Lines Matching refs:skp
283 struct smack_known *skp = NULL; in smk_fetch() local
294 skp = ERR_PTR(rc); in smk_fetch()
296 skp = NULL; in smk_fetch()
298 skp = smk_import_entry(buffer, rc); in smk_fetch()
302 return skp; in smk_fetch()
311 static void init_inode_smack(struct inode *inode, struct smack_known *skp) in init_inode_smack() argument
315 isp->smk_inode = skp; in init_inode_smack()
480 struct smack_known *skp; in smack_ptrace_access_check() local
482 skp = smk_of_task_struct_obj(ctp); in smack_ptrace_access_check()
484 return smk_ptrace_rule_check(current, skp, mode, __func__); in smack_ptrace_access_check()
498 struct smack_known *skp; in smack_ptrace_traceme() local
500 skp = smk_of_task(smack_cred(current_cred())); in smack_ptrace_traceme()
502 rc = smk_ptrace_rule_check(ptp, skp, PTRACE_MODE_ATTACH, __func__); in smack_ptrace_traceme()
515 struct smack_known *skp = smk_of_current(); in smack_syslog() local
520 if (smack_syslog_label != NULL && smack_syslog_label != skp) in smack_syslog()
760 struct smack_known *skp; in smack_set_mnt_opts() local
783 skp = smk_of_current(); in smack_set_mnt_opts()
784 sp->smk_root = skp; in smack_set_mnt_opts()
785 sp->smk_default = skp; in smack_set_mnt_opts()
803 skp = smk_import_entry(opts->fsdefault, 0); in smack_set_mnt_opts()
804 if (IS_ERR(skp)) in smack_set_mnt_opts()
805 return PTR_ERR(skp); in smack_set_mnt_opts()
806 sp->smk_default = skp; in smack_set_mnt_opts()
809 skp = smk_import_entry(opts->fsfloor, 0); in smack_set_mnt_opts()
810 if (IS_ERR(skp)) in smack_set_mnt_opts()
811 return PTR_ERR(skp); in smack_set_mnt_opts()
812 sp->smk_floor = skp; in smack_set_mnt_opts()
815 skp = smk_import_entry(opts->fshat, 0); in smack_set_mnt_opts()
816 if (IS_ERR(skp)) in smack_set_mnt_opts()
817 return PTR_ERR(skp); in smack_set_mnt_opts()
818 sp->smk_hat = skp; in smack_set_mnt_opts()
821 skp = smk_import_entry(opts->fsroot, 0); in smack_set_mnt_opts()
822 if (IS_ERR(skp)) in smack_set_mnt_opts()
823 return PTR_ERR(skp); in smack_set_mnt_opts()
824 sp->smk_root = skp; in smack_set_mnt_opts()
827 skp = smk_import_entry(opts->fstransmute, 0); in smack_set_mnt_opts()
828 if (IS_ERR(skp)) in smack_set_mnt_opts()
829 return PTR_ERR(skp); in smack_set_mnt_opts()
830 sp->smk_root = skp; in smack_set_mnt_opts()
937 struct smack_known *skp = smk_of_current(); in smack_inode_alloc_security() local
939 init_inode_smack(inode, skp); in smack_inode_alloc_security()
959 struct smack_known *skp = smk_of_current(); in smack_inode_init_security() local
969 may = smk_access_entry(skp->smk_known, dsp->smk_known, in smack_inode_init_security()
970 &skp->smk_rules); in smack_inode_init_security()
1231 struct smack_known *skp; in smack_inode_setxattr() local
1262 skp = size ? smk_import_entry(value, size) : NULL; in smack_inode_setxattr()
1263 if (IS_ERR(skp)) in smack_inode_setxattr()
1264 rc = PTR_ERR(skp); in smack_inode_setxattr()
1265 else if (skp == NULL || (check_star && in smack_inode_setxattr()
1266 (skp == &smack_known_star || skp == &smack_known_web))) in smack_inode_setxattr()
1295 struct smack_known *skp; in smack_inode_post_setxattr() local
1304 skp = smk_import_entry(value, size); in smack_inode_post_setxattr()
1305 if (!IS_ERR(skp)) in smack_inode_post_setxattr()
1306 isp->smk_inode = skp; in smack_inode_post_setxattr()
1308 skp = smk_import_entry(value, size); in smack_inode_post_setxattr()
1309 if (!IS_ERR(skp)) in smack_inode_post_setxattr()
1310 isp->smk_task = skp; in smack_inode_post_setxattr()
1312 skp = smk_import_entry(value, size); in smack_inode_post_setxattr()
1313 if (!IS_ERR(skp)) in smack_inode_post_setxattr()
1314 isp->smk_mmap = skp; in smack_inode_post_setxattr()
1476 struct smack_known *skp = smk_of_inode(inode); in smack_inode_getsecid() local
1478 *secid = skp->smk_secid; in smack_inode_getsecid()
1635 struct smack_known *skp; in smack_mmap_file() local
1663 skp = smk_of_current(); in smack_mmap_file()
1672 list_for_each_entry_rcu(srp, &skp->smk_rules, list) { in smack_mmap_file()
1760 struct smack_known *skp; in smack_file_send_sigiotask() local
1774 skp = *blob; in smack_file_send_sigiotask()
1775 rc = smk_access(skp, tkp, MAY_DELIVER, NULL); in smack_file_send_sigiotask()
1776 rc = smk_bu_note("sigiotask", skp, tkp, MAY_DELIVER, rc); in smack_file_send_sigiotask()
1786 smack_log(skp->smk_known, tkp->smk_known, MAY_DELIVER, rc, &ad); in smack_file_send_sigiotask()
1965 struct smack_known *skp; in smack_cred_getsecid() local
1968 skp = smk_of_task(smack_cred(cred)); in smack_cred_getsecid()
1969 *secid = skp->smk_secid; in smack_cred_getsecid()
2019 struct smack_known *skp = smk_of_task_struct_subj(p); in smk_curacc_on_task() local
2024 rc = smk_curacc(skp, access, &ad); in smk_curacc_on_task()
2072 struct smack_known *skp = smk_of_task_struct_subj(p); in smack_task_getsecid_subj() local
2074 *secid = skp->smk_secid; in smack_task_getsecid_subj()
2086 struct smack_known *skp = smk_of_task_struct_obj(p); in smack_task_getsecid_obj() local
2088 *secid = skp->smk_secid; in smack_task_getsecid_obj()
2173 struct smack_known *skp; in smack_task_kill() local
2196 skp = smk_of_task(smack_cred(cred)); in smack_task_kill()
2197 rc = smk_access(skp, tkp, MAY_DELIVER, &ad); in smack_task_kill()
2198 rc = smk_bu_note("USB signal", skp, tkp, MAY_DELIVER, rc); in smack_task_kill()
2212 struct smack_known *skp = smk_of_task_struct_obj(p); in smack_task_to_inode() local
2214 isp->smk_inode = skp; in smack_task_to_inode()
2234 struct smack_known *skp = smk_of_current(); in smack_sk_alloc_security() local
2248 ssp->smk_in = skp; in smack_sk_alloc_security()
2249 ssp->smk_out = skp; in smack_sk_alloc_security()
2395 struct smack_known *skp = ssp->smk_out; in smack_netlbl_add() local
2401 rc = netlbl_sock_setattr(sk, sk->sk_family, &skp->smk_netlabel); in smack_netlbl_add()
2455 struct smack_known *skp; in smk_ipv4_check() local
2472 skp = ssp->smk_out; in smk_ipv4_check()
2473 rc = smk_access(skp, hkp, MAY_WRITE, &ad); in smk_ipv4_check()
2474 rc = smk_bu_note("IPv4 host check", skp, hkp, MAY_WRITE, rc); in smk_ipv4_check()
2621 struct smack_known *skp = NULL; in smk_ipv6_port_check() local
2626 skp = smack_ipv6host_label(address); in smk_ipv6_port_check()
2629 skp = ssp->smk_out; in smk_ipv6_port_check()
2636 if (skp != NULL && object != NULL) in smk_ipv6_port_check()
2637 return smk_ipv6_check(skp, object, address, act); in smk_ipv6_port_check()
2638 if (skp == NULL) in smk_ipv6_port_check()
2639 skp = smack_net_ambient; in smk_ipv6_port_check()
2647 return smk_ipv6_check(skp, object, address, act); in smk_ipv6_port_check()
2667 return smk_ipv6_check(skp, object, address, act); in smk_ipv6_port_check()
2685 struct smack_known *skp; in smack_inode_setsecurity() local
2694 skp = smk_import_entry(value, size); in smack_inode_setsecurity()
2695 if (IS_ERR(skp)) in smack_inode_setsecurity()
2696 return PTR_ERR(skp); in smack_inode_setsecurity()
2699 nsp->smk_inode = skp; in smack_inode_setsecurity()
2716 ssp->smk_in = skp; in smack_inode_setsecurity()
2718 ssp->smk_out = skp; in smack_inode_setsecurity()
3264 struct smack_known *skp; in smack_d_instantiate() local
3408 skp = smk_fetch(XATTR_NAME_SMACK, inode, dp); in smack_d_instantiate()
3409 if (!IS_ERR_OR_NULL(skp)) in smack_d_instantiate()
3410 final = skp; in smack_d_instantiate()
3445 skp = smk_fetch(XATTR_NAME_SMACKEXEC, inode, dp); in smack_d_instantiate()
3446 if (IS_ERR(skp) || skp == &smack_known_star || in smack_d_instantiate()
3447 skp == &smack_known_web) in smack_d_instantiate()
3448 skp = NULL; in smack_d_instantiate()
3449 isp->smk_task = skp; in smack_d_instantiate()
3451 skp = smk_fetch(XATTR_NAME_SMACKMMAP, inode, dp); in smack_d_instantiate()
3452 if (IS_ERR(skp) || skp == &smack_known_star || in smack_d_instantiate()
3453 skp == &smack_known_web) in smack_d_instantiate()
3454 skp = NULL; in smack_d_instantiate()
3455 isp->smk_mmap = skp; in smack_d_instantiate()
3483 struct smack_known *skp = smk_of_task_struct_subj(p); in smack_getprocattr() local
3490 cp = kstrdup(skp->smk_known, GFP_KERNEL); in smack_getprocattr()
3514 struct smack_known *skp; in smack_setprocattr() local
3527 skp = smk_import_entry(value, size); in smack_setprocattr()
3528 if (IS_ERR(skp)) in smack_setprocattr()
3529 return PTR_ERR(skp); in smack_setprocattr()
3535 if (skp == &smack_known_web || skp == &smack_known_star) in smack_setprocattr()
3541 if (sklep->smk_label == skp) { in smack_setprocattr()
3554 tsp->smk_task = skp; in smack_setprocattr()
3576 struct smack_known *skp; in smack_unix_stream_connect() local
3588 skp = ssp->smk_out; in smack_unix_stream_connect()
3594 rc = smk_access(skp, okp, MAY_WRITE, &ad); in smack_unix_stream_connect()
3595 rc = smk_bu_note("UDS connect", skp, okp, MAY_WRITE, rc); in smack_unix_stream_connect()
3598 skp = ssp->smk_in; in smack_unix_stream_connect()
3599 rc = smk_access(okp, skp, MAY_WRITE, &ad); in smack_unix_stream_connect()
3600 rc = smk_bu_note("UDS connect", okp, skp, in smack_unix_stream_connect()
3712 struct smack_known *skp; in smack_from_secattr() local
3741 list_for_each_entry_rcu(skp, &smack_known_list, list) { in smack_from_secattr()
3742 if (sap->attr.mls.lvl != skp->smk_netlabel.attr.mls.lvl) in smack_from_secattr()
3748 if ((skp->smk_netlabel.flags & in smack_from_secattr()
3757 skp->smk_netlabel.attr.mls.cat, in smack_from_secattr()
3770 return skp; in smack_from_secattr()
3871 struct smack_known *skp = NULL; in smack_from_netlbl() local
3879 skp = smack_from_secattr(&secattr, ssp); in smack_from_netlbl()
3881 netlbl_cache_add(skb, family, &skp->smk_netlabel); in smack_from_netlbl()
3886 return skp; in smack_from_netlbl()
3899 struct smack_known *skp = NULL; in smack_socket_sock_rcv_skb() local
3921 skp = smack_from_skb(skb); in smack_socket_sock_rcv_skb()
3922 if (skp == NULL) { in smack_socket_sock_rcv_skb()
3923 skp = smack_from_netlbl(sk, family, skb); in smack_socket_sock_rcv_skb()
3924 if (skp == NULL) in smack_socket_sock_rcv_skb()
3925 skp = smack_net_ambient; in smack_socket_sock_rcv_skb()
3940 rc = smk_access(skp, ssp->smk_in, MAY_WRITE, &ad); in smack_socket_sock_rcv_skb()
3941 rc = smk_bu_note("IPv4 delivery", skp, ssp->smk_in, in smack_socket_sock_rcv_skb()
3953 skp = smack_from_skb(skb); in smack_socket_sock_rcv_skb()
3954 if (skp == NULL) { in smack_socket_sock_rcv_skb()
3957 skp = smack_ipv6host_label(&sadd); in smack_socket_sock_rcv_skb()
3958 if (skp == NULL) in smack_socket_sock_rcv_skb()
3959 skp = smack_net_ambient; in smack_socket_sock_rcv_skb()
3967 rc = smk_access(skp, ssp->smk_in, MAY_WRITE, &ad); in smack_socket_sock_rcv_skb()
3968 rc = smk_bu_note("IPv6 delivery", skp, ssp->smk_in, in smack_socket_sock_rcv_skb()
4033 struct smack_known *skp; in smack_socket_getpeersec_dgram() local
4055 skp = smack_from_skb(skb); in smack_socket_getpeersec_dgram()
4056 if (skp) { in smack_socket_getpeersec_dgram()
4057 s = skp->smk_secid; in smack_socket_getpeersec_dgram()
4065 skp = smack_from_netlbl(sk, family, skb); in smack_socket_getpeersec_dgram()
4066 if (skp != NULL) in smack_socket_getpeersec_dgram()
4067 s = skp->smk_secid; in smack_socket_getpeersec_dgram()
4071 skp = smack_from_skb(skb); in smack_socket_getpeersec_dgram()
4072 if (skp) in smack_socket_getpeersec_dgram()
4073 s = skp->smk_secid; in smack_socket_getpeersec_dgram()
4094 struct smack_known *skp = smk_of_current(); in smack_sock_graft() local
4101 ssp->smk_in = skp; in smack_sock_graft()
4102 ssp->smk_out = skp; in smack_sock_graft()
4119 struct smack_known *skp; in smack_inet_conn_request() local
4149 skp = smack_from_skb(skb); in smack_inet_conn_request()
4150 if (skp == NULL) { in smack_inet_conn_request()
4151 skp = smack_from_netlbl(sk, family, skb); in smack_inet_conn_request()
4152 if (skp == NULL) in smack_inet_conn_request()
4153 skp = &smack_known_huh; in smack_inet_conn_request()
4166 rc = smk_access(skp, ssp->smk_in, MAY_WRITE, &ad); in smack_inet_conn_request()
4167 rc = smk_bu_note("IPv4 connect", skp, ssp->smk_in, MAY_WRITE, rc); in smack_inet_conn_request()
4175 req->peer_secid = skp->smk_secid; in smack_inet_conn_request()
4189 rc = netlbl_req_setattr(req, &skp->smk_netlabel); in smack_inet_conn_request()
4207 struct smack_known *skp; in smack_inet_csk_clone() local
4210 skp = smack_from_secid(req->peer_secid); in smack_inet_csk_clone()
4211 ssp->smk_packet = skp; in smack_inet_csk_clone()
4238 struct smack_known *skp = smk_of_task(smack_cred(cred)); in smack_key_alloc() local
4240 key->security = skp; in smack_key_alloc()
4337 struct smack_known *skp = key->security; in smack_key_getsecurity() local
4346 copy = kstrdup(skp->smk_known, GFP_KERNEL); in smack_key_getsecurity()
4457 struct smack_known *skp; in smack_audit_rule_init() local
4467 skp = smk_import_entry(rulestr, 0); in smack_audit_rule_init()
4468 if (IS_ERR(skp)) in smack_audit_rule_init()
4469 return PTR_ERR(skp); in smack_audit_rule_init()
4471 *rule = skp->smk_known; in smack_audit_rule_init()
4511 struct smack_known *skp; in smack_audit_rule_match() local
4522 skp = smack_from_secid(secid); in smack_audit_rule_match()
4530 return (rule == skp->smk_known); in smack_audit_rule_match()
4532 return (rule != skp->smk_known); in smack_audit_rule_match()
4564 struct smack_known *skp = smack_from_secid(secid); in smack_secid_to_secctx() local
4567 *secdata = skp->smk_known; in smack_secid_to_secctx()
4568 *seclen = strlen(skp->smk_known); in smack_secid_to_secctx()
4582 struct smack_known *skp = smk_find_entry(secdata); in smack_secctx_to_secid() local
4584 if (skp) in smack_secctx_to_secid()
4585 *secid = skp->smk_secid; in smack_secctx_to_secid()
4611 struct smack_known *skp = smk_of_inode(inode); in smack_inode_getsecctx() local
4613 *ctx = skp->smk_known; in smack_inode_getsecctx()
4614 *ctxlen = strlen(skp->smk_known); in smack_inode_getsecctx()
4622 struct smack_known *skp; in smack_inode_copy_up() local
4638 skp = isp->smk_inode; in smack_inode_copy_up()
4639 tsp->smk_task = skp; in smack_inode_copy_up()