| /kernel/linux/linux-5.10/security/apparmor/include/ |
| H A D | label.h | 59 struct aa_label *aa_vec_find_or_create_label(struct aa_profile **vec, int len,
104 struct aa_label;
107 struct aa_label __rcu *label;
114 /* struct aa_label - lazy labeling struct
125 struct aa_label { struct
154 int aa_label_next_confined(struct aa_label *l, int i);
278 void aa_label_destroy(struct aa_label *label);
279 void aa_label_free(struct aa_label *label);
281 bool aa_label_init(struct aa_label *label, int size, gfp_t gfp);
282 struct aa_label *aa_label_allo
[all...] |
| H A D | cred.h | 22 static inline struct aa_label *cred_label(const struct cred *cred) in cred_label()
24 struct aa_label **blob = cred->security + apparmor_blob_sizes.lbs_cred; in cred_label()
31 struct aa_label *label) in set_cred_label()
33 struct aa_label **blob = cred->security + apparmor_blob_sizes.lbs_cred; in set_cred_label()
47 static inline struct aa_label *aa_cred_raw_label(const struct cred *cred) in aa_cred_raw_label()
49 struct aa_label *label = cred_label(cred); in aa_cred_raw_label()
61 static inline struct aa_label *aa_get_newest_cred_label(const struct cred *cred) in aa_get_newest_cred_label()
74 static inline struct aa_label *__aa_task_raw_label(struct task_struct *task) in __aa_task_raw_label()
87 static inline struct aa_label *aa_current_raw_label(void) in aa_current_raw_label()
101 static inline struct aa_label *aa_get_current_labe
[all...] |
| H A D | mount.h | 28 int aa_remount(struct aa_label *label, const struct path *path,
31 int aa_bind_mount(struct aa_label *label, const struct path *path,
35 int aa_mount_change_type(struct aa_label *label, const struct path *path,
38 int aa_move_mount(struct aa_label *label, const struct path *path,
41 int aa_new_mount(struct aa_label *label, const char *dev_name,
45 int aa_umount(struct aa_label *label, struct vfsmount *mnt, int flags);
47 int aa_pivotroot(struct aa_label *label, const struct path *old_path,
|
| H A D | task.h | 26 struct aa_label *nnp;
27 struct aa_label *onexec;
28 struct aa_label *previous;
32 int aa_replace_current_label(struct aa_label *label);
33 int aa_set_current_onexec(struct aa_label *label, bool stack);
34 int aa_set_current_hat(struct aa_label *label, u64 token);
36 struct aa_label *aa_get_task_label(struct task_struct *task);
|
| H A D | ipc.h | 32 int aa_may_ptrace(struct aa_label *tracer, struct aa_label *tracee,
34 int aa_may_signal(struct aa_label *sender, struct aa_label *target, int sig);
|
| H A D | secid.h | 16 struct aa_label;
24 struct aa_label *aa_secid_to_label(u32 secid);
30 int aa_alloc_secid(struct aa_label *label, gfp_t gfp);
32 void aa_secid_update(u32 secid, struct aa_label *label);
|
| H A D | resource.h | 36 int aa_task_setrlimit(struct aa_label *label, struct task_struct *task,
39 void __aa_transition_rlimits(struct aa_label *old, struct aa_label *new);
|
| H A D | file.h | 43 struct aa_label __rcu *label;
54 static inline struct aa_file_ctx *aa_alloc_file_ctx(struct aa_label *label, in aa_alloc_file_ctx()
79 static inline struct aa_label *aa_get_file_label(struct aa_file_ctx *ctx) in aa_get_file_label()
161 const char *target, struct aa_label *tlabel, kuid_t ouid,
192 int aa_path_perm(const char *op, struct aa_label *label,
196 int aa_path_link(struct aa_label *label, struct dentry *old_dentry,
199 int aa_file_perm(const char *op, struct aa_label *label, struct file *file,
|
| H A D | net.h | 50 struct aa_label *label;
51 struct aa_label *peer;
94 int aa_af_perm(struct aa_label *label, const char *op, u32 request, u16 family,
106 int aa_sock_file_perm(struct aa_label *label, const char *op, u32 request,
109 int apparmor_secmark_check(struct aa_label *label, char *op, u32 request,
|
| /kernel/linux/linux-6.6/security/apparmor/include/ |
| H A D | label.h | 59 struct aa_label *aa_vec_find_or_create_label(struct aa_profile **vec, int len,
102 struct aa_label;
105 struct aa_label __rcu *label;
112 /* struct aa_label - lazy labeling struct
123 struct aa_label { struct
153 int aa_label_next_confined(struct aa_label *l, int i);
277 void aa_label_destroy(struct aa_label *label);
278 void aa_label_free(struct aa_label *label);
280 bool aa_label_init(struct aa_label *label, int size, gfp_t gfp);
281 struct aa_label *aa_label_allo
[all...] |
| H A D | cred.h | 22 static inline struct aa_label *cred_label(const struct cred *cred) in cred_label()
24 struct aa_label **blob = cred->security + apparmor_blob_sizes.lbs_cred; in cred_label()
31 struct aa_label *label) in set_cred_label()
33 struct aa_label **blob = cred->security + apparmor_blob_sizes.lbs_cred; in set_cred_label()
47 static inline struct aa_label *aa_cred_raw_label(const struct cred *cred) in aa_cred_raw_label()
49 struct aa_label *label = cred_label(cred); in aa_cred_raw_label()
61 static inline struct aa_label *aa_get_newest_cred_label(const struct cred *cred) in aa_get_newest_cred_label()
74 static inline struct aa_label *aa_current_raw_label(void) in aa_current_raw_label()
88 static inline struct aa_label *aa_get_current_label(void) in aa_get_current_label()
90 struct aa_label * in aa_get_current_label()
[all...] |
| H A D | mount.h | 29 struct aa_label *label, const struct path *path,
33 struct aa_label *label, const struct path *path,
38 struct aa_label *label, const struct path *path,
42 struct aa_label *label, const struct path *path,
45 struct aa_label *label, const struct path *from_path,
49 struct aa_label *label, const char *dev_name,
54 struct aa_label *label, struct vfsmount *mnt, int flags);
57 struct aa_label *label, const struct path *old_path,
|
| H A D | task.h | 26 struct aa_label *nnp;
27 struct aa_label *onexec;
28 struct aa_label *previous;
32 int aa_replace_current_label(struct aa_label *label);
33 int aa_set_current_onexec(struct aa_label *label, bool stack);
34 int aa_set_current_hat(struct aa_label *label, u64 token);
36 struct aa_label *aa_get_task_label(struct task_struct *task);
94 int aa_may_ptrace(const struct cred *tracer_cred, struct aa_label *tracer,
95 const struct cred *tracee_cred, struct aa_label *tracee,
|
| H A D | file.h | 44 struct aa_label __rcu *label;
55 static inline struct aa_file_ctx *aa_alloc_file_ctx(struct aa_label *label, in aa_alloc_file_ctx()
80 static inline struct aa_label *aa_get_file_label(struct aa_file_ctx *ctx) in aa_get_file_label()
114 const char *target, struct aa_label *tlabel, kuid_t ouid,
124 struct aa_label *label, const struct path *path,
127 int aa_path_link(const struct cred *subj_cred, struct aa_label *label,
132 struct aa_label *label, struct file *file,
|
| H A D | secid.h | 16 struct aa_label;
27 struct aa_label *aa_secid_to_label(u32 secid);
33 int aa_alloc_secid(struct aa_label *label, gfp_t gfp);
35 void aa_secid_update(u32 secid, struct aa_label *label);
|
| H A D | resource.h | 36 int aa_task_setrlimit(const struct cred *subj_cred, struct aa_label *label,
40 void __aa_transition_rlimits(struct aa_label *old, struct aa_label *new);
|
| H A D | net.h | 50 struct aa_label *label;
51 struct aa_label *peer;
96 int aa_af_perm(const struct cred *subj_cred, struct aa_label *label,
109 int aa_sock_file_perm(const struct cred *subj_cred, struct aa_label *label,
113 int apparmor_secmark_check(struct aa_label *label, char *op, u32 request,
|
| /kernel/linux/linux-5.10/security/apparmor/ |
| H A D | label.c | 22 * the aa_label represents the set of profiles confining an object
48 RCU_INIT_POINTER(proxy->label, (struct aa_label *)PROXY_POISON); in free_proxy()
60 struct aa_proxy *aa_alloc_proxy(struct aa_label *label, gfp_t gfp) in aa_alloc_proxy()
73 void __aa_proxy_redirect(struct aa_label *orig, struct aa_label *new) in __aa_proxy_redirect()
75 struct aa_label *tmp; in __aa_proxy_redirect()
88 static void __proxy_share(struct aa_label *old, struct aa_label *new) in __proxy_share()
312 void aa_label_destroy(struct aa_label *label) in aa_label_destroy()
339 void aa_label_free(struct aa_label *labe
[all...] |
| H A D | task.c | 24 struct aa_label *aa_get_task_label(struct task_struct *task) in aa_get_task_label()
26 struct aa_label *p; in aa_get_task_label()
41 int aa_replace_current_label(struct aa_label *label) in aa_replace_current_label()
43 struct aa_label *old = aa_current_raw_label(); in aa_replace_current_label()
60 struct aa_label *tmp = ctx->nnp; in aa_replace_current_label()
93 int aa_set_current_onexec(struct aa_label *label, bool stack) in aa_set_current_onexec()
115 int aa_set_current_hat(struct aa_label *label, u64 token) in aa_set_current_hat()
|
| H A D | secid.c | 46 void aa_secid_update(u32 secid, struct aa_label *label) in aa_secid_update()
59 struct aa_label *aa_secid_to_label(u32 secid) in aa_secid_to_label()
61 struct aa_label *label; in aa_secid_to_label()
73 struct aa_label *label = aa_secid_to_label(secid); in apparmor_secid_to_secctx()
100 struct aa_label *label; in apparmor_secctx_to_secid()
124 int aa_alloc_secid(struct aa_label *label, gfp_t gfp) in aa_alloc_secid()
|
| H A D | ipc.c | 64 struct aa_label *peer, u32 request, in profile_ptrace_perm()
77 struct aa_label *tracer, u32 request, in profile_tracee_perm()
88 struct aa_label *tracee, u32 request, in profile_tracer_perm()
118 int aa_may_ptrace(struct aa_label *tracer, struct aa_label *tracee, in aa_may_ptrace()
188 struct aa_label *peer, u32 request, in profile_signal_perm()
208 int aa_may_signal(struct aa_label *sender, struct aa_label *target, int sig) in aa_may_signal()
|
| H A D | file.c | 92 const char *target, struct aa_label *tlabel, in aa_audit_file()
155 static int path_name(const char *op, struct aa_label *label, in path_name()
313 int aa_path_perm(const char *op, struct aa_label *label, in aa_path_perm()
455 int aa_path_link(struct aa_label *label, struct dentry *old_dentry, in aa_path_link()
484 static void update_file_ctx(struct aa_file_ctx *fctx, struct aa_label *label, in update_file_ctx()
487 struct aa_label *l, *old; in update_file_ctx()
505 static int __file_path_perm(const char *op, struct aa_label *label, in __file_path_perm()
506 struct aa_label *flabel, struct file *file, in __file_path_perm()
560 static int __file_sock_perm(const char *op, struct aa_label *label, in __file_sock_perm()
561 struct aa_label *flabe in __file_sock_perm()
[all...] |
| /kernel/linux/linux-6.6/security/apparmor/ |
| H A D | label.c | 22 * the aa_label represents the set of profiles confining an object
48 RCU_INIT_POINTER(proxy->label, (struct aa_label *)PROXY_POISON); in free_proxy()
60 struct aa_proxy *aa_alloc_proxy(struct aa_label *label, gfp_t gfp) in aa_alloc_proxy()
73 void __aa_proxy_redirect(struct aa_label *orig, struct aa_label *new) in __aa_proxy_redirect()
75 struct aa_label *tmp; in __aa_proxy_redirect()
88 static void __proxy_share(struct aa_label *old, struct aa_label *new) in __proxy_share()
315 void aa_label_destroy(struct aa_label *label) in aa_label_destroy()
342 void aa_label_free(struct aa_label *labe
[all...] |
| H A D | task.c | 29 struct aa_label *aa_get_task_label(struct task_struct *task) in aa_get_task_label()
31 struct aa_label *p; in aa_get_task_label()
46 int aa_replace_current_label(struct aa_label *label) in aa_replace_current_label()
48 struct aa_label *old = aa_current_raw_label(); in aa_replace_current_label()
65 struct aa_label *tmp = ctx->nnp; in aa_replace_current_label()
98 int aa_set_current_onexec(struct aa_label *label, bool stack) in aa_set_current_onexec()
120 int aa_set_current_hat(struct aa_label *label, u64 token) in aa_set_current_hat()
231 struct aa_label *peer, u32 request, in profile_ptrace_perm()
248 struct aa_label *tracer, u32 request, in profile_tracee_perm()
260 struct aa_label *trace in profile_tracer_perm()
[all...] |
| H A D | secid.c | 47 void aa_secid_update(u32 secid, struct aa_label *label) in aa_secid_update()
59 struct aa_label *aa_secid_to_label(u32 secid) in aa_secid_to_label()
67 struct aa_label *label = aa_secid_to_label(secid); in apparmor_secid_to_secctx()
95 struct aa_label *label; in apparmor_secctx_to_secid()
119 int aa_alloc_secid(struct aa_label *label, gfp_t gfp) in aa_alloc_secid()
|