Lines Matching refs:skp
256 struct smack_known *skp = NULL; in smk_fetch() local
267 skp = smk_import_entry(buffer, rc); in smk_fetch()
271 return skp; in smk_fetch()
280 struct inode_smack *new_inode_smack(struct smack_known *skp) in new_inode_smack() argument
288 isp->smk_inode = skp; in new_inode_smack()
438 struct smack_known *skp; in smack_ptrace_access_check() local
444 skp = smk_of_task_struct(ctp); in smack_ptrace_access_check()
446 rc = smk_ptrace_rule_check(current, skp, mode, __func__); in smack_ptrace_access_check()
461 struct smack_known *skp; in smack_ptrace_traceme() local
467 skp = smk_of_task(current_security()); in smack_ptrace_traceme()
469 rc = smk_ptrace_rule_check(ptp, skp, PTRACE_MODE_ATTACH, __func__); in smack_ptrace_traceme()
482 struct smack_known *skp = smk_of_current(); in smack_syslog() local
487 if (smack_syslog_label != NULL && smack_syslog_label != skp) in smack_syslog()
597 struct smack_known *skp; in smack_sb_kern_mount() local
615 skp = smk_import_entry(op, 0); in smack_sb_kern_mount()
616 if (skp != NULL) { in smack_sb_kern_mount()
617 sp->smk_hat = skp; in smack_sb_kern_mount()
622 skp = smk_import_entry(op, 0); in smack_sb_kern_mount()
623 if (skp != NULL) { in smack_sb_kern_mount()
624 sp->smk_floor = skp; in smack_sb_kern_mount()
630 skp = smk_import_entry(op, 0); in smack_sb_kern_mount()
631 if (skp != NULL) { in smack_sb_kern_mount()
632 sp->smk_default = skp; in smack_sb_kern_mount()
637 skp = smk_import_entry(op, 0); in smack_sb_kern_mount()
638 if (skp != NULL) { in smack_sb_kern_mount()
639 sp->smk_root = skp; in smack_sb_kern_mount()
644 skp = smk_import_entry(op, 0); in smack_sb_kern_mount()
645 if (skp != NULL) { in smack_sb_kern_mount()
646 sp->smk_root = skp; in smack_sb_kern_mount()
662 skp = smk_of_current(); in smack_sb_kern_mount()
663 sp->smk_root = skp; in smack_sb_kern_mount()
664 sp->smk_default = skp; in smack_sb_kern_mount()
800 struct smack_known *skp = smk_of_current(); in smack_inode_alloc_security() local
802 inode->i_security = new_inode_smack(skp); in smack_inode_alloc_security()
836 struct smack_known *skp = smk_of_current(); in smack_inode_init_security() local
846 may = smk_access_entry(skp->smk_known, dsp->smk_known, in smack_inode_init_security()
847 &skp->smk_rules); in smack_inode_init_security()
1102 struct smack_known *skp; in smack_inode_setxattr() local
1133 skp = size ? smk_import_entry(value, size) : NULL; in smack_inode_setxattr()
1134 if (skp == NULL || (check_star && in smack_inode_setxattr()
1135 (skp == &smack_known_star || skp == &smack_known_web))) in smack_inode_setxattr()
1164 struct smack_known *skp; in smack_inode_post_setxattr() local
1173 skp = smk_import_entry(value, size); in smack_inode_post_setxattr()
1174 if (skp != NULL) in smack_inode_post_setxattr()
1175 isp->smk_inode = skp; in smack_inode_post_setxattr()
1179 skp = smk_import_entry(value, size); in smack_inode_post_setxattr()
1180 if (skp != NULL) in smack_inode_post_setxattr()
1181 isp->smk_task = skp; in smack_inode_post_setxattr()
1185 skp = smk_import_entry(value, size); in smack_inode_post_setxattr()
1186 if (skp != NULL) in smack_inode_post_setxattr()
1187 isp->smk_mmap = skp; in smack_inode_post_setxattr()
1395 struct smack_known *skp = smk_of_current(); in smack_file_alloc_security() local
1397 file->f_security = skp; in smack_file_alloc_security()
1523 struct smack_known *skp; in smack_mmap_file() local
1543 skp = smk_of_current(); in smack_mmap_file()
1552 list_for_each_entry_rcu(srp, &skp->smk_rules, list) { in smack_mmap_file()
1637 struct smack_known *skp; in smack_file_send_sigiotask() local
1649 skp = file->f_security; in smack_file_send_sigiotask()
1650 rc = smk_access(skp, tkp, MAY_WRITE, NULL); in smack_file_send_sigiotask()
1651 rc = smk_bu_note("sigiotask", skp, tkp, MAY_WRITE, rc); in smack_file_send_sigiotask()
1657 smack_log(skp->smk_known, tkp->smk_known, MAY_WRITE, rc, &ad); in smack_file_send_sigiotask()
1828 struct smack_known *skp = smack_from_secid(secid); in smack_kernel_act_as() local
1830 if (skp == NULL) in smack_kernel_act_as()
1833 new_tsp->smk_task = skp; in smack_kernel_act_as()
1868 struct smack_known *skp = smk_of_task_struct(p); in smk_curacc_on_task() local
1873 rc = smk_curacc(skp, access, &ad); in smk_curacc_on_task()
1921 struct smack_known *skp = smk_of_task_struct(p); in smack_task_getsecid() local
1923 *secid = skp->smk_secid; in smack_task_getsecid()
2027 struct smack_known *skp; in smack_task_kill() local
2047 skp = smack_from_secid(secid); in smack_task_kill()
2048 rc = smk_access(skp, tkp, MAY_WRITE, &ad); in smack_task_kill()
2049 rc = smk_bu_note("USB signal", skp, tkp, MAY_WRITE, rc); in smack_task_kill()
2082 struct smack_known *skp = smk_of_task_struct(p); in smack_task_to_inode() local
2084 isp->smk_inode = skp; in smack_task_to_inode()
2103 struct smack_known *skp = smk_of_current(); in smack_sk_alloc_security() local
2110 ssp->smk_in = skp; in smack_sk_alloc_security()
2111 ssp->smk_out = skp; in smack_sk_alloc_security()
2179 struct smack_known *skp; in smack_netlabel() local
2198 skp = ssp->smk_out; in smack_netlabel()
2199 rc = netlbl_sock_setattr(sk, sk->sk_family, &skp->smk_netlabel); in smack_netlabel()
2221 struct smack_known *skp; in smack_netlabel_send() local
2240 skp = ssp->smk_out; in smack_netlabel_send()
2241 rc = smk_access(skp, hkp, MAY_WRITE, &ad); in smack_netlabel_send()
2242 rc = smk_bu_note("IPv4 host check", skp, hkp, MAY_WRITE, rc); in smack_netlabel_send()
2342 struct smack_known *skp; in smk_ipv6_port_check() local
2352 skp = smack_net_ambient; in smk_ipv6_port_check()
2355 skp = ssp->smk_out; in smk_ipv6_port_check()
2376 skp = &smack_known_web; in smk_ipv6_port_check()
2400 rc = smk_access(skp, object, MAY_WRITE, &ad); in smk_ipv6_port_check()
2401 rc = smk_bu_note("IPv6 port check", skp, object, MAY_WRITE, rc); in smk_ipv6_port_check()
2421 struct smack_known *skp; in smack_inode_setsecurity() local
2430 skp = smk_import_entry(value, size); in smack_inode_setsecurity()
2431 if (skp == NULL) in smack_inode_setsecurity()
2435 nsp->smk_inode = skp; in smack_inode_setsecurity()
2452 ssp->smk_in = skp; in smack_inode_setsecurity()
2454 ssp->smk_out = skp; in smack_inode_setsecurity()
2597 struct smack_known *skp = smk_of_current(); in smack_msg_msg_alloc_security() local
2599 msg->security = skp; in smack_msg_msg_alloc_security()
2634 struct smack_known *skp = smk_of_current(); in smack_shm_alloc_security() local
2636 isp->security = skp; in smack_shm_alloc_security()
2761 struct smack_known *skp = smk_of_current(); in smack_sem_alloc_security() local
2763 isp->security = skp; in smack_sem_alloc_security()
2883 struct smack_known *skp = smk_of_current(); in smack_msg_queue_alloc_security() local
2885 kisp->security = skp; in smack_msg_queue_alloc_security()
3063 struct smack_known *skp; in smack_d_instantiate() local
3204 skp = smk_fetch(XATTR_NAME_SMACK, inode, dp); in smack_d_instantiate()
3205 if (skp != NULL) in smack_d_instantiate()
3206 final = skp; in smack_d_instantiate()
3241 skp = smk_fetch(XATTR_NAME_SMACKEXEC, inode, dp); in smack_d_instantiate()
3242 if (skp == &smack_known_star || skp == &smack_known_web) in smack_d_instantiate()
3243 skp = NULL; in smack_d_instantiate()
3244 isp->smk_task = skp; in smack_d_instantiate()
3245 skp = smk_fetch(XATTR_NAME_SMACKMMAP, inode, dp); in smack_d_instantiate()
3246 if (skp == &smack_known_star || skp == &smack_known_web) in smack_d_instantiate()
3247 skp = NULL; in smack_d_instantiate()
3248 isp->smk_mmap = skp; in smack_d_instantiate()
3278 struct smack_known *skp = smk_of_task_struct(p); in smack_getprocattr() local
3285 cp = kstrdup(skp->smk_known, GFP_KERNEL); in smack_getprocattr()
3311 struct smack_known *skp; in smack_setprocattr() local
3329 skp = smk_import_entry(value, size); in smack_setprocattr()
3330 if (skp == NULL) in smack_setprocattr()
3336 if (skp == &smack_known_web) in smack_setprocattr()
3344 tsp->smk_task = skp; in smack_setprocattr()
3362 struct smack_known *skp; in smack_unix_stream_connect() local
3374 skp = ssp->smk_out; in smack_unix_stream_connect()
3380 rc = smk_access(skp, okp, MAY_WRITE, &ad); in smack_unix_stream_connect()
3381 rc = smk_bu_note("UDS connect", skp, okp, MAY_WRITE, rc); in smack_unix_stream_connect()
3384 skp = ssp->smk_in; in smack_unix_stream_connect()
3385 rc = smk_access(okp, skp, MAY_WRITE, &ad); in smack_unix_stream_connect()
3386 rc = smk_bu_note("UDS connect", okp, skp, in smack_unix_stream_connect()
3480 struct smack_known *skp; in smack_from_secattr() local
3497 list_for_each_entry(skp, &smack_known_list, list) { in smack_from_secattr()
3498 if (sap->attr.mls.lvl != skp->smk_netlabel.attr.mls.lvl) in smack_from_secattr()
3504 if ((skp->smk_netlabel.flags & in smack_from_secattr()
3513 skp->smk_netlabel.attr.mls.cat, in smack_from_secattr()
3526 return skp; in smack_from_secattr()
3536 skp = smack_from_secid(sap->attr.secid); in smack_from_secattr()
3544 BUG_ON(skp == NULL); in smack_from_secattr()
3545 return skp; in smack_from_secattr()
3615 struct smack_known *skp = NULL; in smack_socket_sock_rcv_skb() local
3635 skp = smack_from_secid(skb->secmark); in smack_socket_sock_rcv_skb()
3646 skp = smack_from_secattr(&secattr, ssp); in smack_socket_sock_rcv_skb()
3648 skp = smack_net_ambient; in smack_socket_sock_rcv_skb()
3667 rc = smk_access(skp, ssp->smk_in, MAY_WRITE, &ad); in smack_socket_sock_rcv_skb()
3668 rc = smk_bu_note("IPv4 delivery", skp, ssp->smk_in, in smack_socket_sock_rcv_skb()
3680 skp = smack_from_secid(skb->secmark); in smack_socket_sock_rcv_skb()
3682 skp = smack_net_ambient; in smack_socket_sock_rcv_skb()
3689 rc = smk_access(skp, ssp->smk_in, MAY_WRITE, &ad); in smack_socket_sock_rcv_skb()
3690 rc = smk_bu_note("IPv6 delivery", skp, ssp->smk_in, in smack_socket_sock_rcv_skb()
3752 struct smack_known *skp; in smack_socket_getpeersec_dgram() local
3787 skp = smack_from_secattr(&secattr, ssp); in smack_socket_getpeersec_dgram()
3788 s = skp->smk_secid; in smack_socket_getpeersec_dgram()
3817 struct smack_known *skp = smk_of_current(); in smack_sock_graft() local
3824 ssp->smk_in = skp; in smack_sock_graft()
3825 ssp->smk_out = skp; in smack_sock_graft()
3842 struct smack_known *skp; in smack_inet_conn_request() local
3875 skp = smack_from_secid(skb->secmark); in smack_inet_conn_request()
3883 skp = smack_from_secattr(&secattr, ssp); in smack_inet_conn_request()
3885 skp = &smack_known_huh; in smack_inet_conn_request()
3902 rc = smk_access(skp, ssp->smk_in, MAY_WRITE, &ad); in smack_inet_conn_request()
3903 rc = smk_bu_note("IPv4 connect", skp, ssp->smk_in, MAY_WRITE, rc); in smack_inet_conn_request()
3911 req->peer_secid = skp->smk_secid; in smack_inet_conn_request()
3925 rc = netlbl_req_setattr(req, &skp->smk_netlabel); in smack_inet_conn_request()
3943 struct smack_known *skp; in smack_inet_csk_clone() local
3946 skp = smack_from_secid(req->peer_secid); in smack_inet_csk_clone()
3947 ssp->smk_packet = skp; in smack_inet_csk_clone()
3974 struct smack_known *skp = smk_of_task(cred->security); in smack_key_alloc() local
3976 key->security = skp; in smack_key_alloc()
4048 struct smack_known *skp = key->security; in smack_key_getsecurity() local
4057 copy = kstrdup(skp->smk_known, GFP_KERNEL); in smack_key_getsecurity()
4095 struct smack_known *skp; in smack_audit_rule_init() local
4105 skp = smk_import_entry(rulestr, 0); in smack_audit_rule_init()
4106 if (skp) in smack_audit_rule_init()
4107 *rule = skp->smk_known; in smack_audit_rule_init()
4149 struct smack_known *skp; in smack_audit_rule_match() local
4160 skp = smack_from_secid(secid); in smack_audit_rule_match()
4168 return (rule == skp->smk_known); in smack_audit_rule_match()
4170 return (rule != skp->smk_known); in smack_audit_rule_match()
4208 struct smack_known *skp = smack_from_secid(secid); in smack_secid_to_secctx() local
4211 *secdata = skp->smk_known; in smack_secid_to_secctx()
4212 *seclen = strlen(skp->smk_known); in smack_secid_to_secctx()
4226 struct smack_known *skp = smk_find_entry(secdata); in smack_secctx_to_secid() local
4228 if (skp) in smack_secctx_to_secid()
4229 *secid = skp->smk_secid; in smack_secctx_to_secid()