Home
last modified time | relevance | path

Searched refs:denied (Results 1 – 25 of 45) sorted by relevance

12

/Linux-v5.10/security/selinux/include/
Davc.h53 u32 denied; member
70 u32 denied, audited; in avc_audit_required() local
71 denied = requested & ~avd->allowed; in avc_audit_required()
72 if (unlikely(denied)) { in avc_audit_required()
73 audited = denied & avd->auditdeny; in avc_audit_required()
93 audited = denied = requested; in avc_audit_required()
96 *deniedp = denied; in avc_audit_required()
102 u32 requested, u32 audited, u32 denied, int result,
133 u32 audited, denied; in avc_audit() local
134 audited = avc_audit_required(requested, avd, result, 0, &denied); in avc_audit()
[all …]
/Linux-v5.10/security/apparmor/
Dlib.c272 if (aad(sa)->denied) { in aa_audit_perms_cb()
274 aa_audit_perm_mask(ab, aad(sa)->denied, aa_file_perm_chrs, in aa_audit_perms_cb()
434 u32 denied = request & (~perms->allow | perms->deny); in aa_check_perms() local
436 if (likely(!denied)) { in aa_check_perms()
447 if (denied & perms->kill) in aa_check_perms()
449 else if (denied == (denied & perms->complain)) in aa_check_perms()
454 if (denied == (denied & perms->hide)) in aa_check_perms()
457 denied &= ~perms->quiet; in aa_check_perms()
458 if (!sa || !denied) in aa_check_perms()
465 aad(sa)->denied = denied; in aa_check_perms()
Dfile.c53 if (aad(sa)->denied & AA_AUDIT_FILE_MASK) { in file_audit_cb()
55 map_mask_to_chr_mask(aad(sa)->denied)); in file_audit_cb()
138 aad(&sa)->denied = aad(&sa)->request & ~perms->allow; in aa_audit_file()
507 u32 request, u32 denied, bool in_atomic) in __file_path_perm() argument
519 if (!denied && aa_label_is_subset(flabel, label)) in __file_path_perm()
532 if (denied && !error) { in __file_path_perm()
562 u32 request, u32 denied) in __file_sock_perm() argument
570 if (!denied && aa_label_is_subset(flabel, label)) in __file_sock_perm()
575 if (denied) { in __file_sock_perm()
601 u32 denied; in aa_file_perm() local
[all …]
Dipc.c51 if (aad(sa)->denied & AA_PTRACE_PERM_MASK) { in audit_ptrace_cb()
53 audit_ptrace_mask(aad(sa)->denied)); in audit_ptrace_cb()
169 if (aad(sa)->denied & AA_SIGNAL_PERM_MASK) { in audit_signal_cb()
171 audit_signal_mask(aad(sa)->denied)); in audit_signal_cb()
Dnet.c94 if (aad(sa)->denied & NET_PERMS_MASK) { in audit_net_cb()
96 aa_audit_perm_mask(ab, aad(sa)->denied, NULL, 0, in audit_net_cb()
Dcapability.c120 !cap_raised(profile->caps.denied, cap)) in profile_capable()
/Linux-v5.10/include/trace/events/
Davc.h26 __field(u32, denied)
36 __entry->denied = sad->denied;
45 __entry->requested, __entry->denied, __entry->audited, __entry->result,
/Linux-v5.10/security/selinux/
Davc.c393 u32 denied, audited; in avc_xperms_audit_required() local
395 denied = requested & ~avd->allowed; in avc_xperms_audit_required()
396 if (unlikely(denied)) { in avc_xperms_audit_required()
397 audited = denied & avd->auditdeny; in avc_xperms_audit_required()
403 audited = denied = requested; in avc_xperms_audit_required()
412 *deniedp = denied; in avc_xperms_audit_required()
423 u32 audited, denied; in avc_xperms_audit() local
426 requested, avd, xpd, perm, result, &denied); in avc_xperms_audit()
430 audited, denied, result, ad); in avc_xperms_audit()
671 audit_log_format(ab, "avc: %s ", sad->denied ? "denied" : "granted"); in avc_audit_pre_callback()
[all …]
/Linux-v5.10/Documentation/ABI/stable/
Dsysfs-hypervisor-xen7 Might return "<denied>" in case of special security settings
16 Might return "<denied>" in case of special security settings
25 Might return "<denied>" in case of special security settings
56 Might return "<denied>" in case of special security settings
105 Might return "<denied>" in case of special security settings
/Linux-v5.10/Documentation/userspace-api/ioctl/
Dhdio.rst185 - EACCES Access denied: requires CAP_SYS_ADMIN
235 - EACCES Access denied: requires CAP_SYS_ADMIN
359 - EACCES Access denied: requires CAP_SYS_ADMIN
487 - EACCES Access denied: requires CAP_SYS_ADMIN
596 - EACCES Access denied: requires CAP_SYS_ADMIN
622 - EACCES Access denied: requires CAP_SYS_RAWIO
658 - EACCES Access denied: requires CAP_SYS_ADMIN
947 - EACCES Access denied: requires CAP_SYS_RAWIO
1016 - EACCES Access denied: requires CAP_SYS_RAWIO
1059 - EACCES Access denied: requires CAP_SYS_ADMIN
[all …]
/Linux-v5.10/Documentation/admin-guide/cgroup-v1/
Ddevices.rst19 never receive a device access which is denied by its parent.
77 If a device is denied in group A::
84 group whitelist entries denied devices
97 group whitelist entries denied devices
107 group whitelist entries denied devices
/Linux-v5.10/security/apparmor/include/
Dcapability.h31 kernel_cap_t denied; member
Daudit.h115 u32 denied; member
/Linux-v5.10/Documentation/ABI/testing/
Dsysfs-class-power-wilco26 be denied by Wilco EC when Long Life mode is enabled.
Dsysfs-hypervisor-xen45 Might return "<denied>" in case of special security settings
Dsysfs-block-device35 access is denied with -EOPNOTSUPP.
/Linux-v5.10/Documentation/userspace-api/media/
Dgen-errors.rst74 - Permission denied. Can be returned if the device needs write
/Linux-v5.10/Documentation/admin-guide/
Dmono.rst69 If this fails with a permission denied error, check
/Linux-v5.10/drivers/isdn/mISDN/
Dtei.c856 goto denied; in new_tei_req()
858 goto denied; in new_tei_req()
865 goto denied; in new_tei_req()
869 goto denied; in new_tei_req()
873 denied: in new_tei_req()
/Linux-v5.10/tools/perf/Documentation/
Dsecurity.txt156 output would contain AVC denied records related to perf_event:
163 …audit[1318098]: AVC avc: denied { open } for pid=1318098 comm="perf" scontext=unconfined_u:unco…
/Linux-v5.10/fs/nfsd/
Dxdr4.h182 struct nfsd4_lock_denied denied; member
194 #define lk_denied u.denied
/Linux-v5.10/Documentation/security/
DSCTP.rst216 to determine whether the association should be allowed or denied.
309 the association should be allowed or denied.
/Linux-v5.10/drivers/scsi/cxlflash/
Dsuperpipe.c211 goto denied; in get_context()
216 goto denied; in get_context()
222 goto denied; in get_context()
233 denied: in get_context()
/Linux-v5.10/Documentation/admin-guide/LSM/
DSmack.rst482 1. Any access requested by a task labeled "*" is denied.
492 7. Any other access is denied.
621 be denied otherwise. CAP_MAC_ADMIN allows a process to change
832 By default, all denied events will be audited. You can change this behavior by
836 1 : log denied (default)
838 3 : log denied & accepted
/Linux-v5.10/Documentation/userspace-api/media/v4l/
Dvidioc-enuminput.rst191 - Conditional access denied.

12