| /third_party/selinux/libsepol/src/ |
| H A D | assertion.c | 3 * Assertion checker for avtab entries, taken from
23 #include <sepol/policydb/avtab.h>
35 avtab_t *avtab; member
149 avtab_key_t *k, avtab_t *avtab) in report_assertion_extended_permissions()
170 for (node = avtab_search_node(avtab, &tmp_key); in report_assertion_extended_permissions()
218 avtab_t *avtab = a->avtab; in report_assertion_avtab_matches() local
277 i, j, cp, perms, k, avtab); in report_assertion_avtab_matches()
304 args.avtab = &p->te_avtab; in report_assertion_failures()
309 args.avtab in report_assertion_failures()
145 report_assertion_extended_permissions(sepol_handle_t *handle, policydb_t *p, const avrule_t *avrule, unsigned int stype, unsigned int ttype, const class_perm_node_t *curperm, uint32_t perms, avtab_key_t *k, avtab_t *avtab) report_assertion_extended_permissions() argument
324 check_assertion_extended_permissions_avtab(avrule_t *avrule, avtab_t *avtab, unsigned int stype, unsigned int ttype, avtab_key_t *k, policydb_t *p) check_assertion_extended_permissions_avtab() argument
379 check_assertion_extended_permissions(avrule_t *avrule, avtab_t *avtab, avtab_key_t *k, policydb_t *p) check_assertion_extended_permissions() argument
477 avtab_t *avtab = a->avtab; check_assertion_avtab_match() local
[all...] |
| H A D | hierarchy.c | 42 static int bounds_insert_helper(sepol_handle_t *handle, avtab_t *avtab, in bounds_insert_helper() argument
45 int rc = avtab_insert(avtab, avtab_key, datum); in bounds_insert_helper()
56 static int bounds_insert_rule(sepol_handle_t *handle, avtab_t *avtab, in bounds_insert_rule() argument
61 avtab_datum_t *dup = avtab_search(avtab, avtab_key); in bounds_insert_rule()
64 rc = bounds_insert_helper(handle, avtab, avtab_key, datum); in bounds_insert_rule()
71 /* Search the other conditional avtab for the key and in bounds_insert_rule()
72 * add any common permissions to the global avtab in bounds_insert_rule()
98 avtab_t *avtab, avtab_t *global, avtab_t *other, in bounds_expand_rule()
116 rc = bounds_insert_rule(handle, avtab, global, other, in bounds_expand_rule()
127 cond_av_list_t *cur, avtab_t *avtab, in bounds_expand_cond_rules()
97 bounds_expand_rule(sepol_handle_t *handle, policydb_t *p, avtab_t *avtab, avtab_t *global, avtab_t *other, uint32_t parent, uint32_t src, uint32_t tgt, uint32_t class, uint32_t data) bounds_expand_rule() argument
126 bounds_expand_cond_rules(sepol_handle_t *handle, policydb_t *p, cond_av_list_t *cur, avtab_t *avtab, avtab_t *global, avtab_t *other, uint32_t parent) bounds_expand_cond_rules() argument
148 avtab_t *avtab; global() member
[all...] |
| H A D | kernel_to_common.h | 5 #include <sepol/policydb/avtab.h>
|
| H A D | expand.c | 1622 avtab_t * avtab, avtab_key_t * key, in find_avtab_node()
1637 node = avtab_search_node(avtab, key); in find_avtab_node()
1650 node = avtab_search_node(avtab, key); in find_avtab_node()
1654 the node is part of my conditional avtab. */ in find_avtab_node()
1671 node = avtab_insert_nonunique(avtab, key, &avdatum); in find_avtab_node()
1708 avtab_t * avtab, int enabled) in expand_terule_helper()
1782 node = find_avtab_node(handle, avtab, &avkey, cond, NULL); in expand_terule_helper()
1839 class_perm_node_t * perms, avtab_t * avtab, in expand_avrule_helper()
1860 node = find_avtab_node(handle, avtab, &avkey, cond, extended_perms); in expand_avrule_helper()
1956 * Expand a rule into a given avtab
1621 find_avtab_node(sepol_handle_t * handle, avtab_t * avtab, avtab_key_t * key, cond_av_list_t ** cond, av_extended_perms_t *xperms) find_avtab_node() argument
1703 expand_terule_helper(sepol_handle_t * handle, policydb_t * p, uint32_t * typemap, uint32_t specified, cond_av_list_t ** cond, cond_av_list_t ** other, uint32_t stype, uint32_t ttype, class_perm_node_t * perms, avtab_t * avtab, int enabled) expand_terule_helper() argument
1835 expand_avrule_helper(sepol_handle_t * handle, uint32_t specified, cond_av_list_t ** cond, uint32_t stype, uint32_t ttype, class_perm_node_t * perms, avtab_t * avtab, int enabled, av_extended_perms_t *extended_perms) expand_avrule_helper() argument
[all...] |
| H A D | policydb_validate.c | 844 static int validate_avtab(sepol_handle_t *handle, const avtab_t *avtab, const policydb_t *p, validate_t flavors[]) in validate_avtab() argument
848 if (avtab_map(avtab, validate_avtab_key_and_datum, &margs)) { in validate_avtab()
849 ERR(handle, "Invalid avtab"); in validate_avtab()
|
| H A D | avtab.c | 6 * Tuned number of hash slots for avtab to reduce memory usage
45 #include <sepol/policydb/avtab.h>
117 * So copy data so it is set in the avtab in avtab_insert_node()
177 * key/specified mask into the table, as needed by the conditional avtab.
421 /* Ordering of datums in the original avtab format in the policy file. */
|
| H A D | kernel_to_cil.c | 20 #include <sepol/policydb/avtab.h>
1742 sepol_log_err("Unknown avtab type: %i", key->specified); in avtab_node_to_str()
1865 sepol_log_err("Error writing avtab rules to CIL\n"); in write_avtab_to_cil()
|
| H A D | kernel_to_conf.c | 19 #include <sepol/policydb/avtab.h>
1719 sepol_log_err("Unknown avtab type: %i", key->specified); in avtab_node_to_str()
1841 sepol_log_err("Error writing avtab rules to policy.conf\n"); in write_avtab_to_conf()
|
| H A D | write.c | 39 #include <sepol/policydb/avtab.h>
95 /* Ordering of datums in the original avtab format in the policy file. */
120 /* Generate the old avtab format. in avtab_write_item()
121 Requires merging similar entries if uncond avtab. */ in avtab_write_item()
222 /* Generate the new avtab format. */ in avtab_write_item()
291 /* Old avtab format. in avtab_write()
305 /* New avtab format. nel is good to go. */ in avtab_write()
324 /* Old avtab format. in avtab_write()
754 * Instead it writes out the key/value pairs from the avtab. This
756 * in the avtab s
[all...] |
| /third_party/selinux/libsepol/include/sepol/policydb/ |
| H A D | hierarchy.h | 28 #include <sepol/policydb/avtab.h>
|
| H A D | avtab.h | 6 * Tuned number of hash slots for avtab to reduce memory usage
33 * An access vector table (avtab) is a hash table
100 typedef struct avtab { struct
|
| H A D | conditional.h | 25 #include <sepol/policydb/avtab.h>
|
| H A D | policydb.h | 61 #include <sepol/policydb/avtab.h>
269 /* these typedefs are almost exactly the same as those in avtab.h - they are
|
| /third_party/selinux/checkpolicy/test/ |
| H A D | dispol.c | 15 * avtab (including conditional avtab) rules.
21 #include <sepol/policydb/avtab.h>
|
| /third_party/selinux/libsepol/cil/src/ |
| H A D | cil_binary.c | 922 static int __cil_cond_insert_rule(avtab_t *avtab, avtab_key_t *avtab_key, avtab_datum_t *avtab_datum, cond_node_t *cond_node, enum cil_flavor cond_flavor) in __cil_cond_insert_rule() argument
928 avtab_ptr = avtab_insert_nonunique(avtab, avtab_key, avtab_datum); in __cil_cond_insert_rule()
1719 // setting the data for an extended avtab isn't really necessary because in __cil_avrulex_ioctl_to_policydb()
1992 cil_tree_log(node, CIL_ERR, "Failed to insert type transition into avtab"); in __cil_cond_to_policydb_helper()
2000 cil_tree_log(node, CIL_ERR, "Failed to insert typerule into avtab"); in __cil_cond_to_policydb_helper()
2008 cil_tree_log(node, CIL_ERR, "Failed to insert avrule into avtab"); in __cil_cond_to_policydb_helper()
|