Home
last modified time | relevance | path

Searched refs:security (Results 1 – 25 of 27) sorted by relevance

12

/security/integrity/evm/
A DKconfig12 EVM protects a file's security extended attributes against
38 In addition to the original security xattrs (eg. security.selinux,
39 security.SMACK64, security.capability, and security.ima) included
41 Smack xattrs: security.SMACK64EXEC, security.SMACK64TRANSMUTE and
42 security.SMACK64MMAP.
57 /sys/kernel/security/integrity/evm/evm_xattrs.
/security/selinux/
A Dxfrm.c67 return selinux_authorizable_ctx(x->security); in selinux_authorizable_xfrm()
177 if (!xp->security) in selinux_xfrm_state_pol_flow_match()
178 if (x->security) in selinux_xfrm_state_pol_flow_match()
185 if (!x->security) in selinux_xfrm_state_pol_flow_match()
193 state_sid = x->security->ctx_sid; in selinux_xfrm_state_pol_flow_match()
218 return x->security->ctx_sid; in selinux_xfrm_skb_sid_egress()
233 struct xfrm_sec_ctx *ctx = x->security; in selinux_xfrm_skb_sid_ingress()
369 x->security = ctx; in selinux_xfrm_state_alloc_acquire()
381 selinux_xfrm_free(x->security); in selinux_xfrm_state_free()
389 return selinux_xfrm_delete(x->security); in selinux_xfrm_state_delete()
[all …]
A DMakefile13 ccflags-y := -I$(srctree)/security/selinux -I$(srctree)/security/selinux/include
44 HOST_EXTRACFLAGS += -I$(srctree)/security/selinux/include
A Dhooks.c2820 fc->security = opts; in selinux_fs_context_submount()
7065 bpfsec = map->security; in bpf_fd_pass()
7072 bpfsec = prog->aux->security; in bpf_fd_pass()
7086 bpfsec = map->security; in selinux_bpf_map()
7096 bpfsec = prog->aux->security; in selinux_bpf_prog()
7111 map->security = bpfsec; in selinux_bpf_map_create()
7120 map->security = NULL; in selinux_bpf_map_free()
7134 prog->aux->security = bpfsec; in selinux_bpf_prog_load()
7143 prog->aux->security = NULL; in selinux_bpf_prog_free()
7157 token->security = bpfsec; in selinux_bpf_token_create()
[all …]
A DKconfig88 echo -n 'file "security/selinux/*" +p' > \
/security/
A DKconfig8 source "security/keys/Kconfig"
223 source "security/selinux/Kconfig"
224 source "security/smack/Kconfig"
225 source "security/tomoyo/Kconfig"
226 source "security/apparmor/Kconfig"
227 source "security/loadpin/Kconfig"
228 source "security/yama/Kconfig"
229 source "security/safesetid/Kconfig"
230 source "security/lockdown/Kconfig"
231 source "security/landlock/Kconfig"
[all …]
A Dsecurity.c3824 kfree(msg->security); in security_msg_msg_free()
3825 msg->security = NULL; in security_msg_msg_free()
3858 kfree(msq->security); in security_msg_queue_free()
3859 msq->security = NULL; in security_msg_queue_free()
3961 kfree(shp->security); in security_shm_free()
3962 shp->security = NULL; in security_shm_free()
4045 kfree(sma->security); in security_sem_free()
4046 sma->security = NULL; in security_sem_free()
5061 kfree(*security); in security_tun_dev_alloc_security()
5062 *security = NULL; in security_tun_dev_alloc_security()
[all …]
A DMakefile14 obj-$(CONFIG_SECURITY) += security.o
/security/selinux/include/
A Dobjsec.h176 return cred->security + selinux_blob_sizes.lbs_cred; in selinux_cred()
195 return msg_msg->security + selinux_blob_sizes.lbs_msg_msg; in selinux_msg_msg()
201 return ipc->security + selinux_blob_sizes.lbs_ipc; in selinux_ipc()
223 return key->security + selinux_blob_sizes.lbs_key; in selinux_key()
232 static inline struct tun_security_struct *selinux_tun_dev(void *security) in selinux_tun_dev() argument
234 return security + selinux_blob_sizes.lbs_tun_dev; in selinux_tun_dev()
/security/yama/
A DKconfig8 system-wide security settings beyond regular Linux discretionary
10 Like capabilities, this security module stacks with other LSMs.
/security/apparmor/include/
A Dcred.h24 struct aa_label **blob = cred->security + apparmor_blob_sizes.lbs_cred; in cred_label()
33 struct aa_label **blob = cred->security + apparmor_blob_sizes.lbs_cred; in set_cred_label()
A Dtask.h15 return task->security + apparmor_blob_sizes.lbs_task; in task_ctx()
/security/smack/
A Dsmack.h335 return cred->security + smack_blob_sizes.lbs_cred; in smack_cred()
351 return msg->security + smack_blob_sizes.lbs_msg_msg; in smack_msg_msg()
356 return ipc->security + smack_blob_sizes.lbs_ipc; in smack_ipc()
373 return key->security + smack_blob_sizes.lbs_key; in smack_key()
A DKconfig13 of other mandatory security schemes.
41 This enables security marking of network packets using
A Dsmack_lsm.c628 fc->security = ctx; in smack_fs_context_submount()
671 struct smack_mnt_opts *dst, *src = src_fc->security; in smack_fs_context_dup()
676 fc->security = kzalloc(sizeof(struct smack_mnt_opts), GFP_KERNEL); in smack_fs_context_dup()
677 if (!fc->security) in smack_fs_context_dup()
680 dst = fc->security; in smack_fs_context_dup()
718 rc = smack_add_opt(opt, param->string, &fc->security); in smack_fs_context_parse_param()
/security/landlock/
A DKconfig11 tailored access control policies. A Landlock security policy is a
35 ./tools/testing/kunit/kunit.py run --kunitconfig security/landlock
A Dcred.h65 return cred->security + landlock_blob_sizes.lbs_cred; in landlock_cred()
/security/lockdown/
A DKconfig15 boot parameters that are otherwise parsed before the security
31 enabled via the kernel commandline or /sys/kernel/security/lockdown.
/security/ipe/
A DMakefile9 cmd_polgen = scripts/ipe/polgen/polgen security/ipe/boot_policy.c $(2)
/security/integrity/
A DKconfig133 source "security/integrity/ima/Kconfig"
134 source "security/integrity/evm/Kconfig"
/security/loadpin/
A DKconfig7 (kernel modules, firmware, kexec images, security policy)
/security/tomoyo/
A DKconfig37 You can read the log via /sys/kernel/security/tomoyo/audit.
/security/apparmor/
A DKconfig11 This enables the AppArmor security module.
/security/integrity/ima/
A DKconfig149 It requires the system to be labeled with a security extended
151 the security extended attributes from offline attack, enable
/security/keys/
A DKconfig83 source "security/keys/trusted-keys/Kconfig"

Completed in 54 milliseconds

12