| /security/integrity/ima/ |
| A D | ima_queue_keys.c | 60 if (entry) { in ima_free_key_entry()
61 kfree(entry->payload); in ima_free_key_entry()
63 kfree(entry); in ima_free_key_entry()
75 entry = kzalloc(sizeof(*entry), GFP_KERNEL); in ima_alloc_key_entry()
76 if (entry) { in ima_alloc_key_entry()
83 if ((entry == NULL) || (entry->payload == NULL) || in ima_alloc_key_entry()
98 entry = NULL; in ima_alloc_key_entry()
101 return entry; in ima_alloc_key_entry()
111 if (!entry) in ima_queue_key()
163 entry->payload, in ima_process_queued_keys()
[all …]
|
| A D | ima_policy.c | 391 if (!entry) in ima_free_rule()
780 actmask &= ~(entry->action | entry->action << 1); in ima_match_policy()
782 actmask &= ~(entry->action | entry->action >> 1); in ima_match_policy()
878 entry = kmemdup(&entries[i], sizeof(*entry), in add_rules()
1250 if (entry->action != MEASURE && entry->flags & IMA_PCR) in ima_validate_rule()
1898 template_desc = entry->template ? entry->template : in ima_parse_rule()
1906 template_desc = entry->template ? entry->template : in ima_parse_rule()
1939 entry = kzalloc(sizeof(*entry), GFP_KERNEL); in ima_parse_add_rule()
2026 &entry->list == &ima_policy_rules) ? NULL : entry; in ima_policy_next()
2084 if (entry->lsm[i].args_p && !entry->lsm[i].rule) { in ima_policy_show()
[all …]
|
| A D | ima_api.c | 30 kfree(entry->digests); in ima_free_template_entry()
31 kfree(entry); in ima_free_template_entry()
50 *entry = kzalloc(struct_size(*entry, template_data, in ima_alloc_init_template()
52 if (!*entry) in ima_alloc_init_template()
58 kfree(*entry); in ima_alloc_init_template()
59 *entry = NULL; in ima_alloc_init_template()
63 (*entry)->digests = digests; in ima_alloc_init_template()
81 ima_free_template_entry(*entry); in ima_alloc_init_template()
82 *entry = NULL; in ima_alloc_init_template()
113 entry); in ima_store_template()
[all …]
|
| A D | ima_queue.c | 67 if ((rc == 0) && (qe->entry->pcr == pcr)) { in ima_lookup_digest_entry()
88 size += strlen(entry->template_desc->name); in get_binary_runtime_size()
89 size += sizeof(entry->template_data_len); in get_binary_runtime_size()
90 size += entry->template_data_len; in get_binary_runtime_size()
111 qe->entry = entry; in ima_add_digest_entry()
125 size = get_binary_runtime_size(entry); in ima_add_digest_entry()
171 struct tpm_digest *digests_arg = entry->digests; in ima_add_template_entry()
191 if (ima_lookup_digest_entry(digest, entry->pcr)) { in ima_add_template_entry()
198 result = ima_add_digest_entry(entry, in ima_add_template_entry()
209 tpmresult = ima_pcr_extend(digests_arg, entry->pcr); in ima_add_template_entry()
[all …]
|
| A D | ima_template.c | 365 *entry = kzalloc(struct_size(*entry, template_data, in ima_restore_template_data()
367 if (!*entry) in ima_restore_template_data()
373 kfree(*entry); in ima_restore_template_data()
377 (*entry)->digests = digests; in ima_restore_template_data()
384 kfree((*entry)->digests); in ima_restore_template_data()
385 kfree(*entry); in ima_restore_template_data()
406 ima_free_template_entry(*entry); in ima_restore_template_data()
407 *entry = NULL; in ima_restore_template_data()
513 &entry); in ima_restore_measurement_list()
519 &entry->template_data[0], in ima_restore_measurement_list()
[all …]
|
| A D | ima_init.c | 46 struct ima_template_entry *entry; in ima_add_boot_aggregate() local
82 result = ima_alloc_init_template(&event_data, &entry, NULL); in ima_add_boot_aggregate()
88 result = ima_store_template(entry, violation, NULL, in ima_add_boot_aggregate()
92 ima_free_template_entry(entry); in ima_add_boot_aggregate()
|
| A D | ima_crypto.c | 579 struct ima_template_entry *entry, in ima_calc_field_array_hash_tfm() argument
583 struct ima_template_desc *td = entry->template_desc; in ima_calc_field_array_hash_tfm()
584 int num_fields = entry->template_desc->num_fields; in ima_calc_field_array_hash_tfm()
617 rc = crypto_shash_final(shash, entry->digests[tfm_idx].digest); in ima_calc_field_array_hash_tfm()
623 struct ima_template_entry *entry) in ima_calc_field_array_hash() argument
628 rc = ima_calc_field_array_hash_tfm(field_data, entry, ima_sha1_idx); in ima_calc_field_array_hash()
632 entry->digests[ima_sha1_idx].alg_id = TPM_ALG_SHA1; in ima_calc_field_array_hash()
640 entry->digests[i].alg_id = alg_id; in ima_calc_field_array_hash()
645 memcpy(entry->digests[i].digest, in ima_calc_field_array_hash()
646 entry->digests[ima_sha1_idx].digest, in ima_calc_field_array_hash()
[all …]
|
| A D | ima.h | 117 struct ima_template_entry *entry; member
262 int ima_add_template_entry(struct ima_template_entry *entry, int violation,
269 struct ima_template_entry *entry);
284 int ima_restore_measurement_entry(struct ima_template_entry *entry);
404 struct ima_template_entry **entry,
406 int ima_store_template(struct ima_template_entry *entry, int violation,
409 void ima_free_template_entry(struct ima_template_entry *entry);
|
| A D | ima_main.c | 1017 struct ima_template_entry *entry = NULL; in process_buffer_measurement() local
1095 ret = ima_alloc_init_template(&event_data, &entry, template); in process_buffer_measurement()
1101 ret = ima_store_template(entry, violation, NULL, event_data.buf, pcr); in process_buffer_measurement()
1104 ima_free_template_entry(entry); in process_buffer_measurement()
|
| A D | ima_fs.c | 147 e = qe->entry; in ima_measurements_show()
244 e = qe->entry; in ima_ascii_measurements_show()
|
| /security/selinux/ss/ |
| A D | sidtab.c | 67 if (entry->hash != hash) in context_to_sid()
70 sid = entry->sid; in context_to_sid()
107 isid->entry.sid = sid; in sidtab_set_initial()
204 entry = &entry->ptr_inner->entries[leaf_index >> capacity_shift]; in sidtab_do_lookup()
215 if (!entry->ptr_leaf) { in sidtab_do_lookup()
217 entry->ptr_leaf = in sidtab_do_lookup()
219 if (!entry->ptr_leaf) in sidtab_do_lookup()
251 if (entry && (!entry->context.len || force)) in sidtab_search_core()
252 return entry; in sidtab_search_core()
371 entry->hash = context_compute_hash(&entry->context); in sidtab_convert_hashtable()
[all …]
|
| A D | sidtab.h | 66 struct sidtab_entry entry; member
114 struct sidtab_entry *entry = sidtab_search_entry(s, sid); in sidtab_search() local
116 return entry ? &entry->context : NULL; in sidtab_search()
121 struct sidtab_entry *entry = sidtab_search_entry_force(s, sid); in sidtab_search_force() local
123 return entry ? &entry->context : NULL; in sidtab_search_force()
142 void sidtab_sid2str_put(struct sidtab *s, struct sidtab_entry *entry,
144 int sidtab_sid2str_get(struct sidtab *s, struct sidtab_entry *entry, char **out,
148 struct sidtab_entry *entry, in sidtab_sid2str_put() argument
153 struct sidtab_entry *entry, char **out, in sidtab_sid2str_get() argument
|
| A D | services.c | 85 struct sidtab_entry *entry,
1313 struct sidtab_entry *entry, in sidtab_entry_to_string() argument
1316 int rc = sidtab_sid2str_get(sidtab, entry, scontext, scontext_len); in sidtab_entry_to_string()
1321 rc = context_struct_to_string(p, &entry->context, scontext, in sidtab_entry_to_string()
1324 sidtab_sid2str_put(sidtab, entry, *scontext, *scontext_len); in sidtab_entry_to_string()
1363 struct sidtab_entry *entry; in security_sid_to_context_core() local
1407 entry = sidtab_search_entry_force(sidtab, sid); in security_sid_to_context_core()
1409 entry = sidtab_search_entry(sidtab, sid); in security_sid_to_context_core()
1410 if (!entry) { in security_sid_to_context_core()
1416 if (only_invalid && !entry->context.len) in security_sid_to_context_core()
[all …]
|
| /security/tomoyo/ |
| A D | gc.c | 165 struct tomoyo_path_acl *entry in tomoyo_del_acl() local
172 struct tomoyo_path2_acl *entry in tomoyo_del_acl() local
188 struct tomoyo_mkdev_acl *entry in tomoyo_del_acl() local
198 struct tomoyo_mount_acl *entry in tomoyo_del_acl() local
208 struct tomoyo_env_acl *entry = in tomoyo_del_acl() local
211 tomoyo_put_name(entry->env); in tomoyo_del_acl()
216 struct tomoyo_inet_acl *entry = in tomoyo_del_acl() local
225 struct tomoyo_unix_acl *entry = in tomoyo_del_acl() local
233 struct tomoyo_task_acl *entry = in tomoyo_del_acl() local
236 tomoyo_put_name(entry->domainname); in tomoyo_del_acl()
[all …]
|
| A D | domain.c | 56 if (entry) { in tomoyo_update_policy()
131 entry->is_deleted = merge_duplicate(entry, new_entry, in tomoyo_update_domain()
140 if (entry) { in tomoyo_update_domain()
483 ptr = entry; in tomoyo_assign_namespace()
488 entry = NULL; in tomoyo_assign_namespace()
492 kfree(entry); in tomoyo_assign_namespace()
529 if (entry) { in tomoyo_assign_domain()
538 !entry->ns->profile_ptr[entry->profile]) in tomoyo_assign_domain()
575 if (!entry) { in tomoyo_assign_domain()
577 if (entry) { in tomoyo_assign_domain()
[all …]
|
| A D | memory.c | 121 struct tomoyo_group *entry = tomoyo_commit_ok(&e, sizeof(e)); in tomoyo_get_group() local
123 if (entry) { in tomoyo_get_group()
124 INIT_LIST_HEAD(&entry->member_list); in tomoyo_get_group()
125 atomic_set(&entry->head.users, 1); in tomoyo_get_group()
126 list_add_tail_rcu(&entry->head.list, list); in tomoyo_get_group()
127 group = entry; in tomoyo_get_group()
167 if (hash != ptr->entry.hash || strcmp(name, ptr->entry.name) || in tomoyo_get_name()
175 ptr->entry.name = ((char *) ptr) + sizeof(*ptr); in tomoyo_get_name()
176 memmove((char *) ptr->entry.name, name, len); in tomoyo_get_name()
178 tomoyo_fill_path_info(&ptr->entry); in tomoyo_get_name()
[all …]
|
| A D | condition.c | 407 (struct tomoyo_condition *entry) in tomoyo_commit_condition() argument
440 kfree(entry); in tomoyo_commit_condition()
441 entry = ptr; in tomoyo_commit_condition()
443 return entry; in tomoyo_commit_condition()
551 if (entry) { in tomoyo_get_condition()
658 if (entry) { in tomoyo_get_condition()
663 e.size = sizeof(*entry) in tomoyo_get_condition()
670 if (!entry) in tomoyo_get_condition()
672 *entry = e; in tomoyo_get_condition()
697 if (entry) { in tomoyo_get_condition()
[all …]
|
| A D | audit.c | 370 struct tomoyo_log *entry; in tomoyo_write_log2() local
379 entry = kzalloc(sizeof(*entry), GFP_NOFS); in tomoyo_write_log2()
380 if (!entry) { in tomoyo_write_log2()
384 entry->log = buf; in tomoyo_write_log2()
390 entry->size = len + kmalloc_size_roundup(sizeof(*entry)); in tomoyo_write_log2()
393 tomoyo_memory_used[TOMOYO_MEMORY_AUDIT] + entry->size >= in tomoyo_write_log2()
397 tomoyo_memory_used[TOMOYO_MEMORY_AUDIT] += entry->size; in tomoyo_write_log2()
398 list_add_tail(&entry->list, &tomoyo_log); in tomoyo_write_log2()
404 kfree(entry); in tomoyo_write_log2()
|
| A D | common.c | 493 entry = kzalloc(sizeof(*entry), GFP_NOFS | __GFP_NOWARN); in tomoyo_assign_profile()
498 ptr = entry; in tomoyo_assign_profile()
510 entry = NULL; in tomoyo_assign_profile()
514 kfree(entry); in tomoyo_assign_profile()
2023 char *cp = entry; in tomoyo_patternize_path()
2034 cp = entry; in tomoyo_patternize_path()
2200 if (!entry.query) in tomoyo_supervisor()
2202 entry.query_len = strlen(entry.query) + 1; in tomoyo_supervisor()
2230 entry.timer++; in tomoyo_supervisor()
2233 list_del(&entry.list); in tomoyo_supervisor()
[all …]
|
| A D | common.h | 515 struct tomoyo_path_info entry; member
1179 container_of(name, typeof(*ptr), entry); in tomoyo_put_name()
|
| /security/apparmor/ |
| A D | lib.c | 53 struct val_table_ent *entry; in val_table_find_ent() local
55 for (entry = table; entry->str != NULL; entry++) { in val_table_find_ent()
56 if (strncmp(entry->str, name, len) == 0 && in val_table_find_ent()
57 strlen(entry->str) == len) in val_table_find_ent()
58 return entry; in val_table_find_ent()
|
| A D | Kconfig | 34 function entry preconditions but also exist at other key
|
| /security/loadpin/ |
| A D | Kconfig | 36 on the LoadPin securityfs entry 'dm-verity'. The ioctl
|
| /security/ |
| A D | Kconfig.hardening | 22 prompt "Initialize kernel stack variables at function entry"
28 function entry time. This has the possibility to have the
|