Home
last modified time | relevance | path

Searched refs:selinux_state (Results 1 – 20 of 20) sorted by relevance

/kernel/linux/linux-5.10/security/selinux/include/
Dsecurity.h90 struct selinux_state { struct
111 extern struct selinux_state selinux_state; argument
113 static inline bool selinux_initialized(const struct selinux_state *state) in selinux_initialized()
119 static inline void selinux_mark_initialized(struct selinux_state *state) in selinux_mark_initialized()
126 static inline bool enforcing_enabled(struct selinux_state *state) in enforcing_enabled()
131 static inline void enforcing_set(struct selinux_state *state, bool value) in enforcing_set()
136 static inline bool enforcing_enabled(struct selinux_state *state) in enforcing_enabled()
141 static inline void enforcing_set(struct selinux_state *state, bool value) in enforcing_set()
146 static inline bool checkreqprot_get(const struct selinux_state *state) in checkreqprot_get()
151 static inline void checkreqprot_set(struct selinux_state *state, bool value) in checkreqprot_set()
[all …]
Davc.h55 struct selinux_state *state;
100 int slow_avc_audit(struct selinux_state *state,
125 static inline int avc_audit(struct selinux_state *state, in avc_audit()
148 int avc_has_perm_noaudit(struct selinux_state *state,
154 int avc_has_perm(struct selinux_state *state,
158 int avc_has_perm_flags(struct selinux_state *state,
164 int avc_has_extended_perms(struct selinux_state *state,
169 u32 avc_policy_seqno(struct selinux_state *state);
Dconditional.h19 int security_set_bools(struct selinux_state *state, u32 len, int *values);
21 int security_get_bool_value(struct selinux_state *state, u32 index);
/kernel/linux/linux-5.10/security/selinux/
Dhooks.c109 struct selinux_state selinux_state; variable
263 if (selinux_initialized(&selinux_state) && in __inode_security_revalidate()
418 rc = avc_has_perm(&selinux_state, in may_context_mount_sb_relabel()
424 rc = avc_has_perm(&selinux_state, in may_context_mount_sb_relabel()
436 rc = avc_has_perm(&selinux_state, in may_context_mount_inode_relabel()
442 rc = avc_has_perm(&selinux_state, in may_context_mount_inode_relabel()
585 int rc = security_context_str_to_sid(&selinux_state, s, in parse_sid()
614 if (!selinux_initialized(&selinux_state)) { in selinux_set_mnt_opts()
722 rc = security_fs_use(&selinux_state, sb); in selinux_set_mnt_opts()
746 rc = security_transition_sid(&selinux_state, in selinux_set_mnt_opts()
[all …]
Dxfrm.c101 rc = security_context_to_sid(&selinux_state, ctx->ctx_str, str_len, in selinux_xfrm_alloc_user()
106 rc = avc_has_perm(&selinux_state, in selinux_xfrm_alloc_user()
143 return avc_has_perm(&selinux_state, in selinux_xfrm_delete()
166 rc = avc_has_perm(&selinux_state, in selinux_xfrm_policy_lookup()
208 return (avc_has_perm(&selinux_state, flic_sid, state_sid, in selinux_xfrm_state_pol_flow_match()
358 rc = security_sid_to_context(&selinux_state, secid, &ctx_str, in selinux_xfrm_state_alloc_acquire()
427 return avc_has_perm(&selinux_state, in selinux_xfrm_sock_rcv_skb()
471 return avc_has_perm(&selinux_state, sk_sid, SECINITSID_UNLABELED, in selinux_xfrm_postroute_last()
Dstatus.c42 struct page *selinux_kernel_status_page(struct selinux_state *state) in selinux_kernel_status_page()
79 void selinux_status_update_setenforce(struct selinux_state *state, in selinux_status_update_setenforce()
105 void selinux_status_update_policyload(struct selinux_state *state, in selinux_status_update_policyload()
Dnetlabel.c48 rc = security_netlbl_secattr_to_sid(&selinux_state, secattr, sid); in selinux_netlbl_sidlookup_cached()
79 rc = security_netlbl_sid_to_secattr(&selinux_state, sksec->sid, in selinux_netlbl_sock_genattr()
247 rc = security_netlbl_sid_to_secattr(&selinux_state, sid, in selinux_netlbl_skbuff_setsid()
285 rc = security_netlbl_sid_to_secattr(&selinux_state, in selinux_netlbl_sctp_assoc_request()
333 rc = security_netlbl_sid_to_secattr(&selinux_state, req->secid, in selinux_netlbl_inet_conn_request()
463 rc = avc_has_perm(&selinux_state, in selinux_netlbl_sock_rcv_skb()
Dselinuxfs.c79 struct selinux_state *state;
92 fsi->state = &selinux_state; in selinux_fs_info_create()
142 struct selinux_state *state = fsi->state; in sel_write_enforce()
166 length = avc_has_perm(&selinux_state, in sel_write_enforce()
205 struct selinux_state *state = fsi->state; in sel_read_handle_unknown()
395 struct selinux_state *state = fsi->state; in sel_open_policy()
403 rc = avc_has_perm(&selinux_state, in sel_open_policy()
465 ret = avc_has_perm(&selinux_state, in sel_read_policy()
625 length = avc_has_perm(&selinux_state, in sel_write_load()
679 struct selinux_state *state = fsi->state; in sel_write_context()
[all …]
Davc.c417 static inline int avc_xperms_audit(struct selinux_state *state, in avc_xperms_audit()
763 noinline int slow_avc_audit(struct selinux_state *state, in slow_avc_audit()
1003 struct avc_node *avc_compute_av(struct selinux_state *state, in avc_compute_av()
1015 static noinline int avc_denied(struct selinux_state *state, in avc_denied()
1040 int avc_has_extended_perms(struct selinux_state *state, in avc_has_extended_perms()
1137 inline int avc_has_perm_noaudit(struct selinux_state *state, in avc_has_perm_noaudit()
1184 int avc_has_perm(struct selinux_state *state, u32 ssid, u32 tsid, u16 tclass, in avc_has_perm()
1200 int avc_has_perm_flags(struct selinux_state *state, in avc_has_perm_flags()
1219 u32 avc_policy_seqno(struct selinux_state *state) in avc_policy_seqno()
1238 avc_flush(selinux_state.avc); in avc_disable()
Dnetnode.c207 ret = security_node_sid(&selinux_state, PF_INET, in sel_netnode_sid_slow()
213 ret = security_node_sid(&selinux_state, PF_INET6, in sel_netnode_sid_slow()
Dnetport.c152 ret = security_port_sid(&selinux_state, protocol, pnum, sid); in sel_netport_sid_slow()
Dibpkey.c145 ret = security_ib_pkey_sid(&selinux_state, subnet_prefix, pkey_num, in sel_ib_pkey_sid_slow()
Dnetif.c157 ret = security_netif_sid(&selinux_state, dev->name, sid); in sel_netif_sid_slow()
/kernel/linux/linux-5.10/security/selinux/ss/
Dservices.c70 struct selinux_state *state;
242 int security_mls_enabled(struct selinux_state *state) in security_mls_enabled()
724 static int security_validtrans_handle_fail(struct selinux_state *state, in security_validtrans_handle_fail()
756 static int security_compute_validatetrans(struct selinux_state *state, in security_compute_validatetrans()
840 int security_validate_transition_user(struct selinux_state *state, in security_validate_transition_user()
848 int security_validate_transition(struct selinux_state *state, in security_validate_transition()
865 int security_bounded_transition(struct selinux_state *state, in security_bounded_transition()
1014 void security_compute_xperms_decision(struct selinux_state *state, in security_compute_xperms_decision()
1110 void security_compute_av(struct selinux_state *state, in security_compute_av()
1169 void security_compute_av_user(struct selinux_state *state, in security_compute_av_user()
[all …]
/kernel/linux/common_modules/pac/config/
Dconfig.txt39 struct.selinux_state status_page
40 struct.selinux_state avc
41 struct.selinux_state policy
/kernel/linux/common_modules/code_sign/
Dcode_sign_ioctl.c75 rc = security_sid_to_context(&selinux_state, sid, &context, &context_len); in code_sign_check_caller()
184 rc = avc_has_perm_noaudit(&selinux_state, sid, sid, tclass, requested, in code_sign_avc_has_perm()
186 rc2 = avc_audit(&selinux_state, sid, sid, tclass, requested, &avd, rc, in code_sign_avc_has_perm()
/kernel/linux/common_modules/memory_security/src/
Dhideaddr.c47 return avc_has_perm_noaudit(&selinux_state, secid, secid, tclass, requested, in hideaddr_avc_has_perm()
Djit_memory.c28 return (avc_has_perm_noaudit(&selinux_state, secid, secid, tclass, requested, in jit_avc_has_perm()
/kernel/linux/common_modules/container_escape_detection/core/
Dced_detection.c43 if (!selinux_initialized(&selinux_state)) in ced_avc_has_perm()
47 rc = avc_has_perm_noaudit(&selinux_state, sid, sid, tclass, requested, in ced_avc_has_perm()
/kernel/linux/common_modules/xpm/core/
Dxpm_security_hooks.c185 return avc_has_perm_noaudit(&selinux_state, sid, sid, tclass, requested, in xpm_avc_has_perm()