Home
last modified time | relevance | path

Searched refs:aa_label (Results 1 – 25 of 34) sorted by relevance

12

/Linux-v6.6/security/apparmor/include/
Dlabel.h59 struct aa_label *aa_vec_find_or_create_label(struct aa_profile **vec, int len,
102 struct aa_label;
105 struct aa_label __rcu *label;
123 struct aa_label { struct
153 int aa_label_next_confined(struct aa_label *l, int i); argument
277 void aa_label_destroy(struct aa_label *label);
278 void aa_label_free(struct aa_label *label);
280 bool aa_label_init(struct aa_label *label, int size, gfp_t gfp);
281 struct aa_label *aa_label_alloc(int size, struct aa_proxy *proxy, gfp_t gfp);
283 bool aa_label_is_subset(struct aa_label *set, struct aa_label *sub);
[all …]
Dcred.h22 static inline struct aa_label *cred_label(const struct cred *cred) in cred_label()
24 struct aa_label **blob = cred->security + apparmor_blob_sizes.lbs_cred; in cred_label()
31 struct aa_label *label) in set_cred_label()
33 struct aa_label **blob = cred->security + apparmor_blob_sizes.lbs_cred; in set_cred_label()
47 static inline struct aa_label *aa_cred_raw_label(const struct cred *cred) in aa_cred_raw_label()
49 struct aa_label *label = cred_label(cred); in aa_cred_raw_label()
61 static inline struct aa_label *aa_get_newest_cred_label(const struct cred *cred) in aa_get_newest_cred_label()
74 static inline struct aa_label *aa_current_raw_label(void) in aa_current_raw_label()
88 static inline struct aa_label *aa_get_current_label(void) in aa_get_current_label()
90 struct aa_label *l = aa_current_raw_label(); in aa_get_current_label()
[all …]
Dtask.h26 struct aa_label *nnp;
27 struct aa_label *onexec;
28 struct aa_label *previous;
32 int aa_replace_current_label(struct aa_label *label);
33 int aa_set_current_onexec(struct aa_label *label, bool stack);
34 int aa_set_current_hat(struct aa_label *label, u64 token);
36 struct aa_label *aa_get_task_label(struct task_struct *task);
94 int aa_may_ptrace(struct aa_label *tracer, struct aa_label *tracee,
Dmount.h28 int aa_remount(struct aa_label *label, const struct path *path,
31 int aa_bind_mount(struct aa_label *label, const struct path *path,
35 int aa_mount_change_type(struct aa_label *label, const struct path *path,
38 int aa_move_mount(struct aa_label *label, const struct path *path,
41 int aa_new_mount(struct aa_label *label, const char *dev_name,
45 int aa_umount(struct aa_label *label, struct vfsmount *mnt, int flags);
47 int aa_pivotroot(struct aa_label *label, const struct path *old_path,
Dfile.h44 struct aa_label __rcu *label;
55 static inline struct aa_file_ctx *aa_alloc_file_ctx(struct aa_label *label, in aa_alloc_file_ctx()
80 static inline struct aa_label *aa_get_file_label(struct aa_file_ctx *ctx) in aa_get_file_label()
113 const char *target, struct aa_label *tlabel, kuid_t ouid,
122 int aa_path_perm(const char *op, struct aa_label *label,
126 int aa_path_link(struct aa_label *label, struct dentry *old_dentry,
129 int aa_file_perm(const char *op, struct aa_label *label, struct file *file,
Dsecid.h16 struct aa_label;
27 struct aa_label *aa_secid_to_label(u32 secid);
33 int aa_alloc_secid(struct aa_label *label, gfp_t gfp);
35 void aa_secid_update(u32 secid, struct aa_label *label);
Dnet.h50 struct aa_label *label;
51 struct aa_label *peer;
95 int aa_af_perm(struct aa_label *label, const char *op, u32 request, u16 family,
107 int aa_sock_file_perm(struct aa_label *label, const char *op, u32 request,
110 int apparmor_secmark_check(struct aa_label *label, char *op, u32 request,
Dresource.h36 int aa_task_setrlimit(struct aa_label *label, struct task_struct *task,
39 void __aa_transition_rlimits(struct aa_label *old, struct aa_label *new);
Dpolicy.h218 struct aa_label label;
247 struct aa_profile *aa_fqlookupn_profile(struct aa_label *base,
251 ssize_t aa_replace_profiles(struct aa_ns *view, struct aa_label *label,
253 ssize_t aa_remove_profiles(struct aa_ns *view, struct aa_label *label,
373 bool aa_policy_view_capable(struct aa_label *label, struct aa_ns *ns);
374 bool aa_policy_admin_capable(struct aa_label *label, struct aa_ns *ns);
375 int aa_may_manage_policy(struct aa_label *label, struct aa_ns *ns,
Dipc.h16 int aa_may_signal(struct aa_label *sender, struct aa_label *target, int sig);
Dcapability.h18 struct aa_label;
39 int aa_capable(struct aa_label *label, int cap, unsigned int opts);
Daudit.h112 struct aa_label *label;
120 struct aa_label *peer;
Dprocattr.h14 int aa_getprocattr(struct aa_label *label, char **string);
/Linux-v6.6/security/apparmor/
Dlabel.c48 RCU_INIT_POINTER(proxy->label, (struct aa_label *)PROXY_POISON); in free_proxy()
60 struct aa_proxy *aa_alloc_proxy(struct aa_label *label, gfp_t gfp) in aa_alloc_proxy()
73 void __aa_proxy_redirect(struct aa_label *orig, struct aa_label *new) in __aa_proxy_redirect()
75 struct aa_label *tmp; in __aa_proxy_redirect()
88 static void __proxy_share(struct aa_label *old, struct aa_label *new) in __proxy_share()
315 void aa_label_destroy(struct aa_label *label) in aa_label_destroy()
342 void aa_label_free(struct aa_label *label) in aa_label_free()
351 static void label_free_switch(struct aa_label *label) in label_free_switch()
363 struct aa_label *label = container_of(head, struct aa_label, rcu); in label_free_rcu()
372 struct aa_label *label = container_of(kref, struct aa_label, count); in aa_label_kref()
[all …]
Dtask.c29 struct aa_label *aa_get_task_label(struct task_struct *task) in aa_get_task_label()
31 struct aa_label *p; in aa_get_task_label()
46 int aa_replace_current_label(struct aa_label *label) in aa_replace_current_label()
48 struct aa_label *old = aa_current_raw_label(); in aa_replace_current_label()
65 struct aa_label *tmp = ctx->nnp; in aa_replace_current_label()
98 int aa_set_current_onexec(struct aa_label *label, bool stack) in aa_set_current_onexec()
120 int aa_set_current_hat(struct aa_label *label, u64 token) in aa_set_current_hat()
229 struct aa_label *peer, u32 request, in profile_ptrace_perm()
244 struct aa_label *tracer, u32 request, in profile_tracee_perm()
255 struct aa_label *tracee, u32 request, in profile_tracer_perm()
[all …]
Dsecid.c47 void aa_secid_update(u32 secid, struct aa_label *label) in aa_secid_update()
59 struct aa_label *aa_secid_to_label(u32 secid) in aa_secid_to_label()
67 struct aa_label *label = aa_secid_to_label(secid); in apparmor_secid_to_secctx()
95 struct aa_label *label; in apparmor_secctx_to_secid()
119 int aa_alloc_secid(struct aa_label *label, gfp_t gfp) in aa_alloc_secid()
Dfile.c94 const char *target, struct aa_label *tlabel, in aa_audit_file()
144 static int path_name(const char *op, struct aa_label *label, in path_name()
261 int aa_path_perm(const char *op, struct aa_label *label, in aa_path_perm()
406 int aa_path_link(struct aa_label *label, struct dentry *old_dentry, in aa_path_link()
435 static void update_file_ctx(struct aa_file_ctx *fctx, struct aa_label *label, in update_file_ctx()
438 struct aa_label *l, *old; in update_file_ctx()
456 static int __file_path_perm(const char *op, struct aa_label *label, in __file_path_perm()
457 struct aa_label *flabel, struct file *file, in __file_path_perm()
513 static int __file_sock_perm(const char *op, struct aa_label *label, in __file_sock_perm()
514 struct aa_label *flabel, struct file *file, in __file_sock_perm()
[all …]
Ddomain.c42 static int may_change_ptraced_domain(struct aa_label *to_label, in may_change_ptraced_domain()
46 struct aa_label *tracerl = NULL; in may_change_ptraced_domain()
118 struct aa_label *label, bool stack, in label_compound_match()
180 struct aa_label *label, bool stack, in label_components_match()
242 static int label_match(struct aa_profile *profile, struct aa_label *label, in label_match()
276 struct aa_label *target, bool stack, in change_profile_perms()
377 static struct aa_label *find_attach(const struct linux_binprm *bprm, in find_attach()
505 struct aa_label *x_table_lookup(struct aa_profile *profile, u32 xindex, in x_table_lookup()
510 struct aa_label *label = NULL; in x_table_lookup()
553 static struct aa_label *x_to_label(struct aa_profile *profile, in x_to_label()
[all …]
Dresource.c55 unsigned long value, struct aa_label *peer, in audit_resource()
109 int aa_task_setrlimit(struct aa_label *label, struct task_struct *task, in aa_task_setrlimit()
113 struct aa_label *peer; in aa_task_setrlimit()
146 void __aa_transition_rlimits(struct aa_label *old_l, struct aa_label *new_l) in __aa_transition_rlimits()
Dnet.c136 int aa_af_perm(struct aa_label *label, const char *op, u32 request, u16 family, in aa_af_perm()
147 static int aa_label_sk_perm(struct aa_label *label, const char *op, u32 request, in aa_label_sk_perm()
169 struct aa_label *label; in aa_sk_perm()
184 int aa_sock_file_perm(struct aa_label *label, const char *op, u32 request, in aa_sock_file_perm()
197 struct aa_label *label; in apparmor_secmark_init()
251 int apparmor_secmark_check(struct aa_label *label, char *op, u32 request, in apparmor_secmark_check()
Dlsm.c118 struct aa_label *tracer, *tracee; in apparmor_ptrace_access_check()
134 struct aa_label *tracer, *tracee; in apparmor_ptrace_traceme()
150 struct aa_label *label; in apparmor_capget()
186 struct aa_label *label; in apparmor_capable()
209 struct aa_label *label; in common_perm()
352 struct aa_label *label; in apparmor_path_link()
370 struct aa_label *label; in apparmor_path_rename()
443 struct aa_label *label; in apparmor_file_open()
483 struct aa_label *label = begin_current_label_crit_section(); in apparmor_file_alloc_security()
502 struct aa_label *label; in common_file_perm()
[all …]
Dipc.c78 struct aa_label *peer, u32 request, in profile_signal_perm()
100 int aa_may_signal(struct aa_label *sender, struct aa_label *target, int sig) in aa_may_signal()
Dmount.c385 int aa_remount(struct aa_label *label, const struct path *path, in aa_remount()
409 int aa_bind_mount(struct aa_label *label, const struct path *path, in aa_bind_mount()
446 int aa_mount_change_type(struct aa_label *label, const struct path *path, in aa_mount_change_type()
471 int aa_move_mount(struct aa_label *label, const struct path *path, in aa_move_mount()
505 int aa_new_mount(struct aa_label *label, const char *dev_name, in aa_new_mount()
602 int aa_umount(struct aa_label *label, struct vfsmount *mnt, int flags) in aa_umount()
627 static struct aa_label *build_pivotroot(struct aa_profile *profile, in build_pivotroot()
681 int aa_pivotroot(struct aa_label *label, const struct path *old_path, in aa_pivotroot()
685 struct aa_label *target = NULL; in aa_pivotroot()
Daudit.c118 struct aa_label *label = aad(sa)->label; in audit_pre()
205 struct aa_label *label;
269 struct aa_label *label; in aa_audit_rule_match()
Dpolicy.c112 struct aa_label *l; in __add_profile()
549 struct aa_profile *aa_fqlookupn_profile(struct aa_label *base, in aa_fqlookupn_profile()
742 static int audit_policy(struct aa_label *label, const char *op, in audit_policy()
762 static int policy_ns_capable(struct aa_label *label, in policy_ns_capable()
784 bool aa_policy_view_capable(struct aa_label *label, struct aa_ns *ns) in aa_policy_view_capable()
803 bool aa_policy_admin_capable(struct aa_label *label, struct aa_ns *ns) in aa_policy_admin_capable()
817 struct aa_label *label; in aa_current_policy_view_capable()
829 struct aa_label *label; in aa_current_policy_admin_capable()
846 int aa_may_manage_policy(struct aa_label *label, struct aa_ns *ns, u32 mask) in aa_may_manage_policy()
1021 ssize_t aa_replace_profiles(struct aa_ns *policy_ns, struct aa_label *label, in aa_replace_profiles()
[all …]

12