Home
last modified time | relevance | path

Searched refs:portcon (Results 1 – 22 of 22) sorted by relevance

/third_party/selinux/libsepol/tests/policies/test-cond/
Drefpolicy-base.conf1743 portcon udp 7007 system_u:object_r:afs_bos_port_t:s0
1744 portcon tcp 2040 system_u:object_r:afs_fs_port_t:s0
1745 portcon udp 7000 system_u:object_r:afs_fs_port_t:s0
1746 portcon udp 7005 system_u:object_r:afs_fs_port_t:s0
1747 portcon udp 7004 system_u:object_r:afs_ka_port_t:s0
1748 portcon udp 7002 system_u:object_r:afs_pt_port_t:s0
1749 portcon udp 7003 system_u:object_r:afs_vl_port_t:s0
1750 portcon udp 10080 system_u:object_r:amanda_port_t:s0
1751 portcon tcp 10080 system_u:object_r:amanda_port_t:s0
1752 portcon udp 10081 system_u:object_r:amanda_port_t:s0
[all …]
/third_party/selinux/secilc/docs/
Dcil_network_labeling_statements.md176 portcon section in Network Labeling Statements
184 (portcon protocol port|(port_low port_high) context_id)
196 <td align="left"><p><code>portcon</code></p></td>
197 <td align="left"><p>The <code>portcon</code> keyword.</p></td>
218 These examples show named and anonymous [`portcon`](cil_network_labeling_statements.md#portcon) sta…
221 (portcon tcp 1111 (unconfined.user object_r unconfined.object ((s0) (s0 (c0)))))
222 (portcon tcp 2222 (unconfined.user object_r unconfined.object levelrange_2))
223 (portcon tcp 3333 (unconfined.user object_r unconfined.object levelrange_1))
224 (portcon udp 4444 (unconfined.user object_r unconfined.object ((s0) level_2)))
225 (portcon tcp (2000 20000) (unconfined.user object_r unconfined.object (systemlow level_3)))
[all …]
Dcil_context_statement.md74 …levelrange` identifiers are used to specify two [`portcon`](cil_network_labeling_statements.md#por…
77 (portcon udp 1024 (test.user object_r test.process ((s0) (s1))))
78 (portcon tcp 1024 (test.user object_r test.process (system_low system_high)))
DREADME.md102 * [portcon](cil_network_labeling_statements.md#portcon)
Dcil_reference_guide.md76 …now a [`portcon`](cil_network_labeling_statements.md#portcon) statement can be defined that uses t…
79 (portcon udp 12345 (unconfined.user object_r unconfined.object ((s0) (s0(c0)))))
/third_party/selinux/libsepol/cil/src/
Dcil_write_ast.c1284 struct cil_portcon *portcon = node->data; in cil_write_ast_node() local
1286 if (portcon->proto == CIL_PROTOCOL_UDP) in cil_write_ast_node()
1288 else if (portcon->proto == CIL_PROTOCOL_TCP) in cil_write_ast_node()
1290 else if (portcon->proto == CIL_PROTOCOL_DCCP) in cil_write_ast_node()
1292 else if (portcon->proto == CIL_PROTOCOL_SCTP) in cil_write_ast_node()
1296 if (portcon->port_low == portcon->port_high) in cil_write_ast_node()
1297 fprintf(out, "%d ", portcon->port_low); in cil_write_ast_node()
1299 fprintf(out, "(%d %d) ", portcon->port_low, portcon->port_high); in cil_write_ast_node()
1300 if (portcon->context) in cil_write_ast_node()
1301 write_context(out, portcon->context, CIL_TRUE); in cil_write_ast_node()
[all …]
Dcil_reset_ast.c340 static void cil_reset_portcon(struct cil_portcon *portcon) in cil_reset_portcon() argument
342 if (portcon->context_str == NULL) { in cil_reset_portcon()
343 cil_reset_context(portcon->context); in cil_reset_portcon()
345 portcon->context = NULL; in cil_reset_portcon()
Dcil_policy.c1749 struct cil_portcon *portcon; in cil_portcons_to_policy() local
1752 portcon = portcons->array[i]; in cil_portcons_to_policy()
1754 if (portcon->proto == CIL_PROTOCOL_UDP) { in cil_portcons_to_policy()
1756 } else if (portcon->proto == CIL_PROTOCOL_TCP) { in cil_portcons_to_policy()
1758 } else if (portcon->proto == CIL_PROTOCOL_DCCP) { in cil_portcons_to_policy()
1760 } else if (portcon->proto == CIL_PROTOCOL_SCTP) { in cil_portcons_to_policy()
1763 if (portcon->port_low == portcon->port_high) { in cil_portcons_to_policy()
1764 fprintf(out, "%d ", portcon->port_low); in cil_portcons_to_policy()
1766 fprintf(out, "%d-%d ", portcon->port_low, portcon->port_high); in cil_portcons_to_policy()
1768 cil_context_to_policy(out, portcon->context, mls); in cil_portcons_to_policy()
[all …]
Dcil.c419 cil_sort_init(&(*db)->portcon); in cil_db_init()
474 cil_sort_destroy(&(*db)->portcon); in cil_db_destroy()
2558 void cil_portcon_init(struct cil_portcon **portcon) in cil_portcon_init() argument
2560 *portcon = cil_malloc(sizeof(**portcon)); in cil_portcon_init()
2561 (*portcon)->proto = 0; in cil_portcon_init()
2562 (*portcon)->port_low = 0; in cil_portcon_init()
2563 (*portcon)->port_high = 0; in cil_portcon_init()
2564 (*portcon)->context_str = NULL; in cil_portcon_init()
2565 (*portcon)->context = NULL; in cil_portcon_init()
Dcil_build_ast.c4388 struct cil_portcon *portcon = NULL; in cil_gen_portcon() local
4400 cil_portcon_init(&portcon); in cil_gen_portcon()
4404 portcon->proto = CIL_PROTOCOL_UDP; in cil_gen_portcon()
4406 portcon->proto = CIL_PROTOCOL_TCP; in cil_gen_portcon()
4408 portcon->proto = CIL_PROTOCOL_DCCP; in cil_gen_portcon()
4410 portcon->proto = CIL_PROTOCOL_SCTP; in cil_gen_portcon()
4420 rc = cil_fill_integer(parse_current->next->next->cl_head, &portcon->port_low, 10); in cil_gen_portcon()
4425 rc = cil_fill_integer(parse_current->next->next->cl_head->next, &portcon->port_high, 10); in cil_gen_portcon()
4436 rc = cil_fill_integer(parse_current->next->next, &portcon->port_low, 10); in cil_gen_portcon()
4441 portcon->port_high = portcon->port_low; in cil_gen_portcon()
[all …]
Dcil_internal.h302 struct cil_sort *portcon; member
1048 void cil_portcon_init(struct cil_portcon **portcon);
Dcil_post.c646 db->portcon->count++; in __cil_post_db_count_helper()
802 struct cil_sort *sort = db->portcon; in __cil_post_db_array_helper()
1934 struct cil_portcon *portcon = node->data; in __cil_post_db_cat_helper() local
1935 rc = __evaluate_levelrange_expression(portcon->context->range, db); in __cil_post_db_cat_helper()
2401 …rc = __cil_post_process_context_rules(db->portcon, cil_post_portcon_compare, cil_post_portcon_cont… in cil_post_db()
Dcil_build_ast.h185 void cil_destroy_portcon(struct cil_portcon *portcon);
Dcil_resolve_ast.c1974 struct cil_portcon *portcon = current->data; in cil_resolve_portcon() local
1978 if (portcon->context_str != NULL) { in cil_resolve_portcon()
1979 …rc = cil_resolve_name(current, portcon->context_str, CIL_SYM_CONTEXTS, extra_args, &context_datum); in cil_resolve_portcon()
1983 portcon->context = (struct cil_context*)context_datum; in cil_resolve_portcon()
1985 rc = cil_resolve_context(current, portcon->context, extra_args); in cil_resolve_portcon()
Dcil_binary.c4035 rc = cil_portcon_to_policydb(pdb, db->portcon); in __cil_contexts_to_policydb()
/third_party/selinux/secilc/test/
Dintegration.cil173 (portcon udp 25 system_u_bin_t_l2h)
174 (portcon tcp 22 system_u_bin_t_l2h)
/third_party/selinux/libsepol/cil/test/integration_testing/
Dnonmls.cil33 ;(portcon type 25 con)
Dmls_policy.cil57 (portcon type 25 con)
/third_party/selinux/libsepol/src/
Dkernel_to_conf.c2612 struct ocontext *portcon; in write_selinux_port_rules_to_conf() local
2620 for (portcon = pdb->ocontexts[2]; portcon != NULL; portcon = portcon->next) { in write_selinux_port_rules_to_conf()
2621 switch (portcon->u.port.protocol) { in write_selinux_port_rules_to_conf()
2627 sepol_log_err("Unknown portcon protocol: %i", portcon->u.port.protocol); in write_selinux_port_rules_to_conf()
2632 low = portcon->u.port.low_port; in write_selinux_port_rules_to_conf()
2633 high = portcon->u.port.high_port; in write_selinux_port_rules_to_conf()
2644 ctx = context_to_str(pdb, &portcon->context[0]); in write_selinux_port_rules_to_conf()
Dkernel_to_cil.c2744 struct ocontext *portcon; in write_selinux_port_rules_to_cil() local
2752 for (portcon = pdb->ocontexts[2]; portcon != NULL; portcon = portcon->next) { in write_selinux_port_rules_to_cil()
2753 switch (portcon->u.port.protocol) { in write_selinux_port_rules_to_cil()
2759 sepol_log_err("Unknown portcon protocol: %i", portcon->u.port.protocol); in write_selinux_port_rules_to_cil()
2764 low = portcon->u.port.low_port; in write_selinux_port_rules_to_cil()
2765 high = portcon->u.port.high_port; in write_selinux_port_rules_to_cil()
2776 ctx = context_to_str(pdb, &portcon->context[0]); in write_selinux_port_rules_to_cil()
Dmodule_to_cil.c2628 struct ocontext *portcon; in ocontext_selinux_port_to_cil() local
2633 for (portcon = portcons; portcon != NULL; portcon = portcon->next) { in ocontext_selinux_port_to_cil()
2635 switch (portcon->u.port.protocol) { in ocontext_selinux_port_to_cil()
2641 log_err("Unknown portcon protocol: %i", portcon->u.port.protocol); in ocontext_selinux_port_to_cil()
2646 low = portcon->u.port.low_port; in ocontext_selinux_port_to_cil()
2647 high = portcon->u.port.high_port; in ocontext_selinux_port_to_cil()
2655 context_to_cil(pdb, &portcon->context[0]); in ocontext_selinux_port_to_cil()
/third_party/selinux/checkpolicy/
Dpolicy_scan.l205 portcon |