Home
last modified time | relevance | path

Searched refs:audit (Results 1 – 21 of 21) sorted by relevance

/security/integrity/
Dintegrity_audit.c20 unsigned long audit; in integrity_audit_setup() local
22 if (!kstrtoul(str, 0, &audit)) in integrity_audit_setup()
23 integrity_audit_info = audit ? 1 : 0; in integrity_audit_setup()
DKconfig12 extension and audit measurement log support.
/security/apparmor/
Dlib.c294 perms->audit = ALL_PERMS_MASK; in aa_apply_modes_to_perms()
300 perms->audit = 0; in aa_apply_modes_to_perms()
330 .audit = dfa_user_audit(dfa, state), in aa_compute_perms()
338 perms->audit |= map_other(dfa_other_audit(dfa, state)); in aa_compute_perms()
352 accum->audit |= addend->audit & addend->allow; in aa_perms_accum_raw()
371 accum->audit |= addend->audit & accum->allow; in aa_perms_accum()
438 request &= perms->audit; in aa_check_perms()
Dfile.c111 u32 mask = perms->audit; in aa_audit_file()
227 perms.audit = map_old_perms(dfa_user_audit(dfa, state)); in aa_compute_fperms()
232 perms.audit = map_old_perms(dfa_other_audit(dfa, state)); in aa_compute_fperms()
373 goto audit; in profile_path_link()
379 goto audit; in profile_path_link()
387 goto audit; in profile_path_link()
396 lperms.audit = perms.audit; in profile_path_link()
403 goto audit; in profile_path_link()
422 goto audit; in profile_path_link()
428 goto audit; in profile_path_link()
[all …]
Ddomain.c295 perms->audit = perms->quiet = perms->kill = 0; in change_profile_perms()
650 goto audit; in profile_transition()
672 goto audit; in profile_transition()
698 goto audit; in profile_transition()
711 audit: in profile_transition()
756 goto audit; in profile_onexec()
763 goto audit; in profile_onexec()
774 goto audit; in profile_onexec()
787 audit: in profile_onexec()
925 goto audit; in apparmor_bprm_creds_for_exec()
[all …]
Dmount.c140 u32 mask = perms->audit; in audit_mount()
173 if (data && (perms->audit & AA_AUDIT_DATA)) in audit_mount()
218 .audit = dfa_user_audit(dfa, state), in compute_mnt_perms()
336 goto audit; in match_mnt_path_str()
341 goto audit; in match_mnt_path_str()
350 goto audit; in match_mnt_path_str()
354 audit: in match_mnt_path_str()
600 goto audit; in profile_umount()
609 audit: in profile_umount()
663 goto audit; in build_pivotroot()
[all …]
Dnet.c236 if (profile->secmark[i].audit) in aa_secmark_perm()
237 perms.audit = ALL_PERMS_MASK; in aa_secmark_perm()
DMakefile6 apparmor-y := apparmorfs.o audit.o capability.o task.o ipc.o lib.o match.o \
Dcapability.c75 !cap_raised(profile->caps.audit, cap))) in audit_caps()
Dpolicy_unpack.c591 if (!unpack_u8(e, &profile->secmark[i].audit, NULL)) in unpack_secmark()
768 profile->audit = AUDIT_ALL; in unpack_profile()
784 if (!unpack_u32(e, &(profile->caps.audit.cap[0]), NULL)) in unpack_profile()
796 if (!unpack_u32(e, &(profile->caps.audit.cap[1]), NULL)) in unpack_profile()
Dlsm.c1344 module_param_call(audit, param_set_audit, param_get_audit,
Dapparmorfs.c798 perms.allow, perms.deny, perms.audit, perms.quiet); in query_label()
/security/tomoyo/
DKconfig32 int "Default maximal count for audit log"
38 audit logs that the kernel can hold on memory.
39 You can read the log via /sys/kernel/security/tomoyo/audit.
40 If you don't need audit logs, you may set this value to 0.
DMakefile2 obj-y = audit.o common.o condition.o domain.o environ.o file.o gc.o group.o load_policy.o memory.o …
/security/apparmor/include/
Dcapability.h30 kernel_cap_t audit; member
Dpolicy.h139 enum audit_mode audit; member
301 return profile->audit; in AUDIT_MODE()
Dnet.h83 u8 audit; member
Dperms.h68 u32 audit; /* set only when allow is set */ member
Dfile.h109 #define COMBINED_PERM_MASK(X) ((X).allow | (X).audit | (X).quiet | (X).kill)
/security/integrity/ima/
DKconfig91 list, integrity appraisal and audit log. The compiled default
/security/selinux/
Dhooks.c3253 static bool has_cap_mac_admin(bool audit) in has_cap_mac_admin() argument
3256 unsigned int opts = audit ? CAP_OPT_NONE : CAP_OPT_NOAUDIT; in has_cap_mac_admin()