Home
last modified time | relevance | path

Searched refs:idmap (Results 1 – 13 of 13) sorted by relevance

/security/integrity/evm/
A Devm_main.c461 static int evm_xattr_change(struct mnt_idmap *idmap, in evm_xattr_change() argument
497 static int evm_protect_xattr(struct mnt_idmap *idmap, in evm_protect_xattr() argument
559 !evm_xattr_change(idmap, dentry, xattr_name, xattr_value, in evm_protect_xattr()
632 static int evm_inode_set_acl_change(struct mnt_idmap *idmap, in evm_inode_set_acl_change() argument
644 rc = posix_acl_update_mode(idmap, inode, &mode, &kacl); in evm_inode_set_acl_change()
728 return evm_inode_set_acl(idmap, dentry, acl_name, NULL); in evm_inode_remove_acl()
885 static int evm_attr_change(struct mnt_idmap *idmap, in evm_attr_change() argument
891 if (!i_uid_needs_update(idmap, attr, inode) && in evm_attr_change()
892 !i_gid_needs_update(idmap, attr, inode) && in evm_attr_change()
939 !evm_attr_change(idmap, dentry, attr)) in evm_inode_setattr()
[all …]
/security/integrity/ima/
A Dima_appraise.c74 int ima_must_appraise(struct mnt_idmap *idmap, struct inode *inode, in ima_must_appraise() argument
83 return ima_match_policy(idmap, inode, current_cred(), &prop, in ima_must_appraise()
661 static void ima_inode_post_setattr(struct mnt_idmap *idmap, in ima_inode_post_setattr() argument
672 action = ima_must_appraise(idmap, inode, MAY_ACCESS, POST_SETATTR); in ima_inode_post_setattr()
775 static int ima_inode_setxattr(struct mnt_idmap *idmap, struct dentry *dentry, in ima_inode_setxattr() argument
806 static int ima_inode_set_acl(struct mnt_idmap *idmap, struct dentry *dentry, in ima_inode_set_acl() argument
815 static int ima_inode_removexattr(struct mnt_idmap *idmap, struct dentry *dentry, in ima_inode_removexattr() argument
829 static int ima_inode_remove_acl(struct mnt_idmap *idmap, struct dentry *dentry, in ima_inode_remove_acl() argument
832 return ima_inode_set_acl(idmap, dentry, acl_name, NULL); in ima_inode_remove_acl()
A Dima.h382 int ima_get_action(struct mnt_idmap *idmap, struct inode *inode,
396 int process_buffer_measurement(struct mnt_idmap *idmap,
413 int ima_match_policy(struct mnt_idmap *idmap, struct inode *inode,
445 int ima_must_appraise(struct mnt_idmap *idmap, struct inode *inode,
474 static inline int ima_must_appraise(struct mnt_idmap *idmap, in ima_must_appraise() argument
A Dima_main.c760 static void ima_post_create_tmpfile(struct mnt_idmap *idmap, in ima_post_create_tmpfile() argument
770 must_appraise = ima_must_appraise(idmap, inode, MAY_ACCESS, in ima_post_create_tmpfile()
793 static void ima_post_path_mknod(struct mnt_idmap *idmap, struct dentry *dentry) in ima_post_path_mknod() argument
802 must_appraise = ima_must_appraise(idmap, inode, MAY_ACCESS, in ima_post_path_mknod()
1009 int process_buffer_measurement(struct mnt_idmap *idmap, in process_buffer_measurement() argument
1055 action = ima_get_action(idmap, inode, current_cred(), in process_buffer_measurement()
A Dima_api.c189 int ima_get_action(struct mnt_idmap *idmap, struct inode *inode, in ima_get_action() argument
199 return ima_match_policy(idmap, inode, cred, prop, func, mask, in ima_get_action()
A Dima_policy.c569 struct mnt_idmap *idmap, in ima_match_rules() argument
630 !rule->fowner_op(i_uid_into_vfsuid(idmap, inode), in ima_match_rules()
634 !rule->fgroup_op(i_gid_into_vfsgid(idmap, inode), in ima_match_rules()
741 int ima_match_policy(struct mnt_idmap *idmap, struct inode *inode, in ima_match_policy() argument
761 if (!ima_match_rules(entry, idmap, inode, cred, prop, in ima_match_policy()
/security/
A Dcommoncap.c355 error = __vfs_removexattr(idmap, dentry, XATTR_NAME_CAPS); in cap_inode_killpriv()
410 int cap_inode_getsecurity(struct mnt_idmap *idmap, in cap_inode_getsecurity() argument
431 size = vfs_getxattr_alloc(idmap, dentry, XATTR_NAME_CAPS, &tmpbuf, in cap_inode_getsecurity()
453 vfsroot = make_vfsuid(idmap, fs_ns, kroot); in cap_inode_getsecurity()
577 if (!capable_wrt_inode_uidgid(idmap, inode, CAP_SETFCAP)) in cap_convert_nscap()
579 if (size == XATTR_CAPS_SZ_2 && (idmap == &nop_mnt_idmap)) in cap_convert_nscap()
588 rootid = from_vfsuid(idmap, fs_ns, vfsrootid); in cap_convert_nscap()
665 int get_vfs_caps_from_disk(struct mnt_idmap *idmap, in get_vfs_caps_from_disk() argument
718 rootvfsuid = make_vfsuid(idmap, fs_ns, rootkuid); in get_vfs_caps_from_disk()
1056 int cap_inode_removexattr(struct mnt_idmap *idmap, in cap_inode_removexattr() argument
[all …]
A Dsecurity.c1914 call_void_hook(path_post_mknod, idmap, dentry); in security_path_post_mknod()
2340 int security_inode_setattr(struct mnt_idmap *idmap, in security_inode_setattr() argument
2406 int security_inode_setxattr(struct mnt_idmap *idmap, in security_inode_setxattr() argument
2438 int security_inode_set_acl(struct mnt_idmap *idmap, in security_inode_set_acl() argument
2475 int security_inode_get_acl(struct mnt_idmap *idmap, in security_inode_get_acl() argument
2494 int security_inode_remove_acl(struct mnt_idmap *idmap, in security_inode_remove_acl() argument
2593 int security_inode_removexattr(struct mnt_idmap *idmap, in security_inode_removexattr() argument
2603 rc = cap_inode_removexattr(idmap, dentry, name); in security_inode_removexattr()
2682 int security_inode_killpriv(struct mnt_idmap *idmap, in security_inode_killpriv() argument
2685 return call_int_hook(inode_killpriv, idmap, dentry); in security_inode_killpriv()
[all …]
/security/apparmor/
A Dlsm.c395 struct mnt_idmap *idmap = mnt_idmap(old_dir->mnt); in apparmor_path_rename() local
404 vfsuid = i_uid_into_vfsuid(idmap, d_backing_inode(old_dentry)); in apparmor_path_rename()
411 vfsuid = i_uid_into_vfsuid(idmap, d_backing_inode(old_dentry)); in apparmor_path_rename()
483 struct mnt_idmap *idmap = file_mnt_idmap(file); in apparmor_file_open() local
489 vfsuid = i_uid_into_vfsuid(idmap, inode); in apparmor_file_open()
A Dapparmorfs.c1806 static struct dentry *ns_mkdir_op(struct mnt_idmap *idmap, struct inode *dir, in ns_mkdir_op() argument
/security/smack/
A Dsmack_lsm.c1230 static int smack_inode_setattr(struct mnt_idmap *idmap, struct dentry *dentry, in smack_inode_setattr() argument
1308 static int smack_inode_setxattr(struct mnt_idmap *idmap, in smack_inode_setxattr() argument
1432 static int smack_inode_removexattr(struct mnt_idmap *idmap, in smack_inode_removexattr() argument
1490 static int smack_inode_set_acl(struct mnt_idmap *idmap, in smack_inode_set_acl() argument
1513 static int smack_inode_get_acl(struct mnt_idmap *idmap, in smack_inode_get_acl() argument
1535 static int smack_inode_remove_acl(struct mnt_idmap *idmap, in smack_inode_remove_acl() argument
1559 static int smack_inode_getsecurity(struct mnt_idmap *idmap, in smack_inode_getsecurity() argument
/security/selinux/
A Dhooks.c3251 static int selinux_inode_setattr(struct mnt_idmap *idmap, struct dentry *dentry, in selinux_inode_setattr() argument
3321 static int selinux_inode_setxattr(struct mnt_idmap *idmap, in selinux_inode_setxattr() argument
3337 return (inode_owner_or_capable(idmap, inode) ? 0 : -EPERM); in selinux_inode_setxattr()
3343 if (!inode_owner_or_capable(idmap, inode)) in selinux_inode_setxattr()
3407 static int selinux_inode_set_acl(struct mnt_idmap *idmap, in selinux_inode_set_acl() argument
3414 static int selinux_inode_get_acl(struct mnt_idmap *idmap, in selinux_inode_get_acl() argument
3420 static int selinux_inode_remove_acl(struct mnt_idmap *idmap, in selinux_inode_remove_acl() argument
3480 static int selinux_inode_removexattr(struct mnt_idmap *idmap, in selinux_inode_removexattr() argument
3560 static int selinux_inode_getsecurity(struct mnt_idmap *idmap, in selinux_inode_getsecurity() argument
A Dselinuxfs.c1939 static int reject_all(struct mnt_idmap *idmap, struct inode *inode, int mask) in reject_all() argument

Completed in 847 milliseconds