xref: /third_party/selinux/libselinux/src/avc.c

21 	security_id_t tsid;
42 			 security_id_t tsid,
47 	security_id_t tsid;
63 			   security_id_t tsid, security_class_t tclass)
65 	return ((uintptr_t) ssid ^ ((uintptr_t) tsid << 2) ^ tclass)
345 					      security_id_t tsid,
364 	hvalue = avc_hash(ssid, tsid, tclass);
368 	new->ae.tsid = tsid;
378 					       security_id_t tsid,
386 	hvalue = avc_hash(ssid, tsid, tclass);
390 		tclass != cur->ae.tclass || tsid != cur->ae.tsid)) {
413  * @tsid: target security identifier
420  * (@ssid, @tsid), interpreting the permissions
425 static int avc_lookup(security_id_t ssid, security_id_t tsid,
433 	node = avc_search_node(ssid, tsid, tclass, &probes);
451  * @tsid: target security identifier
457  * (@ssid, @tsid) and class @tclass.
467 static int avc_insert(security_id_t ssid, security_id_t tsid,
483 	node = avc_claim_node(ssid, tsid, tclass);
676  * @tsid: target security identifier
679 static void avc_dump_query(security_id_t ssid, security_id_t tsid,
685 		   ssid->ctx, tsid->ctx);
692 void avc_audit(security_id_t ssid, security_id_t tsid,
723 	avc_dump_query(ssid, tsid, tclass);
745 			 security_id_t tsid,
773 		    ae->tsid == tsid &&
786 		rc = avc_lookup(ssid, tsid, tclass, requested, aeref);
788 			rc = security_compute_av_flags_raw(ssid->ctx, tsid->ctx,
797 			rc = avc_insert(ssid, tsid, tclass, &entry, aeref);
825 int avc_has_perm(security_id_t ssid, security_id_t tsid,
832 	rc = avc_has_perm_noaudit(ssid, tsid, tclass, requested, aeref, &avd);
834 	avc_audit(ssid, tsid, tclass, requested, &avd, rc, auditdata);
839 int avc_compute_create(security_id_t ssid,  security_id_t tsid,
853 	rc = avc_lookup(ssid, tsid, tclass, 0, &aeref);
856 		rc = security_compute_av_flags_raw(ssid->ctx, tsid->ctx,
860 		rc = avc_insert(ssid, tsid, tclass, &entry, &aeref);
868 		rc = security_compute_create_raw(ssid->ctx, tsid->ctx, tclass,
889 int avc_compute_member(security_id_t ssid,  security_id_t tsid,
899 	rc = security_compute_member_raw(ssid->ctx, tsid->ctx, tclass, &ctx);
910 				      security_id_t tsid,
915 		     security_id_t tsid,
930 	c->tsid = tsid;
971 			    security_id_t tsid, security_class_t tclass,
979 	if (ssid == SECSID_WILD || tsid == SECSID_WILD) {
984 				    avc_sidcmp(tsid, node->ae.tsid) &&
992 		node = avc_search_node(ssid, tsid, tclass, 0);
1009 		       security_id_t tsid, security_class_t tclass,
1025 		avc_update_cache(event, ssid, tsid, tclass, perms);
1030 		    avc_sidcmp(c->tsid, tsid) &&
1033 			ret = c->callback(event, ssid, tsid, tclass,
1047 		avc_update_cache(event, ssid, tsid, tclass, perms);
1063  * @tsid: target security identifier or %SECSID_WILD
1068 int avc_ss_grant(security_id_t ssid, security_id_t tsid,
1073 			   ssid, tsid, tclass, perms, seqno, 0);
1079  * @tsid: target security identifier or %SECSID_WILD
1089 int avc_ss_try_revoke(security_id_t ssid, security_id_t tsid,
1095 			   ssid, tsid, tclass, perms, seqno, out_retained);
1101  * @tsid: target security identifier or %SECSID_WILD
1109 int avc_ss_revoke(security_id_t ssid, security_id_t tsid,
1114 			   ssid, tsid, tclass, perms, seqno, 0);
1138  * @tsid: target security identifier or %SECSID_WILD
1144 int avc_ss_set_auditallow(security_id_t ssid, security_id_t tsid,
1150 				   ssid, tsid, tclass, perms, seqno, 0);
1153 				   ssid, tsid, tclass, perms, seqno, 0);
1159  * @tsid: target security identifier or %SECSID_WILD
1165 int avc_ss_set_auditdeny(security_id_t ssid, security_id_t tsid,
1171 				   ssid, tsid, tclass, perms, seqno, 0);
1174 				   ssid, tsid, tclass, perms, seqno, 0);

Indexes created Thu Nov 07 10:32:03 CST 2024