services.c - OpenGrok cross reference for /linux-6.3-rc2/security/selinux/ss/services.c

Lines Matching refs:avd
92 				      struct av_decision *avd,
200 			 u16 tclass, struct av_decision *avd,  in map_decision()  argument
209 			if (avd->allowed & mapping->perms[i])  in map_decision()
214 		avd->allowed = result;  in map_decision()
217 			if (avd->auditallow & mapping->perms[i])  in map_decision()
219 		avd->auditallow = result;  in map_decision()
222 			if (avd->auditdeny & mapping->perms[i])  in map_decision()
234 		avd->auditdeny = result;  in map_decision()
536 				     struct av_decision *avd)  in type_attribute_bounds_av()  argument
571 	masked = ~lo_avd.allowed & avd->allowed;  in type_attribute_bounds_av()
577 	avd->allowed &= ~masked;  in type_attribute_bounds_av()
615 				      struct av_decision *avd,  in context_struct_compute_av()  argument
627 	avd->allowed = 0;  in context_struct_compute_av()
628 	avd->auditallow = 0;  in context_struct_compute_av()
629 	avd->auditdeny = 0xffffffff;  in context_struct_compute_av()
660 					avd->allowed |= node->datum.u.data;  in context_struct_compute_av()
662 					avd->auditallow |= node->datum.u.data;  in context_struct_compute_av()
664 					avd->auditdeny &= node->datum.u.data;  in context_struct_compute_av()
671 					avd, xperms);  in context_struct_compute_av()
682 		if ((constraint->permissions & (avd->allowed)) &&  in context_struct_compute_av()
685 			avd->allowed &= ~(constraint->permissions);  in context_struct_compute_av()
696 	    (avd->allowed & policydb->process_trans_perms) &&  in context_struct_compute_av()
704 			avd->allowed &= ~policydb->process_trans_perms;  in context_struct_compute_av()
713 				 tclass, avd);  in context_struct_compute_av()
941 static void avd_init(struct selinux_policy *policy, struct av_decision *avd)  in avd_init()  argument
943 	avd->allowed = 0;  in avd_init()
944 	avd->auditallow = 0;  in avd_init()
945 	avd->auditdeny = 0xffffffff;  in avd_init()
947 		avd->seqno = policy->latest_granting;  in avd_init()
949 		avd->seqno = 0;  in avd_init()
950 	avd->flags = 0;  in avd_init()
1108 			 struct av_decision *avd,  in security_compute_av()  argument
1119 	avd_init(policy, avd);  in security_compute_av()
1136 		avd->flags |= AVD_FLAGS_PERMISSIVE;  in security_compute_av()
1151 	context_struct_compute_av(policydb, scontext, tcontext, tclass, avd,  in security_compute_av()
1153 	map_decision(&policy->map, orig_tclass, avd,  in security_compute_av()
1159 	avd->allowed = 0xffffffff;  in security_compute_av()
1167 			      struct av_decision *avd)  in security_compute_av_user()  argument
1176 	avd_init(policy, avd);  in security_compute_av_user()
1192 		avd->flags |= AVD_FLAGS_PERMISSIVE;  in security_compute_av_user()
1207 	context_struct_compute_av(policydb, scontext, tcontext, tclass, avd,  in security_compute_av_user()
1213 	avd->allowed = 0xffffffff;  in security_compute_av_user()