Lines Matching refs:policydb
69 struct policydb policydb; variable
147 r1 = policydb.role_val_to_struct[val1 - 1]; in constraint_expr_eval()
148 r2 = policydb.role_val_to_struct[val2 - 1]; in constraint_expr_eval()
317 tclass_name = policydb.p_class_val_to_name[tclass - 1]; in security_dump_masked_av()
318 tclass_dat = policydb.class_val_to_struct[tclass - 1]; in security_dump_masked_av()
380 = policydb.type_val_to_struct[scontext->type - 1]; in type_attribute_bounds_av()
382 = policydb.type_val_to_struct[tcontext->type - 1]; in type_attribute_bounds_av()
479 if ( !tclass || tclass > policydb.p_classes.nprim ) in context_struct_compute_av()
482 tclass_datum = policydb.class_val_to_struct[tclass - 1]; in context_struct_compute_av()
490 sattr = &policydb.type_attr_map[scontext->type - 1]; in context_struct_compute_av()
491 tattr = &policydb.type_attr_map[tcontext->type - 1]; in context_struct_compute_av()
498 for ( node = avtab_search_node(&policydb.te_avtab, &avkey); in context_struct_compute_av()
511 cond_compute_av(&policydb.te_cond_avtab, &avkey, avd); in context_struct_compute_av()
540 for ( ra = policydb.role_allow; ra; ra = ra->next ) in context_struct_compute_av()
573 o, n, t, policydb.p_class_val_to_name[tclass-1]); in security_validtrans_handle_fail()
599 if ( !tclass || tclass > policydb.p_classes.nprim ) in security_validate_transition()
606 tclass_datum = policydb.class_val_to_struct[tclass - 1]; in security_validate_transition()
701 if ( ebitmap_get_bit(&policydb.permissive_map, scontext->type) ) in security_compute_av()
723 *scontext_len += strlen(policydb.p_user_val_to_name[context->user - 1]) + 1; in context_struct_to_string()
724 *scontext_len += strlen(policydb.p_role_val_to_name[context->role - 1]) + 1; in context_struct_to_string()
725 *scontext_len += strlen(policydb.p_type_val_to_name[context->type - 1]) + 1; in context_struct_to_string()
739 policydb.p_user_val_to_name[context->user - 1], in context_struct_to_string()
740 policydb.p_role_val_to_name[context->role - 1], in context_struct_to_string()
741 policydb.p_type_val_to_name[context->type - 1]); in context_struct_to_string()
742 scontextp += strlen(policydb.p_user_val_to_name[context->user - 1]) + in context_struct_to_string()
743 1 + strlen(policydb.p_role_val_to_name[context->role - 1]) + in context_struct_to_string()
744 1 + strlen(policydb.p_type_val_to_name[context->type - 1]); in context_struct_to_string()
876 usrdatum = hashtab_search(policydb.p_users.table, scontextp); in security_context_to_sid()
892 role = hashtab_search(policydb.p_roles.table, scontextp); in security_context_to_sid()
904 typdatum = hashtab_search(policydb.p_types.table, scontextp); in security_context_to_sid()
921 if ( !policydb_context_isvalid(&policydb, &context) ) in security_context_to_sid()
953 n, s, t, policydb.p_class_val_to_name[tclass-1]); in compute_sid_handle_invalid_context()
1043 avdatum = avtab_search(&policydb.te_avtab, &avkey); in security_compute_sid()
1048 node = avtab_search_node(&policydb.te_cond_avtab, &avkey); in security_compute_sid()
1072 for ( roletr = policydb.role_tr; roletr; roletr = roletr->next ) in security_compute_sid()
1095 if ( !policydb_context_isvalid(&policydb, &newcontext) ) in security_compute_sid()
1169 static int validate_classes(struct policydb *p) in validate_classes()
1267 struct policydb *oldp;
1268 struct policydb *newp;
1344 static int security_preserve_bools(struct policydb *p);
1358 struct policydb oldpolicydb, newpolicydb; in security_load_policy()
1369 if ( policydb_read(&policydb, fp) ) in security_load_policy()
1374 if ( policydb_load_isids(&policydb, &sidtab) ) in security_load_policy()
1377 policydb_destroy(&policydb); in security_load_policy()
1380 if ( validate_classes(&policydb) ) in security_load_policy()
1386 policydb_destroy(&policydb); in security_load_policy()
1389 policydb_loaded_version = policydb.policyvers; in security_load_policy()
1435 args.oldp = &policydb; in security_load_policy()
1440 memcpy(&oldpolicydb, &policydb, sizeof policydb); in security_load_policy()
1445 memcpy(&policydb, &newpolicydb, sizeof policydb); in security_load_policy()
1448 policydb_loaded_version = policydb.policyvers; in security_load_policy()
1470 return policydb.allow_unknown; in security_get_allow_unknown()
1485 c = policydb.ocontexts[OCON_PIRQ]; in security_irq_sid()
1526 c = policydb.ocontexts[OCON_IOMEM]; in security_iomem_sid()
1562 c = policydb.ocontexts[OCON_IOMEM]; in security_iterate_iomem_sids()
1613 c = policydb.ocontexts[OCON_IOPORT]; in security_ioport_sid()
1650 c = policydb.ocontexts[OCON_IOPORT]; in security_iterate_ioport_sids()
1701 c = policydb.ocontexts[OCON_DEVICE]; in security_device_sid()
1736 c = policydb.ocontexts[OCON_DTREE]; in security_devicetree_sid()
1768 for ( i = 0; i < policydb.p_bools.nprim; i++ ) in security_find_bool()
1770 if (!strcmp(name, policydb.p_bool_val_to_name[i])) in security_find_bool()
1792 *len = policydb.p_bools.nprim; in security_get_bools()
1812 size_t name_len = strlen(policydb.p_bool_val_to_name[i]); in security_get_bools()
1814 (*values)[i] = policydb.bool_val_to_struct[i]->state; in security_get_bools()
1819 strlcpy((*names)[i], policydb.p_bool_val_to_name[i], name_len + 1); in security_get_bools()
1848 lenp = policydb.p_bools.nprim; in security_set_bools()
1860 policydb.bool_val_to_struct[i]->state = 1; in security_set_bools()
1864 policydb.bool_val_to_struct[i]->state = 0; in security_set_bools()
1868 printk("%s:%d", policydb.p_bool_val_to_name[i], in security_set_bools()
1869 policydb.bool_val_to_struct[i]->state); in security_set_bools()
1873 for ( cur = policydb.cond_list; cur != NULL; cur = cur->next ) in security_set_bools()
1875 rc = evaluate_cond_node(&policydb, cur); in security_set_bools()
1898 len = policydb.p_bools.nprim; in security_get_bool_value()
1905 rc = policydb.bool_val_to_struct[b]->state; in security_get_bool_value()
1918 len = policydb.p_bools.nprim; in security_get_bool_name()
1924 len = strlen(policydb.p_bool_val_to_name[b]) + 1; in security_get_bool_name()
1928 memcpy(rv, policydb.p_bool_val_to_name[b], len); in security_get_bool_name()
1934 static int security_preserve_bools(struct policydb *p) in security_preserve_bools()
1991 c = policydb.ocontexts[OCON_PIRQ]; in security_ocontext_add()
2007 add->next = policydb.ocontexts[OCON_PIRQ]; in security_ocontext_add()
2008 policydb.ocontexts[OCON_PIRQ] = add; in security_ocontext_add()
2017 c = policydb.ocontexts[OCON_IOPORT]; in security_ocontext_add()
2040 add->next = policydb.ocontexts[OCON_IOPORT]; in security_ocontext_add()
2041 policydb.ocontexts[OCON_IOPORT] = add; in security_ocontext_add()
2050 c = policydb.ocontexts[OCON_IOMEM]; in security_ocontext_add()
2073 add->next = policydb.ocontexts[OCON_IOMEM]; in security_ocontext_add()
2074 policydb.ocontexts[OCON_IOMEM] = add; in security_ocontext_add()
2086 c = policydb.ocontexts[OCON_DEVICE]; in security_ocontext_add()
2103 add->next = policydb.ocontexts[OCON_DEVICE]; in security_ocontext_add()
2104 policydb.ocontexts[OCON_DEVICE] = add; in security_ocontext_add()
2127 for ( before_c = NULL, c = policydb.ocontexts[OCON_PIRQ]; in security_ocontext_del()
2134 policydb.ocontexts[OCON_PIRQ] = c->next; in security_ocontext_del()
2152 for ( before_c = NULL, c = policydb.ocontexts[OCON_IOPORT]; in security_ocontext_del()
2160 policydb.ocontexts[OCON_IOPORT] = c->next; in security_ocontext_del()
2178 for ( before_c = NULL, c = policydb.ocontexts[OCON_IOMEM]; in security_ocontext_del()
2186 policydb.ocontexts[OCON_IOMEM] = c->next; in security_ocontext_del()
2204 for ( before_c = NULL, c = policydb.ocontexts[OCON_DEVICE]; in security_ocontext_del()
2211 policydb.ocontexts[OCON_DEVICE] = c->next; in security_ocontext_del()
2262 pcurr = &policydb.ocontexts[OCON_DTREE]; in security_devicetree_setlabel()
2288 add->next = policydb.ocontexts[OCON_DTREE]; in security_devicetree_setlabel()
2289 policydb.ocontexts[OCON_DTREE] = add; in security_devicetree_setlabel()