Home
last modified time | relevance | path

Searched refs:audit (Results 1 – 21 of 21) sorted by relevance

/security/integrity/
Dintegrity_audit.c20 unsigned long audit; in integrity_audit_setup() local
22 if (!kstrtoul(str, 0, &audit)) in integrity_audit_setup()
23 integrity_audit_info = audit ? 1 : 0; in integrity_audit_setup()
DKconfig12 extension and audit measurement log support.
/security/apparmor/
Dlib.c294 perms->audit = ALL_PERMS_MASK; in aa_apply_modes_to_perms()
300 perms->audit = 0; in aa_apply_modes_to_perms()
330 .audit = dfa_user_audit(dfa, state), in aa_compute_perms()
338 perms->audit |= map_other(dfa_other_audit(dfa, state)); in aa_compute_perms()
352 accum->audit |= addend->audit & addend->allow; in aa_perms_accum_raw()
371 accum->audit |= addend->audit & accum->allow; in aa_perms_accum()
438 request &= perms->audit; in aa_check_perms()
Dmount.c140 u32 mask = perms->audit; in audit_mount()
173 if (data && (perms->audit & AA_AUDIT_DATA)) in audit_mount()
218 .audit = dfa_user_audit(dfa, state), in compute_mnt_perms()
336 goto audit; in match_mnt_path_str()
341 goto audit; in match_mnt_path_str()
350 goto audit; in match_mnt_path_str()
354 audit: in match_mnt_path_str()
571 goto audit; in profile_umount()
580 audit: in profile_umount()
631 goto audit; in build_pivotroot()
[all …]
Dfile.c120 u32 mask = perms->audit; in aa_audit_file()
236 perms.audit = map_old_perms(dfa_user_audit(dfa, state)); in aa_compute_fperms()
241 perms.audit = map_old_perms(dfa_other_audit(dfa, state)); in aa_compute_fperms()
380 goto audit; in profile_path_link()
386 goto audit; in profile_path_link()
394 goto audit; in profile_path_link()
403 lperms.audit = perms.audit; in profile_path_link()
410 goto audit; in profile_path_link()
429 goto audit; in profile_path_link()
435 goto audit; in profile_path_link()
[all …]
Ddomain.c293 perms->audit = perms->quiet = perms->kill = 0; in change_profile_perms()
645 goto audit; in profile_transition()
667 goto audit; in profile_transition()
685 goto audit; in profile_transition()
719 goto audit; in profile_transition()
732 audit: in profile_transition()
777 goto audit; in profile_onexec()
784 goto audit; in profile_onexec()
795 goto audit; in profile_onexec()
808 audit: in profile_onexec()
[all …]
Dnet.c234 if (profile->secmark[i].audit) in aa_secmark_perm()
235 perms.audit = ALL_PERMS_MASK; in aa_secmark_perm()
DMakefile6 apparmor-y := apparmorfs.o audit.o capability.o task.o ipc.o lib.o match.o \
Dcapability.c75 !cap_raised(profile->caps.audit, cap))) in audit_caps()
Dpolicy_unpack.c588 if (!unpack_u8(e, &profile->secmark[i].audit, NULL)) in unpack_secmark()
759 profile->audit = AUDIT_ALL; in unpack_profile()
775 if (!unpack_u32(e, &(profile->caps.audit.cap[0]), NULL)) in unpack_profile()
787 if (!unpack_u32(e, &(profile->caps.audit.cap[1]), NULL)) in unpack_profile()
Dlsm.c1306 module_param_call(audit, param_set_audit, param_get_audit,
Dapparmorfs.c800 perms.allow, perms.deny, perms.audit, perms.quiet); in query_label()
/security/tomoyo/
DKconfig32 int "Default maximal count for audit log"
38 audit logs that the kernel can hold on memory.
39 You can read the log via /sys/kernel/security/tomoyo/audit.
40 If you don't need audit logs, you may set this value to 0.
DMakefile2 obj-y = audit.o common.o condition.o domain.o environ.o file.o gc.o group.o load_policy.o memory.o …
/security/apparmor/include/
Dcapability.h30 kernel_cap_t audit; member
Dpolicy.h139 enum audit_mode audit; member
301 return profile->audit; in AUDIT_MODE()
Dnet.h83 u8 audit; member
Dperms.h68 u32 audit; /* set only when allow is set */ member
Dfile.h109 #define COMBINED_PERM_MASK(X) ((X).allow | (X).audit | (X).quiet | (X).kill)
/security/integrity/ima/
DKconfig91 list, integrity appraisal and audit log. The compiled default
/security/selinux/
Dhooks.c3141 static bool has_cap_mac_admin(bool audit) in has_cap_mac_admin() argument
3144 unsigned int opts = audit ? CAP_OPT_NONE : CAP_OPT_NOAUDIT; in has_cap_mac_admin()