/security/apparmor/ |
D | file.c | 195 struct path_cond *cond) in compute_perms() argument 206 if (uid_eq(current_fsuid(), cond->uid)) { in compute_perms() 239 const char *name, struct path_cond *cond, in aa_str_perms() argument 249 *perms = compute_perms(dfa, state, cond); in aa_str_perms() 279 int flags, u32 request, struct path_cond *cond) in aa_path_perm() argument 286 flags |= profile->path_flags | (S_ISDIR(cond->mode) ? PATH_IS_DIR : 0); in aa_path_perm() 298 aa_str_perms(profile->file.dfa, profile->file.start, name, cond, in aa_path_perm() 304 NULL, cond->uid, info, error); in aa_path_perm() 353 struct path_cond cond = { in aa_path_link() local 381 &cond, &lperms); in aa_path_link() [all …]
|
D | lsm.c | 163 struct path_cond *cond) in common_perm() argument 170 error = aa_path_perm(op, profile, path, 0, mask, cond); in common_perm() 187 struct path_cond *cond) in common_perm_dir_dentry() argument 191 return common_perm(op, &path, mask, cond); in common_perm_dir_dentry() 207 struct path_cond cond = { dentry->d_inode->i_uid, in common_perm_mnt_dentry() local 211 return common_perm(op, &path, mask, &cond); in common_perm_mnt_dentry() 227 struct path_cond cond = { }; in common_perm_rm() local 232 cond.uid = inode->i_uid; in common_perm_rm() 233 cond.mode = inode->i_mode; in common_perm_rm() 235 return common_perm_dir_dentry(op, dir, dentry, mask, &cond); in common_perm_rm() [all …]
|
D | domain.c | 107 struct path_cond cond = { }; in change_profile_perms() local 118 aa_str_perms(profile->file.dfa, start, name, &cond, &perms); in change_profile_perms() 126 aa_str_perms(profile->file.dfa, state, name, &cond, &perms); in change_profile_perms() 351 struct path_cond cond = { in apparmor_bprm_set_creds() local 406 state = aa_str_perms(profile->file.dfa, state, name, &cond, &perms); in apparmor_bprm_set_creds() 525 name, target, cond.uid, info, error); in apparmor_bprm_set_creds()
|
/security/tomoyo/ |
D | gc.c | 154 tomoyo_put_condition(acl->cond); in tomoyo_del_acl() 270 struct tomoyo_condition *cond = container_of(element, typeof(*cond), in tomoyo_del_condition() local 272 const u16 condc = cond->condc; in tomoyo_del_condition() 273 const u16 numbers_count = cond->numbers_count; in tomoyo_del_condition() 274 const u16 names_count = cond->names_count; in tomoyo_del_condition() 275 const u16 argc = cond->argc; in tomoyo_del_condition() 276 const u16 envc = cond->envc; in tomoyo_del_condition() 279 = (const struct tomoyo_condition_element *) (cond + 1); in tomoyo_del_condition()
|
D | domain.c | 72 return a->type == b->type && a->cond == b->cond; in tomoyo_same_acl_head() 104 new_entry->cond = tomoyo_get_condition(param); in tomoyo_update_domain() 105 if (!new_entry->cond) in tomoyo_update_domain() 111 if (new_entry->cond->transit && in tomoyo_update_domain() 142 tomoyo_put_condition(new_entry->cond); in tomoyo_update_domain() 171 if (!tomoyo_condition(r, ptr->cond)) in tomoyo_check_acl()
|
D | condition.c | 745 const struct tomoyo_condition *cond) in tomoyo_condition() argument 760 if (!cond) in tomoyo_condition() 762 condc = cond->condc; in tomoyo_condition() 763 argc = cond->argc; in tomoyo_condition() 764 envc = cond->envc; in tomoyo_condition() 770 condp = (struct tomoyo_condition_element *) (cond + 1); in tomoyo_condition() 773 (numbers_p + cond->numbers_count); in tomoyo_condition() 774 argv = (const struct tomoyo_argv *) (names_p + cond->names_count); in tomoyo_condition()
|
D | audit.c | 337 if (is_granted && matched_acl && matched_acl->cond && in tomoyo_get_audit() 338 matched_acl->cond->grant_log != TOMOYO_GRANTLOG_AUTO) in tomoyo_get_audit() 339 return matched_acl->cond->grant_log == TOMOYO_GRANTLOG_YES; in tomoyo_get_audit()
|
D | common.h | 670 struct tomoyo_condition *cond; /* Maybe NULL. */ member 921 const struct tomoyo_condition *cond); 1179 static inline void tomoyo_put_condition(struct tomoyo_condition *cond) in tomoyo_put_condition() argument 1181 if (cond) in tomoyo_put_condition() 1182 atomic_dec(&cond->head.users); in tomoyo_put_condition()
|
D | common.c | 1201 const struct tomoyo_condition *cond) in tomoyo_print_condition() argument 1207 if (cond->transit) { in tomoyo_print_condition() 1209 tomoyo_set_string(head, cond->transit->name); in tomoyo_print_condition() 1214 const u16 condc = cond->condc; in tomoyo_print_condition() 1216 (typeof(condp)) (cond + 1); in tomoyo_print_condition() 1221 (numbers_p + cond->numbers_count); in tomoyo_print_condition() 1223 (typeof(argv)) (names_p + cond->names_count); in tomoyo_print_condition() 1225 (typeof(envp)) (argv + cond->argc); in tomoyo_print_condition() 1323 if (cond->grant_log != TOMOYO_GRANTLOG_AUTO) in tomoyo_print_condition() 1325 tomoyo_yesno(cond->grant_log == in tomoyo_print_condition() [all …]
|
D | file.c | 601 r->ee->transition = r->matched_acl && r->matched_acl->cond ? in tomoyo_execute_permission() 602 r->matched_acl->cond->transit : NULL; in tomoyo_execute_permission()
|
/security/apparmor/include/ |
D | file.h | 171 const char *name, struct path_cond *cond, 175 int flags, u32 request, struct path_cond *cond);
|