Lines Matching refs:skp
283 struct smack_known *skp = NULL; in smk_fetch() local
295 skp = ERR_PTR(rc); in smk_fetch()
297 skp = NULL; in smk_fetch()
299 skp = smk_import_entry(buffer, rc); in smk_fetch()
303 return skp; in smk_fetch()
312 static void init_inode_smack(struct inode *inode, struct smack_known *skp) in init_inode_smack() argument
316 isp->smk_inode = skp; in init_inode_smack()
481 struct smack_known *skp; in smack_ptrace_access_check() local
483 skp = smk_of_task_struct(ctp); in smack_ptrace_access_check()
485 return smk_ptrace_rule_check(current, skp, mode, __func__); in smack_ptrace_access_check()
499 struct smack_known *skp; in smack_ptrace_traceme() local
501 skp = smk_of_task(smack_cred(current_cred())); in smack_ptrace_traceme()
503 rc = smk_ptrace_rule_check(ptp, skp, PTRACE_MODE_ATTACH, __func__); in smack_ptrace_traceme()
516 struct smack_known *skp = smk_of_current(); in smack_syslog() local
521 if (smack_syslog_label != NULL && smack_syslog_label != skp) in smack_syslog()
778 struct smack_known *skp; in smack_set_mnt_opts() local
801 skp = smk_of_current(); in smack_set_mnt_opts()
802 sp->smk_root = skp; in smack_set_mnt_opts()
803 sp->smk_default = skp; in smack_set_mnt_opts()
821 skp = smk_import_entry(opts->fsdefault, 0); in smack_set_mnt_opts()
822 if (IS_ERR(skp)) in smack_set_mnt_opts()
823 return PTR_ERR(skp); in smack_set_mnt_opts()
824 sp->smk_default = skp; in smack_set_mnt_opts()
827 skp = smk_import_entry(opts->fsfloor, 0); in smack_set_mnt_opts()
828 if (IS_ERR(skp)) in smack_set_mnt_opts()
829 return PTR_ERR(skp); in smack_set_mnt_opts()
830 sp->smk_floor = skp; in smack_set_mnt_opts()
833 skp = smk_import_entry(opts->fshat, 0); in smack_set_mnt_opts()
834 if (IS_ERR(skp)) in smack_set_mnt_opts()
835 return PTR_ERR(skp); in smack_set_mnt_opts()
836 sp->smk_hat = skp; in smack_set_mnt_opts()
839 skp = smk_import_entry(opts->fsroot, 0); in smack_set_mnt_opts()
840 if (IS_ERR(skp)) in smack_set_mnt_opts()
841 return PTR_ERR(skp); in smack_set_mnt_opts()
842 sp->smk_root = skp; in smack_set_mnt_opts()
845 skp = smk_import_entry(opts->fstransmute, 0); in smack_set_mnt_opts()
846 if (IS_ERR(skp)) in smack_set_mnt_opts()
847 return PTR_ERR(skp); in smack_set_mnt_opts()
848 sp->smk_root = skp; in smack_set_mnt_opts()
955 struct smack_known *skp = smk_of_current(); in smack_inode_alloc_security() local
957 init_inode_smack(inode, skp); in smack_inode_alloc_security()
977 struct smack_known *skp = smk_of_current(); in smack_inode_init_security() local
987 may = smk_access_entry(skp->smk_known, dsp->smk_known, in smack_inode_init_security()
988 &skp->smk_rules); in smack_inode_init_security()
1248 struct smack_known *skp; in smack_inode_setxattr() local
1279 skp = size ? smk_import_entry(value, size) : NULL; in smack_inode_setxattr()
1280 if (IS_ERR(skp)) in smack_inode_setxattr()
1281 rc = PTR_ERR(skp); in smack_inode_setxattr()
1282 else if (skp == NULL || (check_star && in smack_inode_setxattr()
1283 (skp == &smack_known_star || skp == &smack_known_web))) in smack_inode_setxattr()
1312 struct smack_known *skp; in smack_inode_post_setxattr() local
1321 skp = smk_import_entry(value, size); in smack_inode_post_setxattr()
1322 if (!IS_ERR(skp)) in smack_inode_post_setxattr()
1323 isp->smk_inode = skp; in smack_inode_post_setxattr()
1325 skp = smk_import_entry(value, size); in smack_inode_post_setxattr()
1326 if (!IS_ERR(skp)) in smack_inode_post_setxattr()
1327 isp->smk_task = skp; in smack_inode_post_setxattr()
1329 skp = smk_import_entry(value, size); in smack_inode_post_setxattr()
1330 if (!IS_ERR(skp)) in smack_inode_post_setxattr()
1331 isp->smk_mmap = skp; in smack_inode_post_setxattr()
1492 struct smack_known *skp = smk_of_inode(inode); in smack_inode_getsecid() local
1494 *secid = skp->smk_secid; in smack_inode_getsecid()
1651 struct smack_known *skp; in smack_mmap_file() local
1679 skp = smk_of_current(); in smack_mmap_file()
1688 list_for_each_entry_rcu(srp, &skp->smk_rules, list) { in smack_mmap_file()
1776 struct smack_known *skp; in smack_file_send_sigiotask() local
1790 skp = *blob; in smack_file_send_sigiotask()
1791 rc = smk_access(skp, tkp, MAY_DELIVER, NULL); in smack_file_send_sigiotask()
1792 rc = smk_bu_note("sigiotask", skp, tkp, MAY_DELIVER, rc); in smack_file_send_sigiotask()
1802 smack_log(skp->smk_known, tkp->smk_known, MAY_DELIVER, rc, &ad); in smack_file_send_sigiotask()
1981 struct smack_known *skp; in smack_cred_getsecid() local
1984 skp = smk_of_task(smack_cred(cred)); in smack_cred_getsecid()
1985 *secid = skp->smk_secid; in smack_cred_getsecid()
2035 struct smack_known *skp = smk_of_task_struct(p); in smk_curacc_on_task() local
2040 rc = smk_curacc(skp, access, &ad); in smk_curacc_on_task()
2088 struct smack_known *skp = smk_of_task_struct(p); in smack_task_getsecid() local
2090 *secid = skp->smk_secid; in smack_task_getsecid()
2175 struct smack_known *skp; in smack_task_kill() local
2198 skp = smk_of_task(smack_cred(cred)); in smack_task_kill()
2199 rc = smk_access(skp, tkp, MAY_DELIVER, &ad); in smack_task_kill()
2200 rc = smk_bu_note("USB signal", skp, tkp, MAY_DELIVER, rc); in smack_task_kill()
2214 struct smack_known *skp = smk_of_task_struct(p); in smack_task_to_inode() local
2216 isp->smk_inode = skp; in smack_task_to_inode()
2236 struct smack_known *skp = smk_of_current(); in smack_sk_alloc_security() local
2250 ssp->smk_in = skp; in smack_sk_alloc_security()
2251 ssp->smk_out = skp; in smack_sk_alloc_security()
2397 struct smack_known *skp = ssp->smk_out; in smack_netlbl_add() local
2403 rc = netlbl_sock_setattr(sk, sk->sk_family, &skp->smk_netlabel); in smack_netlbl_add()
2457 struct smack_known *skp; in smk_ipv4_check() local
2474 skp = ssp->smk_out; in smk_ipv4_check()
2475 rc = smk_access(skp, hkp, MAY_WRITE, &ad); in smk_ipv4_check()
2476 rc = smk_bu_note("IPv4 host check", skp, hkp, MAY_WRITE, rc); in smk_ipv4_check()
2623 struct smack_known *skp = NULL; in smk_ipv6_port_check() local
2628 skp = smack_ipv6host_label(address); in smk_ipv6_port_check()
2631 skp = ssp->smk_out; in smk_ipv6_port_check()
2638 if (skp != NULL && object != NULL) in smk_ipv6_port_check()
2639 return smk_ipv6_check(skp, object, address, act); in smk_ipv6_port_check()
2640 if (skp == NULL) in smk_ipv6_port_check()
2641 skp = smack_net_ambient; in smk_ipv6_port_check()
2649 return smk_ipv6_check(skp, object, address, act); in smk_ipv6_port_check()
2669 return smk_ipv6_check(skp, object, address, act); in smk_ipv6_port_check()
2687 struct smack_known *skp; in smack_inode_setsecurity() local
2696 skp = smk_import_entry(value, size); in smack_inode_setsecurity()
2697 if (IS_ERR(skp)) in smack_inode_setsecurity()
2698 return PTR_ERR(skp); in smack_inode_setsecurity()
2701 nsp->smk_inode = skp; in smack_inode_setsecurity()
2718 ssp->smk_in = skp; in smack_inode_setsecurity()
2720 ssp->smk_out = skp; in smack_inode_setsecurity()
3266 struct smack_known *skp; in smack_d_instantiate() local
3410 skp = smk_fetch(XATTR_NAME_SMACK, inode, dp); in smack_d_instantiate()
3411 if (!IS_ERR_OR_NULL(skp)) in smack_d_instantiate()
3412 final = skp; in smack_d_instantiate()
3447 skp = smk_fetch(XATTR_NAME_SMACKEXEC, inode, dp); in smack_d_instantiate()
3448 if (IS_ERR(skp) || skp == &smack_known_star || in smack_d_instantiate()
3449 skp == &smack_known_web) in smack_d_instantiate()
3450 skp = NULL; in smack_d_instantiate()
3451 isp->smk_task = skp; in smack_d_instantiate()
3453 skp = smk_fetch(XATTR_NAME_SMACKMMAP, inode, dp); in smack_d_instantiate()
3454 if (IS_ERR(skp) || skp == &smack_known_star || in smack_d_instantiate()
3455 skp == &smack_known_web) in smack_d_instantiate()
3456 skp = NULL; in smack_d_instantiate()
3457 isp->smk_mmap = skp; in smack_d_instantiate()
3485 struct smack_known *skp = smk_of_task_struct(p); in smack_getprocattr() local
3492 cp = kstrdup(skp->smk_known, GFP_KERNEL); in smack_getprocattr()
3516 struct smack_known *skp; in smack_setprocattr() local
3529 skp = smk_import_entry(value, size); in smack_setprocattr()
3530 if (IS_ERR(skp)) in smack_setprocattr()
3531 return PTR_ERR(skp); in smack_setprocattr()
3537 if (skp == &smack_known_web || skp == &smack_known_star) in smack_setprocattr()
3543 if (sklep->smk_label == skp) { in smack_setprocattr()
3556 tsp->smk_task = skp; in smack_setprocattr()
3578 struct smack_known *skp; in smack_unix_stream_connect() local
3590 skp = ssp->smk_out; in smack_unix_stream_connect()
3596 rc = smk_access(skp, okp, MAY_WRITE, &ad); in smack_unix_stream_connect()
3597 rc = smk_bu_note("UDS connect", skp, okp, MAY_WRITE, rc); in smack_unix_stream_connect()
3600 skp = ssp->smk_in; in smack_unix_stream_connect()
3601 rc = smk_access(okp, skp, MAY_WRITE, &ad); in smack_unix_stream_connect()
3602 rc = smk_bu_note("UDS connect", okp, skp, in smack_unix_stream_connect()
3714 struct smack_known *skp; in smack_from_secattr() local
3743 list_for_each_entry_rcu(skp, &smack_known_list, list) { in smack_from_secattr()
3744 if (sap->attr.mls.lvl != skp->smk_netlabel.attr.mls.lvl) in smack_from_secattr()
3750 if ((skp->smk_netlabel.flags & in smack_from_secattr()
3759 skp->smk_netlabel.attr.mls.cat, in smack_from_secattr()
3772 return skp; in smack_from_secattr()
3873 struct smack_known *skp = NULL; in smack_from_netlbl() local
3882 skp = smack_from_secattr(&secattr, ssp); in smack_from_netlbl()
3884 rc = netlbl_cache_add(skb, family, &skp->smk_netlabel); in smack_from_netlbl()
3889 return skp; in smack_from_netlbl()
3902 struct smack_known *skp = NULL; in smack_socket_sock_rcv_skb() local
3924 skp = smack_from_skb(skb); in smack_socket_sock_rcv_skb()
3925 if (skp == NULL) { in smack_socket_sock_rcv_skb()
3926 skp = smack_from_netlbl(sk, family, skb); in smack_socket_sock_rcv_skb()
3927 if (skp == NULL) in smack_socket_sock_rcv_skb()
3928 skp = smack_net_ambient; in smack_socket_sock_rcv_skb()
3943 rc = smk_access(skp, ssp->smk_in, MAY_WRITE, &ad); in smack_socket_sock_rcv_skb()
3944 rc = smk_bu_note("IPv4 delivery", skp, ssp->smk_in, in smack_socket_sock_rcv_skb()
3956 skp = smack_from_skb(skb); in smack_socket_sock_rcv_skb()
3957 if (skp == NULL) { in smack_socket_sock_rcv_skb()
3960 skp = smack_ipv6host_label(&sadd); in smack_socket_sock_rcv_skb()
3961 if (skp == NULL) in smack_socket_sock_rcv_skb()
3962 skp = smack_net_ambient; in smack_socket_sock_rcv_skb()
3970 rc = smk_access(skp, ssp->smk_in, MAY_WRITE, &ad); in smack_socket_sock_rcv_skb()
3971 rc = smk_bu_note("IPv6 delivery", skp, ssp->smk_in, in smack_socket_sock_rcv_skb()
4036 struct smack_known *skp; in smack_socket_getpeersec_dgram() local
4058 skp = smack_from_skb(skb); in smack_socket_getpeersec_dgram()
4059 if (skp) { in smack_socket_getpeersec_dgram()
4060 s = skp->smk_secid; in smack_socket_getpeersec_dgram()
4068 skp = smack_from_netlbl(sk, family, skb); in smack_socket_getpeersec_dgram()
4069 if (skp != NULL) in smack_socket_getpeersec_dgram()
4070 s = skp->smk_secid; in smack_socket_getpeersec_dgram()
4074 skp = smack_from_skb(skb); in smack_socket_getpeersec_dgram()
4075 if (skp) in smack_socket_getpeersec_dgram()
4076 s = skp->smk_secid; in smack_socket_getpeersec_dgram()
4097 struct smack_known *skp = smk_of_current(); in smack_sock_graft() local
4104 ssp->smk_in = skp; in smack_sock_graft()
4105 ssp->smk_out = skp; in smack_sock_graft()
4122 struct smack_known *skp; in smack_inet_conn_request() local
4152 skp = smack_from_skb(skb); in smack_inet_conn_request()
4153 if (skp == NULL) { in smack_inet_conn_request()
4154 skp = smack_from_netlbl(sk, family, skb); in smack_inet_conn_request()
4155 if (skp == NULL) in smack_inet_conn_request()
4156 skp = &smack_known_huh; in smack_inet_conn_request()
4169 rc = smk_access(skp, ssp->smk_in, MAY_WRITE, &ad); in smack_inet_conn_request()
4170 rc = smk_bu_note("IPv4 connect", skp, ssp->smk_in, MAY_WRITE, rc); in smack_inet_conn_request()
4178 req->peer_secid = skp->smk_secid; in smack_inet_conn_request()
4192 rc = netlbl_req_setattr(req, &skp->smk_netlabel); in smack_inet_conn_request()
4210 struct smack_known *skp; in smack_inet_csk_clone() local
4213 skp = smack_from_secid(req->peer_secid); in smack_inet_csk_clone()
4214 ssp->smk_packet = skp; in smack_inet_csk_clone()
4241 struct smack_known *skp = smk_of_task(smack_cred(cred)); in smack_key_alloc() local
4243 key->security = skp; in smack_key_alloc()
4340 struct smack_known *skp = key->security; in smack_key_getsecurity() local
4349 copy = kstrdup(skp->smk_known, GFP_KERNEL); in smack_key_getsecurity()
4460 struct smack_known *skp; in smack_audit_rule_init() local
4470 skp = smk_import_entry(rulestr, 0); in smack_audit_rule_init()
4471 if (IS_ERR(skp)) in smack_audit_rule_init()
4472 return PTR_ERR(skp); in smack_audit_rule_init()
4474 *rule = skp->smk_known; in smack_audit_rule_init()
4514 struct smack_known *skp; in smack_audit_rule_match() local
4525 skp = smack_from_secid(secid); in smack_audit_rule_match()
4533 return (rule == skp->smk_known); in smack_audit_rule_match()
4535 return (rule != skp->smk_known); in smack_audit_rule_match()
4567 struct smack_known *skp = smack_from_secid(secid); in smack_secid_to_secctx() local
4570 *secdata = skp->smk_known; in smack_secid_to_secctx()
4571 *seclen = strlen(skp->smk_known); in smack_secid_to_secctx()
4585 struct smack_known *skp = smk_find_entry(secdata); in smack_secctx_to_secid() local
4587 if (skp) in smack_secctx_to_secid()
4588 *secid = skp->smk_secid; in smack_secctx_to_secid()
4612 struct smack_known *skp = smk_of_inode(inode); in smack_inode_getsecctx() local
4614 *ctx = skp->smk_known; in smack_inode_getsecctx()
4615 *ctxlen = strlen(skp->smk_known); in smack_inode_getsecctx()
4623 struct smack_known *skp; in smack_inode_copy_up() local
4639 skp = isp->smk_inode; in smack_inode_copy_up()
4640 tsp->smk_task = skp; in smack_inode_copy_up()