmemdup(src, sizeof(*src), GFP_KERNEL);
2872 return fc->security ? 0 : -ENOMEM;
2894 return selinux_add_opt(opt, param->string, &fc->security);
2897 /* inode security operations */
3061 * Now that we've initialized security, check whether we're
3155 * @tsec: the task's security state
3170 * @tsec: the task's security state
3209 * @tsec: the task's security state
3537 /* No one is allowed to remove a SELinux security label.
3603 * Copy the inode security context value to the user.
3798 /* file security operations */
4259 * Task label is already saved in the file security
4275 /* task security operations */
4323 * set the security data for a kernel service
4346 * set the file creation context in a security record to the same as the
4819 * the security server function security_net_peersid_cmp(). The function
4876 /* socket security operations */
5130 * and sctp_sendmsg(3) as described in Documentation/security/SCTP.rst
5886 static int selinux_tun_dev_alloc_security(void *security)
5888 struct tun_security_struct *tunsec = selinux_tun_dev(security);
5909 static int selinux_tun_dev_attach_queue(void *security)
5911 struct tun_security_struct *tunsec = selinux_tun_dev(security);
5917 static int selinux_tun_dev_attach(struct sock *sk, void *security)
5919 struct tun_security_struct *tunsec = selinux_tun_dev(security);
5935 static int selinux_tun_dev_open(void *security)
5937 struct tun_security_struct *tunsec = selinux_tun_dev(security);
6038 * security label in the packet itself this is the
6133 * query the packet directly to determine the security label. */
6145 * this particular case the correct security label is assigned
6182 /* Locally generated packet, fetch the security label from the
6334 /* message queue security operations */
6461 /* Shared Memory security operations */
6539 /* Semaphore security operations */
7337 bpfsec = token->security;
7357 struct bpf_security_struct *bpfsec = token->security;
7402 perfsec = selinux_perf_event(event->security);
7410 struct perf_event_security_struct *perfsec = event->security;
7419 struct perf_event_security_struct *perfsec = event->security;
7833 /* Set the security state for the initial task. */