| /linux/Documentation/translations/zh_CN/security/ |
| H A D | credentials.rst | 459 ``f_cred`` 字段中,替代原来的 ``f_uid`` 和 ``f_gid`` 。原来访问
460 ``file->f_uid`` 和 ``file->f_gid`` 的代码现在应访问 ``file->f_cred->fsuid``
461 和 ``file->f_cred->fsgid`` 。
463 安全访问 ``f_cred`` 的情况下可以不使用RCU或加锁,因为指向凭据的指针
|
| /linux/security/safesetid/ |
| H A D | securityfs.c | 54 rule->src_id.uid = make_kuid(file->f_cred->user_ns, parsed_parent); in parse_policy_line()
55 rule->dst_id.uid = make_kuid(file->f_cred->user_ns, parsed_child); in parse_policy_line()
59 rule->src_id.gid = make_kgid(file->f_cred->user_ns, parsed_parent); in parse_policy_line()
60 rule->dst_id.gid = make_kgid(file->f_cred->user_ns, parsed_child); in parse_policy_line()
|
| /linux/include/rdma/ |
| H A D | ib.h | 78 return filp->f_cred == current_cred(); in ib_safe_file_access()
|
| /linux/kernel/module/ |
| H A D | procfs.c | 133 m->private = kallsyms_show_value(file->f_cred) ? NULL : (void *)8ul; in modules_open()
|
| H A D | sysfs.c | 47 kallsyms_show_value(file->f_cred) in module_sect_read()
|
| /linux/fs/efivarfs/ |
| H A D | file.c | 89 while (!__ratelimit(&file->f_cred->user->ratelimit)) in efivarfs_file_read()
|
| /linux/rust/kernel/fs/ |
| H A D | file.rs | 325 let ptr = unsafe { (*self.as_ptr()).f_cred }; in cred()
|
| /linux/security/landlock/ |
| H A D | task.c | 246 dom_other = landlock_cred(other->sk_socket->file->f_cred)->domain;
|
| H A D | fs.c | 1673 dom_other = landlock_cred(other->sk_socket->file->f_cred)->domain; in hook_file_open()
1746 landlock_get_applicable_subject(file->f_cred, any_fs, NULL); in hook_file_ioctl_common()
1823 landlock_log_denial(landlock_cred(file->f_cred), &(struct landlock_request) {
1859 landlock_log_denial(landlock_cred(file->f_cred), &(struct landlock_request) {
|
| /linux/fs/erofs/ |
| H A D | fileio.c | 59 scoped_with_creds(rq->iocb.ki_filp->f_cred) in erofs_fileio_rq_submit()
|
| /linux/net/sched/ |
| H A D | cls_flow.c | 208 kuid_t skuid = sk->sk_socket->file->f_cred->fsuid; in flow_get_skuid()
220 kgid_t skgid = sk->sk_socket->file->f_cred->fsgid; in flow_get_skgid()
|
| /linux/security/keys/ |
| H A D | proc.c | 167 .cred = m->file->f_cred, in proc_keys_show()
|
| /linux/Documentation/security/ |
| H A D | credentials.rst | 535 credentials and this is attached to the file struct as ``f_cred`` in place of
537 ``file->f_gid`` should now access ``file->f_cred->fsuid`` and
538 ``file->f_cred->fsgid``.
540 It is safe to access ``f_cred`` without the use of RCU or locking because the
|
| /linux/fs/coda/ |
| H A D | file.c | 272 coda_flags, coda_file->f_cred->fsuid); in coda_release()
|
| /linux/kernel/ |
| H A D | user_namespace.c | 895 const struct user_namespace *file_ns = file->f_cred->user_ns; in verify_root_map()
1176 const struct cred *cred = file->f_cred; in new_idmap_permitted()
|
| H A D | kallsyms.c | 901 iter->show_value = kallsyms_show_value(file->f_cred); in kallsyms_open()
|
| /linux/fs/nfs/ |
| H A D | localio.c | 688 scoped_with_creds(filp->f_cred) in nfs_local_call_read()
880 scoped_with_creds(filp->f_cred) in nfs_local_call_write()
|
| /linux/fs/autofs/ |
| H A D | waitq.c | 138 struct user_namespace *user_ns = sbi->pipe->f_cred->user_ns; in autofs_notify_daemon()
|
| /linux/fs/nfsd/ |
| H A D | nfsctl.c | 432 rv = nfsd_svc(1, &newthreads, net, file->f_cred, NULL); in write_threads()
804 return __write_ports_addfd(buf, net, file->f_cred); in __write_ports()
807 return __write_ports_addxprt(buf, net, file->f_cred); in __write_ports()
|
| /linux/fs/orangefs/ |
| H A D | devorangefs-req.c | 126 if (file->f_cred->user_ns != &init_user_ns) { in orangefs_devreq_open()
|
| /linux/security/apparmor/ |
| H A D | lsm.c | 483 label = aa_get_newest_cred_label_condref(file->f_cred, &needput); in apparmor_file_open()
494 error = aa_path_perm(OP_OPEN, file->f_cred, in apparmor_file_open()
1240 aa_unix_peer_perm(peer->file ? peer->file->f_cred : NULL, in apparmor_unix_may_send()
|
| H A D | apparmorfs.c | 520 f->f_cred); in profile_load()
538 buf, size, pos, ns, f->f_cred); in profile_replace()
563 f->f_cred, AA_MAY_REMOVE_POLICY); in profile_remove()
|
| /linux/kernel/bpf/ |
| H A D | syscall.c | 4946 const struct cred *f_cred) in bpf_insn_prepare_dump() argument
4975 if (!bpf_dump_raw_ok(f_cred)) in bpf_insn_prepare_dump()
5117 if (!prog->blinded || bpf_dump_raw_ok(file->f_cred)) { in bpf_prog_get_info_by_fd()
5118 insns_sanitized = bpf_insn_prepare_dump(prog, file->f_cred); in bpf_prog_get_info_by_fd()
5155 if (bpf_dump_raw_ok(file->f_cred)) { in bpf_prog_get_info_by_fd()
5190 if (bpf_dump_raw_ok(file->f_cred)) { in bpf_prog_get_info_by_fd()
5221 if (bpf_dump_raw_ok(file->f_cred)) { in bpf_prog_get_info_by_fd()
5279 if (bpf_dump_raw_ok(file->f_cred)) { in bpf_prog_get_info_by_fd()
|
| /linux/security/integrity/ima/ |
| H A D | ima_crypto.c | 269 f = dentry_open(&file->f_path, flags, file->f_cred); in ima_alloc_pages()
|
| /linux/fs/ |
| H A D | binfmt_misc.c | 820 scoped_with_creds(file->f_cred) in bm_register_write()
|