Home
last modified time | relevance | path

Searched refs:audit (Results 1 – 25 of 56) sorted by relevance

123

/kernel/linux/linux-5.10/tools/perf/scripts/python/Perf-Trace-Util/lib/Perf/Trace/
DUtil.py54 import audit
56 'x86_64': audit.MACH_86_64,
57 'alpha' : audit.MACH_ALPHA,
58 'ia64' : audit.MACH_IA64,
59 'ppc' : audit.MACH_PPC,
60 'ppc64' : audit.MACH_PPC64,
61 'ppc64le' : audit.MACH_PPC64LE,
62 's390' : audit.MACH_S390,
63 's390x' : audit.MACH_S390X,
64 'i386' : audit.MACH_X86,
[all …]
/kernel/linux/linux-5.10/arch/x86/ia32/
DMakefile10 audit-class-$(CONFIG_AUDIT) := audit.o
11 obj-$(CONFIG_IA32_EMULATION) += $(audit-class-y)
/kernel/linux/linux-5.10/security/integrity/
Dintegrity_audit.c20 unsigned long audit; in integrity_audit_setup() local
22 if (!kstrtoul(str, 0, &audit)) in integrity_audit_setup()
23 integrity_audit_info = audit ? 1 : 0; in integrity_audit_setup()
/kernel/linux/linux-5.10/security/apparmor/
Dlib.c294 perms->audit = ALL_PERMS_MASK; in aa_apply_modes_to_perms()
300 perms->audit = 0; in aa_apply_modes_to_perms()
330 .audit = dfa_user_audit(dfa, state), in aa_compute_perms()
338 perms->audit |= map_other(dfa_other_audit(dfa, state)); in aa_compute_perms()
352 accum->audit |= addend->audit & addend->allow; in aa_perms_accum_raw()
371 accum->audit |= addend->audit & accum->allow; in aa_perms_accum()
438 request &= perms->audit; in aa_check_perms()
Dfile.c109 u32 mask = perms->audit; in aa_audit_file()
225 perms.audit = map_old_perms(dfa_user_audit(dfa, state)); in aa_compute_fperms()
230 perms.audit = map_old_perms(dfa_other_audit(dfa, state)); in aa_compute_fperms()
371 goto audit; in profile_path_link()
377 goto audit; in profile_path_link()
385 goto audit; in profile_path_link()
394 lperms.audit = perms.audit; in profile_path_link()
401 goto audit; in profile_path_link()
420 goto audit; in profile_path_link()
426 goto audit; in profile_path_link()
[all …]
Ddomain.c293 perms->audit = perms->quiet = perms->kill = 0; in change_profile_perms()
648 goto audit; in profile_transition()
670 goto audit; in profile_transition()
696 goto audit; in profile_transition()
709 audit: in profile_transition()
754 goto audit; in profile_onexec()
761 goto audit; in profile_onexec()
772 goto audit; in profile_onexec()
785 audit: in profile_onexec()
921 goto audit; in apparmor_bprm_creds_for_exec()
[all …]
Dmount.c140 u32 mask = perms->audit; in audit_mount()
173 if (data && (perms->audit & AA_AUDIT_DATA)) in audit_mount()
218 .audit = dfa_user_audit(dfa, state), in compute_mnt_perms()
336 goto audit; in match_mnt_path_str()
341 goto audit; in match_mnt_path_str()
350 goto audit; in match_mnt_path_str()
354 audit: in match_mnt_path_str()
600 goto audit; in profile_umount()
609 audit: in profile_umount()
663 goto audit; in build_pivotroot()
[all …]
Dnet.c236 if (profile->secmark[i].audit) in aa_secmark_perm()
237 perms.audit = ALL_PERMS_MASK; in aa_secmark_perm()
DMakefile6 apparmor-y := apparmorfs.o audit.o capability.o task.o ipc.o lib.o match.o \
Dcapability.c75 !cap_raised(profile->caps.audit, cap))) in audit_caps()
/kernel/linux/linux-5.10/security/tomoyo/
DKconfig32 int "Default maximal count for audit log"
38 audit logs that the kernel can hold on memory.
39 You can read the log via /sys/kernel/security/tomoyo/audit.
40 If you don't need audit logs, you may set this value to 0.
DMakefile2 obj-y = audit.o common.o condition.o domain.o environ.o file.o gc.o group.o load_policy.o memory.o …
/kernel/linux/linux-5.10/arch/sparc/kernel/
DMakefile114 obj-$(CONFIG_AUDIT) += audit.o
115 audit--$(CONFIG_AUDIT) := compat_audit.o
116 obj-$(CONFIG_COMPAT) += $(audit--y)
/kernel/linux/linux-5.10/tools/perf/Documentation/
Dsecurity.txt140 monitoring and observability operations. Inspect system audit records for
155 audit records using journalctl command or /var/log/audit/audit.log so the
163audit[1318098]: AVC avc: denied { open } for pid=1318098 comm="perf" scontext=unconfined_u:unco…
168 be generated using the system audit records about blocking perf_event access.
/kernel/linux/linux-5.10/security/apparmor/include/
Dcapability.h30 kernel_cap_t audit; member
Dpolicy.h139 enum audit_mode audit; member
301 return profile->audit; in AUDIT_MODE()
Dnet.h83 u8 audit; member
Dperms.h68 u32 audit; /* set only when allow is set */ member
Dfile.h109 #define COMBINED_PERM_MASK(X) ((X).allow | (X).audit | (X).quiet | (X).kill)
/kernel/linux/linux-5.10/drivers/staging/comedi/
DTODO5 - audit userspace interface
/kernel/linux/linux-5.10/drivers/staging/android/
DTODO5 - audit userspace interfaces to make sure they are sane
/kernel/linux/linux-5.10/tools/perf/
Dcommand-list.txt32 perf-trace mainporcelain audit
/kernel/linux/linux-5.10/arch/parisc/kernel/
DMakefile30 obj-$(CONFIG_AUDIT) += audit.o
/kernel/linux/linux-5.10/arch/ia64/kernel/
DMakefile31 obj-$(CONFIG_AUDIT) += audit.o
/kernel/linux/linux-5.10/arch/s390/kernel/
DMakefile53 obj-$(CONFIG_AUDIT) += audit.o

123