Home
last modified time | relevance | path

Searched refs:avrule (Results 1 - 17 of 17) sorted by relevance

/third_party/selinux/libsepol/src/
H A Dassertion.c34 avrule_t *avrule; member
47 static void report_failure(sepol_handle_t *handle, policydb_t *p, const avrule_t *avrule, in report_failure() argument
51 if (avrule->source_filename) { in report_failure()
53 avrule->source_line, avrule->source_filename, avrule->line, policy_name(p), in report_failure()
58 } else if (avrule->line) { in report_failure()
60 avrule->line, p->p_type_val_to_name[stype], in report_failure()
146 policydb_t *p, const avrule_t *avrule, in report_assertion_extended_permissions()
178 rc = check_extended_permissions(avrule in report_assertion_extended_permissions()
145 report_assertion_extended_permissions(sepol_handle_t *handle, policydb_t *p, const avrule_t *avrule, unsigned int stype, unsigned int ttype, const class_perm_node_t *curperm, uint32_t perms, avtab_key_t *k, avtab_t *avtab) report_assertion_extended_permissions() argument
219 avrule_t *avrule = a->avrule; report_assertion_avtab_matches() local
294 report_assertion_failures(sepol_handle_t *handle, policydb_t *p, avrule_t *avrule) report_assertion_failures() argument
324 check_assertion_extended_permissions_avtab(avrule_t *avrule, avtab_t *avtab, unsigned int stype, unsigned int ttype, avtab_key_t *k, policydb_t *p) check_assertion_extended_permissions_avtab() argument
379 check_assertion_extended_permissions(avrule_t *avrule, avtab_t *avtab, avtab_key_t *k, policydb_t *p) check_assertion_extended_permissions() argument
445 check_assertion_self_match(avtab_key_t *k, avrule_t *avrule, policydb_t *p) check_assertion_self_match() argument
476 avrule_t *avrule = a->avrule; check_assertion_avtab_match() local
517 check_assertion(policydb_t *p, avrule_t *avrule) check_assertion() argument
[all...]
H A Dpolicydb_validate.c872 static int validate_avrules(sepol_handle_t *handle, const avrule_t *avrule, int conditional, const policydb_t *p, validate_t flavors[]) in validate_avrules() argument
876 for (; avrule; avrule = avrule->next) { in validate_avrules()
877 if (validate_type_set(&avrule->stypes, &flavors[SYM_TYPES])) in validate_avrules()
879 if (validate_type_set(&avrule->ttypes, &flavors[SYM_TYPES])) in validate_avrules()
882 switch(avrule->specified) { in validate_avrules()
903 for (classperm = avrule->perms; classperm; classperm = classperm->next) { in validate_avrules()
906 if ((avrule->specified & AVRULE_TYPE) && validate_simpletype(classperm->data, p, flavors)) in validate_avrules()
910 if (avrule in validate_avrules()
[all...]
H A Dwrite.c1743 static int avrule_write(policydb_t *p, avrule_t * avrule, in avrule_write() argument
1751 (avrule->specified & AVRULE_TYPE) && in avrule_write()
1752 (avrule->flags & RULE_SELF)) { in avrule_write()
1759 buf[items++] = cpu_to_le32(avrule->specified); in avrule_write()
1760 buf[items++] = cpu_to_le32(avrule->flags); in avrule_write()
1765 if (type_set_write(&avrule->stypes, fp)) in avrule_write()
1768 if (type_set_write(&avrule->ttypes, fp)) in avrule_write()
1771 cur = avrule->perms; in avrule_write()
1782 cur = avrule->perms; in avrule_write()
1794 if (avrule in avrule_write()
1838 avrule_t *avrule; avrule_write_list() local
[all...]
H A Dmodule_to_cil.c596 log_err("Unknown avrule type: %i", type); in avrule_to_cil()
705 log_err("Unknown avrule xperm type: %i", type); in avrulex_to_cil()
1183 static int avrule_list_to_cil(int indent, struct policydb *pdb, struct avrule *avrule_list, struct list *attr_list) in avrule_list_to_cil()
1186 struct avrule *avrule; in avrule_list_to_cil() local
1192 for (avrule = avrule_list; avrule != NULL; avrule = avrule->next) { in avrule_list_to_cil()
1193 if ((avrule in avrule_list_to_cil()
[all...]
H A Dexpand.c2639 avrule_t *avrule; in copy_neverallow() local
2653 avrule = (avrule_t *) malloc(sizeof(avrule_t)); in copy_neverallow()
2654 if (!avrule) in copy_neverallow()
2657 avrule_init(avrule); in copy_neverallow()
2658 avrule->specified = source_rule->specified; in copy_neverallow()
2659 avrule->line = source_rule->line; in copy_neverallow()
2660 avrule->flags = source_rule->flags; in copy_neverallow()
2661 avrule->source_line = source_rule->source_line; in copy_neverallow()
2663 avrule->source_filename = strdup(source_rule->source_filename); in copy_neverallow()
2664 if (!avrule in copy_neverallow()
[all...]
H A Dpolicydb.c3515 avrule_t *avrule; in avrule_read() local
3518 avrule = (avrule_t *) malloc(sizeof(avrule_t)); in avrule_read()
3519 if (!avrule) in avrule_read()
3522 avrule_init(avrule); in avrule_read()
3528 avrule->specified = le32_to_cpu(buf[0]); in avrule_read()
3529 avrule->flags = le32_to_cpu(buf[1]); in avrule_read()
3531 if (type_set_read(&avrule->stypes, fp)) in avrule_read()
3534 if (type_set_read(&avrule->ttypes, fp)) in avrule_read()
3558 avrule->perms = cur; in avrule_read()
3565 if (avrule in avrule_read()
[all...]
/third_party/selinux/checkpolicy/test/
H A Ddismod.c213 static int display_avrule(avrule_t * avrule, policydb_t * policy, in display_avrule() argument
219 if (avrule == NULL) { in display_avrule()
223 if (avrule->specified & AVRULE_AV) { in display_avrule()
224 if (avrule->specified & AVRULE_ALLOWED) { in display_avrule()
227 if (avrule->specified & AVRULE_AUDITALLOW) { in display_avrule()
230 if (avrule->specified & AVRULE_DONTAUDIT) { in display_avrule()
233 } else if (avrule->specified & AVRULE_TYPE) { in display_avrule()
234 if (avrule->specified & AVRULE_TRANSITION) { in display_avrule()
237 if (avrule->specified & AVRULE_MEMBER) { in display_avrule()
240 if (avrule in display_avrule()
622 avrule_t *avrule; display_avdecl() local
647 avrule_t *avrule = decl->avrules; display_avdecl() local
[all...]
/third_party/selinux/checkpolicy/
H A Dpolicy_define.c1610 avrule_t *avrule; in define_compute_type_helper() local
1615 avrule = malloc(sizeof(avrule_t)); in define_compute_type_helper()
1616 if (!avrule) { in define_compute_type_helper()
1620 avrule_init(avrule); in define_compute_type_helper()
1621 avrule->specified = which; in define_compute_type_helper()
1622 avrule->line = policydb_lineno; in define_compute_type_helper()
1623 avrule->source_line = source_lineno; in define_compute_type_helper()
1624 avrule->source_filename = strdup(source_file); in define_compute_type_helper()
1625 if (!avrule->source_filename) { in define_compute_type_helper()
1631 if (set_types(&avrule in define_compute_type_helper()
1698 avrule_t *avrule; define_compute_type() local
1722 avrule_t *avrule; define_cond_compute_type() local
2045 avrule_t *avrule; define_te_avtab_xperms_helper() local
2395 avrule_t *avrule; define_te_avtab_ioctl() local
2505 avrule_t *avrule; define_te_avtab_helper() local
2650 avrule_t *avrule; define_cond_te_avtab() local
2670 avrule_t *avrule; define_te_avtab() local
[all...]
H A Dmodule_compiler.h82 void append_avrule(avrule_t * avrule);
103 /* Called whenever existing an avrule block. Check that the block had
H A Dmodule_compiler.c25 avrule_block_t *avrule; member
31 int type; /* for above union: 1 = avrule block, 2 = conditional */
32 avrule_decl_t *decl; /* if in an avrule block, which
35 int in_else; /* if in an avrule block, within ELSE branch */
118 /* the first declaration within the global avrule in define_policy()
1238 void append_avrule(avrule_t * avrule) in append_avrule() argument
1250 decl->avrules = avrule; in append_avrule()
1252 stack_top->last_avrule->next = avrule; in append_avrule()
1254 stack_top->last_avrule = avrule; in append_avrule()
1310 /* allocate a new avrule bloc in begin_optional()
[all...]
/third_party/selinux/libsepol/cil/src/
H A Dcil_find.c295 static int cil_find_matching_avrule(struct cil_tree_node *node, struct cil_avrule *avrule, struct cil_avrule *target, struct cil_list *matching, int match_self) in cil_find_matching_avrule() argument
298 struct cil_symtab_datum *s1 = avrule->src; in cil_find_matching_avrule()
299 struct cil_symtab_datum *t1 = avrule->tgt; in cil_find_matching_avrule()
303 if (match_self != CIL_TRUE && avrule == target) goto exit; in cil_find_matching_avrule()
305 if (avrule->rule_kind != target->rule_kind) goto exit; in cil_find_matching_avrule()
307 if (avrule->is_extended != target->is_extended) goto exit; in cil_find_matching_avrule()
336 if (cil_classperms_list_match_any(avrule->perms.classperms, target->perms.classperms)) { in cil_find_matching_avrule()
340 if (cil_permissionx_match_any(avrule->perms.x.permx, target->perms.x.permx)) { in cil_find_matching_avrule()
387 cil_log(CIL_ERR, "An error occurred while searching for avrule in AST\n"); in cil_find_matching_avrule_in_ast()
H A Dcil.c2448 void cil_avrule_init(struct cil_avrule **avrule) in cil_avrule_init() argument
2450 *avrule = cil_malloc(sizeof(**avrule)); in cil_avrule_init()
2452 (*avrule)->is_extended = 0; in cil_avrule_init()
2453 (*avrule)->rule_kind = CIL_NONE; in cil_avrule_init()
2454 (*avrule)->src_str = NULL; in cil_avrule_init()
2455 (*avrule)->src = NULL; in cil_avrule_init()
2456 (*avrule)->tgt_str = NULL; in cil_avrule_init()
2457 (*avrule)->tgt = NULL; in cil_avrule_init()
2458 memset(&((*avrule) in cil_avrule_init()
[all...]
H A Dcil_binary.c2008 cil_tree_log(node, CIL_ERR, "Failed to insert avrule into avtab"); in __cil_cond_to_policydb_helper()
4614 avrule_t *avrule; in __cil_init_sepol_avrule() local
4620 avrule = cil_malloc(sizeof(avrule_t)); in __cil_init_sepol_avrule()
4621 avrule->specified = kind; in __cil_init_sepol_avrule()
4622 avrule->flags = 0; in __cil_init_sepol_avrule()
4623 __cil_init_sepol_type_set(&avrule->stypes); in __cil_init_sepol_avrule()
4624 __cil_init_sepol_type_set(&avrule->ttypes); in __cil_init_sepol_avrule()
4625 avrule->perms = NULL; in __cil_init_sepol_avrule()
4626 avrule->line = node->line; in __cil_init_sepol_avrule()
4628 avrule in __cil_init_sepol_avrule()
4712 __cil_print_rule(const char *pad, const char *kind, struct cil_avrule *avrule) __cil_print_rule() argument
[all...]
H A Dcil_verify.c1030 struct cil_avrule *avrule = NULL; in __cil_verify_booleanif_helper() local
1031 avrule = rule_node->data; in __cil_verify_booleanif_helper()
1032 if (avrule->rule_kind == CIL_AVRULE_NEVERALLOW) { in __cil_verify_booleanif_helper()
H A Dcil_internal.h1038 void cil_avrule_init(struct cil_avrule **avrule);
H A Dcil_post.c2222 struct cil_avrule *avrule = node->data; in __cil_post_db_classperms_helper() local
2223 rc = __evaluate_classperms_list(avrule->perms.classperms, db); in __cil_post_db_classperms_helper()
2505 cil_log(CIL_ERR, "Policy must include at least one avrule\n"); in cil_post_verify()
/third_party/selinux/libsepol/include/sepol/policydb/
H A Dpolicydb.h268 typedef struct avrule { struct
299 struct avrule *next;
699 extern int check_assertion(policydb_t *p, avrule_t *avrule);

Completed in 39 milliseconds