4470 	struct sk_security_struct *sksec = sk->sk_security;  in sock_has_perm()  local
4474 	if (sksec->sid == SECINITSID_KERNEL)  in sock_has_perm()
4482 			    current_sid(), sksec->sid, sksec->sclass, perms,  in sock_has_perm()
4511 	struct sk_security_struct *sksec;  in selinux_socket_post_create()  local
4527 		sksec = sock->sk->sk_security;  in selinux_socket_post_create()
4528 		sksec->sclass = sclass;  in selinux_socket_post_create()
4529 		sksec->sid = sid;  in selinux_socket_post_create()
4531 		if (sksec->sclass == SECCLASS_SCTP_SOCKET)  in selinux_socket_post_create()
4532 			sksec->sctp_assoc_state = SCTP_ASSOC_UNSET;  in selinux_socket_post_create()
4559 	struct sk_security_struct *sksec = sk->sk_security;  in selinux_socket_bind()  local
4633 						   sksec->sid, sid,  in selinux_socket_bind()
4634 						   sksec->sclass,  in selinux_socket_bind()
4641 		switch (sksec->sclass) {  in selinux_socket_bind()
4673 				   sksec->sid, sid,  in selinux_socket_bind()
4674 				   sksec->sclass, node_perm, &ad);  in selinux_socket_bind()
4682 	if (sksec->sclass == SECCLASS_SCTP_SOCKET)  in selinux_socket_bind()
4694 	struct sk_security_struct *sksec = sk->sk_security;  in selinux_socket_connect_helper()  local
4713 	if (sksec->sclass == SECCLASS_TCP_SOCKET ||  in selinux_socket_connect_helper()
4714 	    sksec->sclass == SECCLASS_DCCP_SOCKET ||  in selinux_socket_connect_helper()
4715 	    sksec->sclass == SECCLASS_SCTP_SOCKET) {  in selinux_socket_connect_helper()
4745 			if (sksec->sclass == SECCLASS_SCTP_SOCKET)  in selinux_socket_connect_helper()
4755 		switch (sksec->sclass) {  in selinux_socket_connect_helper()
4772 				   sksec->sid, sid, sksec->sclass, perm, &ad);  in selinux_socket_connect_helper()
4950 	struct sk_security_struct *sksec = sk->sk_security;  in selinux_sock_rcv_skb_compat()  local
4951 	u32 sk_sid = sksec->sid;  in selinux_sock_rcv_skb_compat()
4972 	err = selinux_netlbl_sock_rcv_skb(sksec, skb, family, &ad);  in selinux_sock_rcv_skb_compat()
4975 	err = selinux_xfrm_sock_rcv_skb(sksec->sid, skb, &ad);  in selinux_sock_rcv_skb_compat()
4983 	struct sk_security_struct *sksec = sk->sk_security;  in selinux_socket_sock_rcv_skb()  local
4985 	u32 sk_sid = sksec->sid;  in selinux_socket_sock_rcv_skb()
5057 	struct sk_security_struct *sksec = sock->sk->sk_security;  in selinux_socket_getpeersec_stream()  local
5060 	if (sksec->sclass == SECCLASS_UNIX_STREAM_SOCKET ||  in selinux_socket_getpeersec_stream()
5061 	    sksec->sclass == SECCLASS_TCP_SOCKET ||  in selinux_socket_getpeersec_stream()
5062 	    sksec->sclass == SECCLASS_SCTP_SOCKET)  in selinux_socket_getpeersec_stream()
5063 		peer_sid = sksec->peer_sid;  in selinux_socket_getpeersec_stream()
5117 	struct sk_security_struct *sksec;  in selinux_sk_alloc_security()  local
5119 	sksec = kzalloc(sizeof(*sksec), priority);  in selinux_sk_alloc_security()
5120 	if (!sksec)  in selinux_sk_alloc_security()
5123 	sksec->peer_sid = SECINITSID_UNLABELED;  in selinux_sk_alloc_security()
5124 	sksec->sid = SECINITSID_UNLABELED;  in selinux_sk_alloc_security()
5125 	sksec->sclass = SECCLASS_SOCKET;  in selinux_sk_alloc_security()
5126 	selinux_netlbl_sk_security_reset(sksec);  in selinux_sk_alloc_security()
5127 	sk->sk_security = sksec;  in selinux_sk_alloc_security()
5134 	struct sk_security_struct *sksec = sk->sk_security;  in selinux_sk_free_security()  local
5137 	selinux_netlbl_sk_security_free(sksec);  in selinux_sk_free_security()
5138 	kfree(sksec);  in selinux_sk_free_security()
5143 	struct sk_security_struct *sksec = sk->sk_security;  in selinux_sk_clone_security()  local
5146 	newsksec->sid = sksec->sid;  in selinux_sk_clone_security()
5147 	newsksec->peer_sid = sksec->peer_sid;  in selinux_sk_clone_security()
5148 	newsksec->sclass = sksec->sclass;  in selinux_sk_clone_security()
5158 		struct sk_security_struct *sksec = sk->sk_security;  in selinux_sk_getsecid()  local
5160 		*secid = sksec->sid;  in selinux_sk_getsecid()
5168 	struct sk_security_struct *sksec = sk->sk_security;  in selinux_sock_graft()  local
5172 		isec->sid = sksec->sid;  in selinux_sock_graft()
5173 	sksec->sclass = isec->sclass;  in selinux_sock_graft()
5183 	struct sk_security_struct *sksec = ep->base.sk->sk_security;  in selinux_sctp_assoc_request()  local
5209 	if (sksec->sctp_assoc_state == SCTP_ASSOC_UNSET) {  in selinux_sctp_assoc_request()
5210 		sksec->sctp_assoc_state = SCTP_ASSOC_SET;  in selinux_sctp_assoc_request()
5217 		sksec->peer_sid = peer_sid;  in selinux_sctp_assoc_request()
5218 	} else if  (sksec->peer_sid != peer_sid) {  in selinux_sctp_assoc_request()
5226 				   sksec->peer_sid, peer_sid, sksec->sclass,  in selinux_sctp_assoc_request()
5238 	err = selinux_conn_sid(sksec->sid, peer_sid, &conn_sid);  in selinux_sctp_assoc_request()
5334 	struct sk_security_struct *sksec = sk->sk_security;  in selinux_sctp_sk_clone()  local
5345 	newsksec->sclass = sksec->sclass;  in selinux_sctp_sk_clone()
5352 	struct sk_security_struct *sksec = sk->sk_security;  in selinux_inet_conn_request()  local
5361 	err = selinux_conn_sid(sksec->sid, peersid, &connsid);  in selinux_inet_conn_request()
5390 	struct sk_security_struct *sksec = sk->sk_security;  in selinux_inet_conn_established()  local
5396 	selinux_skb_peerlbl_sid(skb, family, &sksec->peer_sid);  in selinux_inet_conn_established()
5474 	struct sk_security_struct *sksec = sk->sk_security;  in selinux_tun_dev_attach()  local
5483 	sksec->sid = tunsec->sid;  in selinux_tun_dev_attach()
5484 	sksec->sclass = SECCLASS_TUN_SOCKET;  in selinux_tun_dev_attach()
5515 	struct sk_security_struct *sksec = sk->sk_security;  in selinux_nlmsg_perm()  local
5523 	err = selinux_nlmsg_lookup(sksec->sclass, nlh->nlmsg_type, &perm);  in selinux_nlmsg_perm()
5530 			       secclass_map[sksec->sclass - 1].name,  in selinux_nlmsg_perm()
5638 		struct sk_security_struct *sksec;  in selinux_ip_output()  local
5656 		sksec = sk->sk_security;  in selinux_ip_output()
5657 		sid = sksec->sid;  in selinux_ip_output()
5687 	struct sk_security_struct *sksec;  in selinux_ip_postroute_compat()  local
5695 	sksec = sk->sk_security;  in selinux_ip_postroute_compat()
5706 				 sksec->sid, skb->secmark,  in selinux_ip_postroute_compat()
5710 	if (selinux_xfrm_postroute_last(sksec->sid, skb, &ad, proto))  in selinux_ip_postroute_compat()
5785 		struct sk_security_struct *sksec;  in selinux_ip_postroute()  local
5787 		sksec = sk->sk_security;  in selinux_ip_postroute()
5810 		if (selinux_conn_sid(sksec->sid, skb_sid, &peer_sid))  in selinux_ip_postroute()
5816 		struct sk_security_struct *sksec = sk->sk_security;  in selinux_ip_postroute()  local
5817 		peer_sid = sksec->sid;  in selinux_ip_postroute()