Home
last modified time | relevance | path

Searched refs:aa_label (Results 1 – 25 of 34) sorted by relevance

12

/linux/security/apparmor/include/
H A Dlabel.h60 struct aa_label *aa_vec_find_or_create_label(struct aa_profile **vec, int len,
103 struct aa_label;
106 struct aa_label __rcu *label;
127 struct aa_label { struct
168 int aa_label_next_confined(struct aa_label *l, int i);
249 static inline bool label_mediates(struct aa_label *L, unsigned char C) in label_mediates()
254 static inline bool label_mediates_safe(struct aa_label *L, unsigned char C) in label_mediates_safe()
265 void aa_label_destroy(struct aa_label *label);
266 void aa_label_free(struct aa_label *label);
268 bool aa_label_init(struct aa_label *label, int size, gfp_t gfp);
[all …]
H A Dcred.h22 static inline struct aa_label *cred_label(const struct cred *cred) in cred_label()
24 struct aa_label **blob = cred->security + apparmor_blob_sizes.lbs_cred; in cred_label()
31 struct aa_label *label) in set_cred_label()
33 struct aa_label **blob = cred->security + apparmor_blob_sizes.lbs_cred; in set_cred_label()
45 static inline struct aa_label *aa_get_newest_cred_label(const struct cred *cred) in aa_get_newest_cred_label()
50 static inline struct aa_label *aa_get_newest_cred_label_condref(const struct cred *cred, in aa_get_newest_cred_label_condref()
53 struct aa_label *l = cred_label(cred); in aa_get_newest_cred_label_condref()
64 static inline void aa_put_label_condref(struct aa_label *l, bool needput) in aa_put_label_condref()
78 static inline struct aa_label *aa_current_raw_label(void) in aa_current_raw_label()
92 static inline struct aa_label *aa_get_current_label(void) in aa_get_current_label()
[all …]
H A Dtask.h26 struct aa_label *nnp;
27 struct aa_label *onexec;
28 struct aa_label *previous;
32 int aa_replace_current_label(struct aa_label *label);
33 void aa_set_current_onexec(struct aa_label *label, bool stack);
34 int aa_set_current_hat(struct aa_label *label, u64 token);
36 struct aa_label *aa_get_task_label(struct task_struct *task);
94 int aa_may_ptrace(const struct cred *tracer_cred, struct aa_label *tracer,
95 const struct cred *tracee_cred, struct aa_label *tracee,
H A Dmount.h29 struct aa_label *label, const struct path *path,
33 struct aa_label *label, const struct path *path,
38 struct aa_label *label, const struct path *path,
42 struct aa_label *label, const struct path *path,
45 struct aa_label *label, const struct path *from_path,
49 struct aa_label *label, const char *dev_name,
54 struct aa_label *label, struct vfsmount *mnt, int flags);
57 struct aa_label *label, const struct path *old_path,
H A Dnet.h50 struct aa_label __rcu *label;
51 struct aa_label __rcu *peer;
52 struct aa_label __rcu *peer_lastupdate; /* ptr cmp only, no deref */
99 int aa_af_perm(const struct cred *subj_cred, struct aa_label *label,
112 int aa_sock_file_perm(const struct cred *subj_cred, struct aa_label *label,
116 int apparmor_secmark_check(struct aa_label *label, char *op, u32 request,
H A Dfile.h44 struct aa_label __rcu *label;
77 const char *target, struct aa_label *tlabel, kuid_t ouid,
92 struct aa_label *label, const struct path *path,
95 int aa_path_link(const struct cred *subj_cred, struct aa_label *label,
100 struct aa_label *label, struct file *file,
H A Daf_unix.h36 struct aa_label *label, const char *op, u32 request,
38 struct aa_label *peer_label);
40 int aa_unix_create_perm(struct aa_label *label, int family, int type,
52 int aa_unix_file_perm(const struct cred *subj_cred, struct aa_label *label,
H A Dresource.h36 int aa_task_setrlimit(const struct cred *subj_cred, struct aa_label *label,
40 void __aa_transition_rlimits(struct aa_label *old, struct aa_label *new);
H A Dpolicy.h281 struct aa_label label;
304 struct aa_profile *aa_fqlookupn_profile(struct aa_label *base,
307 ssize_t aa_replace_profiles(struct aa_ns *view, struct aa_label *label,
309 ssize_t aa_remove_profiles(struct aa_ns *view, struct aa_label *label,
441 struct aa_label *label, struct aa_ns *ns);
443 struct aa_label *label, struct aa_ns *ns);
445 struct aa_label *label, struct aa_ns *ns,
H A Dipc.h19 int aa_may_signal(const struct cred *subj_cred, struct aa_label *sender,
20 const struct cred *target_cred, struct aa_label *target,
H A Dcapability.h18 struct aa_label;
40 int aa_capable(const struct cred *subj_cred, struct aa_label *label,
H A Daudit.h117 struct aa_label *subj_label;
127 struct aa_label *peer;
165 struct aa_label *target;
/linux/security/apparmor/
H A Dlabel.c48 RCU_INIT_POINTER(proxy->label, (struct aa_label *)PROXY_POISON); in free_proxy()
61 struct aa_proxy *aa_alloc_proxy(struct aa_label *label, gfp_t gfp) in aa_alloc_proxy()
75 void __aa_proxy_redirect(struct aa_label *orig, struct aa_label *new) in __aa_proxy_redirect()
77 struct aa_label *tmp; in __aa_proxy_redirect()
90 static void __proxy_share(struct aa_label *old, struct aa_label *new) in __proxy_share()
203 static void accum_label_info(struct aa_label *new) in accum_label_info()
323 void aa_label_destroy(struct aa_label *label) in aa_label_destroy()
350 void aa_label_free(struct aa_label *label) in aa_label_free()
359 static void label_free_switch(struct aa_label *label) in label_free_switch()
371 struct aa_label *label = container_of(head, struct aa_label, rcu); in label_free_rcu()
[all …]
H A Dtask.c30 struct aa_label *aa_get_task_label(struct task_struct *task) in aa_get_task_label()
32 struct aa_label *p; in aa_get_task_label()
47 int aa_replace_current_label(struct aa_label *label) in aa_replace_current_label()
49 struct aa_label *old = aa_current_raw_label(); in aa_replace_current_label()
66 struct aa_label *tmp = ctx->nnp; in aa_replace_current_label()
98 void aa_set_current_onexec(struct aa_label *label, bool stack) in aa_set_current_onexec()
118 int aa_set_current_hat(struct aa_label *label, u64 token) in aa_set_current_hat()
229 struct aa_label *peer, u32 request, in profile_ptrace_perm()
245 struct aa_label *tracer, u32 request, in profile_tracee_perm()
257 struct aa_label *tracee, u32 request, in profile_tracer_perm()
[all …]
H A Daf_unix.c34 struct aa_label *label, const struct path *path) in unix_fs_perm()
392 struct aa_label *peer_label, in profile_peer_perm()
429 int aa_unix_create_perm(struct aa_label *label, int family, int type, in aa_unix_create_perm()
446 struct aa_label *label, in aa_unix_label_sk_perm()
464 struct aa_label *label; in aa_unix_sock_perm()
491 struct aa_label *label; in aa_unix_bind_perm()
530 struct aa_label *label; in aa_unix_listen_perm()
551 struct aa_label *label; in aa_unix_accept_perm()
584 struct aa_label *label; in aa_unix_opt_perm()
601 struct aa_label *label, const char *op, u32 request, in unix_peer_perm()
[all …]
H A Ddomain.c49 struct aa_label *to_label, in may_change_ptraced_domain()
53 struct aa_label *tracerl = NULL; in may_change_ptraced_domain()
129 struct aa_label *label, bool stack, in label_compound_match()
191 struct aa_label *label, bool stack, in label_components_match()
254 static int label_match(struct aa_profile *profile, struct aa_label *label, in label_match()
289 struct aa_label *target, bool stack, in change_profile_perms()
389 static struct aa_label *find_attach(const struct linux_binprm *bprm, in find_attach()
517 struct aa_label *x_table_lookup(struct aa_profile *profile, u32 xindex, in x_table_lookup()
521 struct aa_label *label = NULL; in x_table_lookup()
568 static struct aa_label *x_to_label(struct aa_profile *profile, in x_to_label()
[all …]
H A Dfile.c98 const char *target, struct aa_label *tlabel, in aa_audit_file()
150 struct aa_label *label, in path_name()
281 struct aa_label *label, in aa_path_perm()
431 struct aa_label *label, struct dentry *old_dentry, in aa_path_link()
462 static void update_file_ctx(struct aa_file_ctx *fctx, struct aa_label *label, in update_file_ctx()
465 struct aa_label *l, *old; in update_file_ctx()
484 struct aa_label *label, in __file_path_perm()
485 struct aa_label *flabel, struct file *file, in __file_path_perm()
545 struct aa_label *label, in __file_sock_perm()
546 struct aa_label *flabel, struct file *file, in __file_sock_perm()
[all …]
H A Dlsm.c128 struct aa_label *tracer, *tracee; in apparmor_ptrace_access_check()
147 struct aa_label *tracer, *tracee; in apparmor_ptrace_traceme()
167 struct aa_label *label; in apparmor_capget()
199 struct aa_label *label; in apparmor_capable()
222 struct aa_label *label; in common_perm()
367 struct aa_label *label; in apparmor_path_link()
386 struct aa_label *label; in apparmor_path_rename()
463 struct aa_label *label; in apparmor_file_open()
507 struct aa_label *label = begin_current_label_crit_section(); in apparmor_file_alloc_security()
525 struct aa_label *label; in common_file_perm()
[all …]
H A Dresource.c58 unsigned long value, struct aa_label *peer, in audit_resource()
114 int aa_task_setrlimit(const struct cred *subj_cred, struct aa_label *label, in aa_task_setrlimit()
119 struct aa_label *peer; in aa_task_setrlimit()
153 void __aa_transition_rlimits(struct aa_label *old_l, struct aa_label *new_l) in __aa_transition_rlimits()
H A Dmount.c395 struct aa_label *label, const struct path *path, in aa_remount()
421 struct aa_label *label, const struct path *path, in aa_bind_mount()
459 struct aa_label *label, const struct path *path, in aa_mount_change_type()
486 struct aa_label *label, const struct path *from_path, in aa_move_mount()
517 int aa_move_mount_old(const struct cred *subj_cred, struct aa_label *label, in aa_move_mount_old()
535 int aa_new_mount(const struct cred *subj_cred, struct aa_label *label, in aa_new_mount()
635 int aa_umount(const struct cred *subj_cred, struct aa_label *label, in aa_umount()
661 static struct aa_label *build_pivotroot(const struct cred *subj_cred, in build_pivotroot()
716 int aa_pivotroot(const struct cred *subj_cred, struct aa_label *label, in aa_pivotroot()
721 struct aa_label *target = NULL; in aa_pivotroot()
H A Dipc.c80 struct aa_label *peer, u32 request, in profile_signal_perm()
102 int aa_may_signal(const struct cred *subj_cred, struct aa_label *sender, in aa_may_signal()
103 const struct cred *target_cred, struct aa_label *target, in aa_may_signal()
H A Dnet.c272 int aa_af_perm(const struct cred *subj_cred, struct aa_label *label, in aa_af_perm()
284 struct aa_label *label, in aa_label_sk_perm()
308 struct aa_label *label; in aa_sk_perm()
323 int aa_sock_file_perm(const struct cred *subj_cred, struct aa_label *label, in aa_sock_file_perm()
342 struct aa_label *label; in apparmor_secmark_init()
395 int apparmor_secmark_check(struct aa_label *label, char *op, u32 request, in apparmor_secmark_check()
H A Dpolicy.c156 struct aa_label *l; in __add_profile()
655 struct aa_profile *aa_fqlookupn_profile(struct aa_label *base, in aa_fqlookupn_profile()
842 static int audit_policy(struct aa_label *subj_label, const char *op, in audit_policy()
863 struct aa_label *label, in policy_ns_capable()
888 struct aa_label *label, struct aa_ns *ns) in aa_policy_view_capable()
908 struct aa_label *label, struct aa_ns *ns) in aa_policy_admin_capable()
923 struct aa_label *label; in aa_current_policy_view_capable()
935 struct aa_label *label; in aa_current_policy_admin_capable()
946 struct aa_label *label, in is_subset_of_obj_privilege()
981 int aa_may_manage_policy(const struct cred *subj_cred, struct aa_label *label, in aa_may_manage_policy()
[all …]
H A Daudit.c117 struct aa_label *label = ad->subj_label; in audit_pre()
206 struct aa_label *label;
270 struct aa_label *label; in aa_audit_rule_match()
H A Dapparmorfs.c161 struct aa_label *reflabel = container_of(ref, struct aa_label, in get_ns_common_ref()
201 aa_put_ns(labels_ns(container_of(ref, struct aa_label, count))); in aa_put_common_ref()
498 struct aa_label *label; in policy_update()
565 struct aa_label *label; in profile_remove()
761 struct aa_label *label, *curr; in query_data()
852 struct aa_label *label, *curr; in query_label()
1165 struct aa_label *label = aa_get_label_rcu(&proxy->label); in seq_profile_name_show()
1176 struct aa_label *label = aa_get_label_rcu(&proxy->label); in seq_profile_mode_show()
1187 struct aa_label *label = aa_get_label_rcu(&proxy->label); in seq_profile_attach_show()
1203 struct aa_label *label = aa_get_label_rcu(&proxy->label); in seq_profile_hash_show()
[all …]

12