| /kernel/linux/linux-5.10/security/integrity/ima/ |
| D | ima_main.c | 396 0, MAY_EXEC, MMAP_CHECK); in ima_file_mmap()
434 action = ima_get_action(inode, current_cred(), secid, MAY_EXEC, in ima_file_mprotect()
474 MAY_EXEC, BPRM_CHECK); in ima_bprm_check()
480 MAY_EXEC, CREDS_CHECK); in ima_bprm_check()
499 mask & (MAY_READ | MAY_WRITE | MAY_EXEC | in ima_file_check()
|
| D | ima_policy.c | 121 {.action = MEASURE, .func = MMAP_CHECK, .mask = MAY_EXEC,
123 {.action = MEASURE, .func = BPRM_CHECK, .mask = MAY_EXEC,
133 {.action = MEASURE, .func = MMAP_CHECK, .mask = MAY_EXEC,
135 {.action = MEASURE, .func = BPRM_CHECK, .mask = MAY_EXEC,
1257 entry->mask = MAY_EXEC; in ima_parse_rule()
1662 if (entry->mask & MAY_EXEC) in ima_policy_show()
|
| /kernel/linux/linux-5.10/security/apparmor/include/ |
| D | file.h | 23 #define mask_mode_t(X) (X & (MAY_EXEC | MAY_WRITE | MAY_READ | MAY_APPEND))
25 #define AA_AUDIT_FILE_MASK (MAY_READ | MAY_WRITE | MAY_EXEC | MAY_APPEND |\
|
| D | perms.h | 16 #define AA_MAY_EXEC MAY_EXEC
|
| /kernel/linux/linux-5.10/fs/coda/ |
| D | pioctl.c | 45 return (mask & MAY_EXEC) ? -EACCES : 0; in coda_ioctl_permission()
|
| D | dir.c | 83 mask &= MAY_READ | MAY_WRITE | MAY_EXEC; in coda_permission()
88 if ((mask & MAY_EXEC) && !execute_ok(inode)) in coda_permission()
|
| /kernel/linux/linux-5.10/fs/afs/ |
| D | security.c | 441 if (mask & (MAY_EXEC | MAY_READ | MAY_CHDIR)) { in afs_permission()
453 if ((mask & MAY_EXEC) && !(inode->i_mode & S_IXUSR)) in afs_permission()
455 if (mask & (MAY_EXEC | MAY_READ)) { in afs_permission()
|
| /kernel/linux/linux-5.10/security/apparmor/ |
| D | domain.c | 342 if (!(perm & MAY_EXEC)) { in aa_xattrs_match()
423 if (perm & MAY_EXEC) { in find_attach()
664 if (perms.allow & MAY_EXEC) { in profile_transition()
675 perms.allow &= ~MAY_EXEC; in profile_transition()
710 aa_audit_file(profile, &perms, OP_EXEC, MAY_EXEC, name, target, new, in profile_transition()
968 aa_audit_file(profile, &nullperms, OP_EXEC, MAY_EXEC, in apparmor_bprm_creds_for_exec()
|
| D | file.c | 421 } else if ((lperms.allow & MAY_EXEC) && in profile_path_link()
423 lperms.allow &= ~MAY_EXEC; in profile_path_link()
424 request |= MAY_EXEC; in profile_path_link()
|
| /kernel/linux/linux-5.10/Documentation/ABI/testing/ |
| D | ima_policy | 37 [[^]MAY_EXEC]
91 measure func=FILE_MMAP mask=MAY_EXEC
|
| /kernel/linux/linux-5.10/fs/ |
| D | init.c | 52 error = inode_permission(path.dentry->d_inode, MAY_EXEC | MAY_CHDIR); in init_chdir()
67 error = inode_permission(path.dentry->d_inode, MAY_EXEC | MAY_CHDIR); in init_chroot()
|
| D | open.c | 429 if ((mode & MAY_EXEC) && S_ISREG(inode->i_mode)) { in do_faccessat()
495 error = inode_permission(path.dentry->d_inode, MAY_EXEC | MAY_CHDIR); in SYSCALL_DEFINE1()
524 error = inode_permission(file_inode(f.file), MAY_EXEC | MAY_CHDIR); in SYSCALL_DEFINE1()
543 error = inode_permission(path.dentry->d_inode, MAY_EXEC | MAY_CHDIR); in SYSCALL_DEFINE1()
|
| D | namei.c | 371 mask &= MAY_READ | MAY_WRITE | MAY_EXEC; in generic_permission()
380 if (!(mask & MAY_EXEC) || (inode->i_mode & S_IXUGO)) in generic_permission()
1575 int err = inode_permission(nd->inode, MAY_EXEC|MAY_NOT_BLOCK); in may_lookup()
1579 return inode_permission(nd->inode, MAY_EXEC); in may_lookup()
2509 return inode_permission(base->d_inode, MAY_EXEC); in lookup_one_len_common()
2703 error = inode_permission(dir, MAY_WRITE | MAY_EXEC); in may_delete()
2747 return inode_permission(dir, MAY_WRITE | MAY_EXEC); in may_create()
2857 if (acc_mode & MAY_EXEC) in may_open()
2867 if (acc_mode & MAY_EXEC) in may_open()
2872 if ((acc_mode & MAY_EXEC) && path_noexec(path)) in may_open()
[all …]
|
| D | exec.c | 132 .acc_mode = MAY_READ | MAY_EXEC, in SYSCALL_DEFINE1()
900 .acc_mode = MAY_EXEC, in do_open_execat()
|
| D | posix_acl.c | 353 want &= MAY_READ | MAY_WRITE | MAY_EXEC; in posix_acl_permission()
|
| /kernel/linux/linux-5.10/fs/sharefs/ |
| D | inode.c | 112 if ((mask & ~mode & (MAY_READ | MAY_WRITE | MAY_EXEC)) == 0) in sharefs_permission()
|
| /kernel/linux/linux-5.10/fs/configfs/ |
| D | symlink.c | 200 ret = inode_permission(dir, MAY_WRITE | MAY_EXEC); in configfs_symlink()
|
| /kernel/linux/linux-5.10/security/smack/ |
| D | smack.h | 253 #define MAY_ANYREAD (MAY_READ | MAY_EXEC)
|
| D | smack_access.c | 294 if (access & MAY_EXEC) in smack_str_from_perm()
|
| /kernel/linux/linux-5.10/fs/gfs2/ |
| D | inode.c | 324 error = gfs2_permission(dir, MAY_EXEC); in gfs2_lookupi()
354 error = gfs2_permission(&dip->i_inode, MAY_WRITE | MAY_EXEC); in create_ok()
954 error = gfs2_permission(dir, MAY_WRITE | MAY_EXEC); in gfs2_link()
1071 error = gfs2_permission(&dip->i_inode, MAY_WRITE | MAY_EXEC); in gfs2_unlink_ok()
1493 error = gfs2_permission(ndir, MAY_WRITE | MAY_EXEC); in gfs2_rename()
|
| /kernel/linux/linux-5.10/fs/nfs/ |
| D | dir.c | 2667 mask |= MAY_EXEC; in nfs_access_calc_mask()
2672 mask |= MAY_EXEC; in nfs_access_calc_mask()
2727 if ((mask & ~cache_mask & (MAY_READ | MAY_WRITE | MAY_EXEC)) != 0) in nfs_do_access()
2740 mask = MAY_EXEC; in nfs_open_permission_mask()
2781 if ((mask & (MAY_READ | MAY_WRITE | MAY_EXEC)) == 0) in nfs_permission()
2810 if (!res && (mask & MAY_EXEC)) in nfs_permission()
|
| /kernel/linux/linux-5.10/fs/fuse/ |
| D | dir.c | 1234 inarg.mask = mask & (MAY_READ | MAY_WRITE | MAY_EXEC); in fuse_access()
1286 ((mask & MAY_EXEC) && S_ISREG(inode->i_mode))) { in fuse_permission()
1318 } else if ((mask & MAY_EXEC) && S_ISREG(inode->i_mode)) { in fuse_permission()
|
| /kernel/linux/linux-5.10/fs/nfsd/ |
| D | nfsfh.c | 43 err = inode_permission(d_inode(parent), MAY_EXEC); in nfsd_acceptable()
|
| /kernel/linux/linux-5.10/fs/proc/ |
| D | proc_sysctl.c | 414 if ((op & ~mode & (MAY_READ|MAY_WRITE|MAY_EXEC)) == 0) in test_perm()
799 if ((mask & MAY_EXEC) && S_ISREG(inode->i_mode)) in proc_sys_permission()
|
| /kernel/linux/linux-5.10/fs/hostfs/ |
| D | hostfs_kern.c | 769 if (desired & MAY_EXEC) x = 1; in hostfs_permission()
|