Home
last modified time | relevance | path

Searched refs:cred (Results 1 – 25 of 271) sorted by relevance

1234567891011

/linux-6.6.21/include/linux/
Dcred.h19 struct cred;
65 extern void set_groups(struct cred *, struct group_info *);
110 struct cred { struct
148 extern void __put_cred(struct cred *); argument
151 extern const struct cred *get_task_cred(struct task_struct *);
152 extern struct cred *cred_alloc_blank(void);
153 extern struct cred *prepare_creds(void);
154 extern struct cred *prepare_exec_creds(void);
155 extern int commit_creds(struct cred *);
156 extern void abort_creds(struct cred *);
[all …]
Dsecurity.h37 struct cred;
143 extern int cap_capable(const struct cred *cred, struct user_namespace *ns,
150 extern int cap_capset(struct cred *new, const struct cred *old,
167 extern int cap_task_fix_setuid(struct cred *new, const struct cred *old, int flags);
266 int security_binder_set_context_mgr(const struct cred *mgr);
267 int security_binder_transaction(const struct cred *from,
268 const struct cred *to);
269 int security_binder_transfer_binder(const struct cred *from,
270 const struct cred *to);
271 int security_binder_transfer_file(const struct cred *from,
[all …]
Dlsm_hook_defs.h29 LSM_HOOK(int, 0, binder_set_context_mgr, const struct cred *mgr)
30 LSM_HOOK(int, 0, binder_transaction, const struct cred *from,
31 const struct cred *to)
32 LSM_HOOK(int, 0, binder_transfer_binder, const struct cred *from,
33 const struct cred *to)
34 LSM_HOOK(int, 0, binder_transfer_file, const struct cred *from,
35 const struct cred *to, const struct file *file)
41 LSM_HOOK(int, 0, capset, struct cred *new, const struct cred *old,
44 LSM_HOOK(int, 0, capable, const struct cred *cred, struct user_namespace *ns,
88 struct qstr *name, const struct cred *old, struct cred *new)
[all …]
/linux-6.6.21/net/sunrpc/
Dauth.c41 static struct cred machine_cred = {
49 const struct cred *rpc_machine_cred(void) in rpc_machine_cred()
261 rpcauth_unhash_cred_locked(struct rpc_cred *cred) in rpcauth_unhash_cred_locked() argument
263 if (!test_and_clear_bit(RPCAUTH_CRED_HASHED, &cred->cr_flags)) in rpcauth_unhash_cred_locked()
265 hlist_del_rcu(&cred->cr_hash); in rpcauth_unhash_cred_locked()
270 rpcauth_unhash_cred(struct rpc_cred *cred) in rpcauth_unhash_cred() argument
275 if (!test_bit(RPCAUTH_CRED_HASHED, &cred->cr_flags)) in rpcauth_unhash_cred()
277 cache_lock = &cred->cr_auth->au_credcache->lock; in rpcauth_unhash_cred()
279 ret = rpcauth_unhash_cred_locked(cred); in rpcauth_unhash_cred()
312 rpcauth_stringify_acceptor(struct rpc_cred *cred) in rpcauth_stringify_acceptor() argument
[all …]
Dauth_unix.c71 unx_destroy_cred(struct rpc_cred *cred) in unx_destroy_cred() argument
73 call_rcu(&cred->cr_rcu, unx_free_cred_callback); in unx_destroy_cred()
80 unx_match(struct auth_cred *acred, struct rpc_cred *cred, int flags) in unx_match() argument
85 if (cred->cr_cred == acred->cred) in unx_match()
88 …if (!uid_eq(cred->cr_cred->fsuid, acred->cred->fsuid) || !gid_eq(cred->cr_cred->fsgid, acred->cred in unx_match()
91 if (acred->cred->group_info != NULL) in unx_match()
92 groups = acred->cred->group_info->ngroups; in unx_match()
95 if (cred->cr_cred->group_info == NULL) in unx_match()
97 if (groups != cred->cr_cred->group_info->ngroups) in unx_match()
101 if (!gid_eq(cred->cr_cred->group_info->gid[i], acred->cred->group_info->gid[i])) in unx_match()
[all …]
/linux-6.6.21/kernel/
Dcred.c44 struct cred init_cred = {
70 struct cred *cred = container_of(rcu, struct cred, rcu); in put_cred_rcu() local
72 kdebug("put_cred_rcu(%p)", cred); in put_cred_rcu()
74 if (atomic_long_read(&cred->usage) != 0) in put_cred_rcu()
76 cred, atomic_long_read(&cred->usage)); in put_cred_rcu()
78 security_cred_free(cred); in put_cred_rcu()
79 key_put(cred->session_keyring); in put_cred_rcu()
80 key_put(cred->process_keyring); in put_cred_rcu()
81 key_put(cred->thread_keyring); in put_cred_rcu()
82 key_put(cred->request_key_auth); in put_cred_rcu()
[all …]
Duid16.c66 const struct cred *cred = current_cred(); in SYSCALL_DEFINE3() local
70 ruid = high2lowuid(from_kuid_munged(cred->user_ns, cred->uid)); in SYSCALL_DEFINE3()
71 euid = high2lowuid(from_kuid_munged(cred->user_ns, cred->euid)); in SYSCALL_DEFINE3()
72 suid = high2lowuid(from_kuid_munged(cred->user_ns, cred->suid)); in SYSCALL_DEFINE3()
89 const struct cred *cred = current_cred(); in SYSCALL_DEFINE3() local
93 rgid = high2lowgid(from_kgid_munged(cred->user_ns, cred->gid)); in SYSCALL_DEFINE3()
94 egid = high2lowgid(from_kgid_munged(cred->user_ns, cred->egid)); in SYSCALL_DEFINE3()
95 sgid = high2lowgid(from_kgid_munged(cred->user_ns, cred->sgid)); in SYSCALL_DEFINE3()
156 const struct cred *cred = current_cred(); in SYSCALL_DEFINE2() local
162 i = cred->group_info->ngroups; in SYSCALL_DEFINE2()
[all …]
Dgroups.c118 void set_groups(struct cred *new, struct group_info *group_info) in set_groups()
136 struct cred *new; in set_current_groups()
137 const struct cred *old; in set_current_groups()
163 const struct cred *cred = current_cred(); in SYSCALL_DEFINE2() local
170 i = cred->group_info->ngroups; in SYSCALL_DEFINE2()
176 if (groups_to_user(grouplist, cred->group_info)) { in SYSCALL_DEFINE2()
229 const struct cred *cred = current_cred(); in in_group_p() local
232 if (!gid_eq(grp, cred->fsgid)) in in_group_p()
233 retval = groups_search(cred->group_info, grp); in in_group_p()
241 const struct cred *cred = current_cred(); in in_egroup_p() local
[all …]
/linux-6.6.21/security/keys/
Dprocess_keys.c77 const struct cred *cred = current_cred(); in look_up_user_keyrings() local
82 uid_t uid = from_kuid(user_ns, cred->user->uid); in look_up_user_keyrings()
106 uid_keyring = keyring_alloc(buf, cred->user->uid, INVALID_GID, in look_up_user_keyrings()
107 cred, user_keyring_perm, in look_up_user_keyrings()
128 session_keyring = keyring_alloc(buf, cred->user->uid, INVALID_GID, in look_up_user_keyrings()
129 cred, user_keyring_perm, in look_up_user_keyrings()
185 struct key *get_user_session_keyring_rcu(const struct cred *cred) in get_user_session_keyring_rcu() argument
187 struct key *reg_keyring = READ_ONCE(cred->user_ns->user_keyring_register); in get_user_session_keyring_rcu()
194 .cred = cred, in get_user_session_keyring_rcu()
205 from_kuid(cred->user_ns, in get_user_session_keyring_rcu()
[all …]
Drequest_key_auth.c112 if (rka->cred) in free_request_key_auth()
113 put_cred(rka->cred); in free_request_key_auth()
166 const struct cred *cred = current_cred(); in request_key_auth_new() local
185 if (cred->request_key_auth) { in request_key_auth_new()
187 down_read(&cred->request_key_auth->sem); in request_key_auth_new()
192 &cred->request_key_auth->flags)) { in request_key_auth_new()
193 up_read(&cred->request_key_auth->sem); in request_key_auth_new()
198 irka = cred->request_key_auth->payload.data[0]; in request_key_auth_new()
199 rka->cred = get_cred(irka->cred); in request_key_auth_new()
202 up_read(&cred->request_key_auth->sem); in request_key_auth_new()
[all …]
Drequest_key.c80 static int umh_keys_init(struct subprocess_info *info, struct cred *cred) in umh_keys_init() argument
84 return install_session_keyring_to_cred(cred, keyring); in umh_keys_init()
122 const struct cred *cred = current_cred(); in call_sbin_request_key() local
139 cred = get_current_cred(); in call_sbin_request_key()
140 keyring = keyring_alloc(desc, cred->fsuid, cred->fsgid, cred, in call_sbin_request_key()
143 put_cred(cred); in call_sbin_request_key()
155 sprintf(uid_str, "%d", from_kuid(&init_user_ns, cred->fsuid)); in call_sbin_request_key()
156 sprintf(gid_str, "%d", from_kgid(&init_user_ns, cred->fsgid)); in call_sbin_request_key()
163 cred->thread_keyring ? cred->thread_keyring->serial : 0); in call_sbin_request_key()
166 if (cred->process_keyring) in call_sbin_request_key()
[all …]
/linux-6.6.21/include/linux/sunrpc/
Dsvcauth.h36 static inline void init_svc_cred(struct svc_cred *cred) in init_svc_cred() argument
38 cred->cr_group_info = NULL; in init_svc_cred()
39 cred->cr_raw_principal = NULL; in init_svc_cred()
40 cred->cr_principal = NULL; in init_svc_cred()
41 cred->cr_targ_princ = NULL; in init_svc_cred()
42 cred->cr_gss_mech = NULL; in init_svc_cred()
45 static inline void free_svc_cred(struct svc_cred *cred) in free_svc_cred() argument
47 if (cred->cr_group_info) in free_svc_cred()
48 put_group_info(cred->cr_group_info); in free_svc_cred()
49 kfree(cred->cr_raw_principal); in free_svc_cred()
[all …]
/linux-6.6.21/security/
Dcommoncap.c66 int cap_capable(const struct cred *cred, struct user_namespace *targ_ns, in cap_capable() argument
77 if (ns == cred->user_ns) in cap_capable()
78 return cap_raised(cred->cap_effective, cap) ? 0 : -EPERM; in cap_capable()
84 if (ns->level <= cred->user_ns->level) in cap_capable()
91 if ((ns->parent == cred->user_ns) && uid_eq(ns->owner, cred->euid)) in cap_capable()
137 const struct cred *cred, *child_cred; in cap_ptrace_access_check() local
141 cred = current_cred(); in cap_ptrace_access_check()
144 caller_caps = &cred->cap_effective; in cap_ptrace_access_check()
146 caller_caps = &cred->cap_permitted; in cap_ptrace_access_check()
147 if (cred->user_ns == child_cred->user_ns && in cap_ptrace_access_check()
[all …]
/linux-6.6.21/security/apparmor/include/
Dcred.h22 static inline struct aa_label *cred_label(const struct cred *cred) in cred_label() argument
24 struct aa_label **blob = cred->security + apparmor_blob_sizes.lbs_cred; in cred_label()
30 static inline void set_cred_label(const struct cred *cred, in set_cred_label() argument
33 struct aa_label **blob = cred->security + apparmor_blob_sizes.lbs_cred; in set_cred_label()
47 static inline struct aa_label *aa_cred_raw_label(const struct cred *cred) in aa_cred_raw_label() argument
49 struct aa_label *label = cred_label(cred); in aa_cred_raw_label()
61 static inline struct aa_label *aa_get_newest_cred_label(const struct cred *cred) in aa_get_newest_cred_label() argument
63 return aa_get_newest_label(aa_cred_raw_label(cred)); in aa_get_newest_cred_label()
Dmount.h28 int aa_remount(const struct cred *subj_cred,
32 int aa_bind_mount(const struct cred *subj_cred,
37 int aa_mount_change_type(const struct cred *subj_cred,
41 int aa_move_mount_old(const struct cred *subj_cred,
44 int aa_move_mount(const struct cred *subj_cred,
48 int aa_new_mount(const struct cred *subj_cred,
53 int aa_umount(const struct cred *subj_cred,
56 int aa_pivotroot(const struct cred *subj_cred,
/linux-6.6.21/include/linux/pds/
Dpds_intr.h130 u32 cred, u32 flags) in pds_core_intr_credits() argument
132 if (WARN_ON_ONCE(cred > PDS_CORE_INTR_CRED_COUNT)) { in pds_core_intr_credits()
133 cred = ioread32(&intr_ctrl->credits); in pds_core_intr_credits()
134 cred &= PDS_CORE_INTR_CRED_COUNT_SIGNED; in pds_core_intr_credits()
137 iowrite32(cred | flags, &intr_ctrl->credits); in pds_core_intr_credits()
143 u32 cred; in pds_core_intr_clean_flags() local
145 cred = ioread32(&intr_ctrl->credits); in pds_core_intr_clean_flags()
146 cred &= PDS_CORE_INTR_CRED_COUNT_SIGNED; in pds_core_intr_clean_flags()
147 cred |= flags; in pds_core_intr_clean_flags()
148 iowrite32(cred, &intr_ctrl->credits); in pds_core_intr_clean_flags()
/linux-6.6.21/drivers/net/ethernet/pensando/ionic/
Dionic_regs.h66 int intr_idx, u32 cred, u32 flags) in ionic_intr_credits() argument
68 if (WARN_ON_ONCE(cred > IONIC_INTR_CRED_COUNT)) { in ionic_intr_credits()
69 cred = ioread32(&intr_ctrl[intr_idx].credits); in ionic_intr_credits()
70 cred &= IONIC_INTR_CRED_COUNT_SIGNED; in ionic_intr_credits()
73 iowrite32(cred | flags, &intr_ctrl[intr_idx].credits); in ionic_intr_credits()
79 u32 cred; in ionic_intr_clean() local
81 cred = ioread32(&intr_ctrl[intr_idx].credits); in ionic_intr_clean()
82 cred &= IONIC_INTR_CRED_COUNT_SIGNED; in ionic_intr_clean()
83 cred |= IONIC_INTR_CRED_RESET_COALESCE; in ionic_intr_clean()
84 iowrite32(cred, &intr_ctrl[intr_idx].credits); in ionic_intr_clean()
/linux-6.6.21/security/apparmor/
Dtask.c50 struct cred *new; in aa_replace_current_label()
123 struct cred *new; in aa_set_current_hat()
163 struct cred *new; in aa_restore_previous_label()
229 static int profile_ptrace_perm(const struct cred *cred, in profile_ptrace_perm() argument
238 ad->subj_cred = cred; in profile_ptrace_perm()
246 static int profile_tracee_perm(const struct cred *cred, in profile_tracee_perm() argument
255 return profile_ptrace_perm(cred, tracee, tracer, request, ad); in profile_tracee_perm()
258 static int profile_tracer_perm(const struct cred *cred, in profile_tracer_perm() argument
267 return profile_ptrace_perm(cred, tracer, tracee, request, ad); in profile_tracer_perm()
276 ad->error = aa_capable(cred, &tracer->label, CAP_SYS_PTRACE, in profile_tracer_perm()
[all …]
/linux-6.6.21/fs/nfs/
Dnfs4_fs.h70 nfs4_stateid *, const struct cred *);
116 const struct cred *so_cred; /* Associated cred */
224 int (*establish_clid)(struct nfs_client *, const struct cred *);
225 int (*reclaim_complete)(struct nfs_client *, const struct cred *);
227 const struct cred *);
256 const struct cred *cred; member
260 int (*sched_state_renewal)(struct nfs_client *, const struct cred *, unsigned);
261 const struct cred * (*get_state_renewal_cred)(struct nfs_client *);
262 int (*renew_lease)(struct nfs_client *, const struct cred *);
267 struct nfs4_fs_locations *, struct page *, const struct cred *);
[all …]
Ddelegation.h18 const struct cred *cred; member
42 int nfs_inode_set_delegation(struct inode *inode, const struct cred *cred,
44 void nfs_inode_reclaim_delegation(struct inode *inode, const struct cred *cred,
69 int nfs4_proc_delegreturn(struct inode *inode, const struct cred *cred, const nfs4_stateid *stateid…
72 …elegation_stateid(struct inode *inode, fmode_t flags, nfs4_stateid *dst, const struct cred **cred);
Dnfs4state.c113 int nfs4_init_clientid(struct nfs_client *clp, const struct cred *cred) in nfs4_init_clientid() argument
129 status = nfs4_proc_setclientid(clp, NFS4_CALLBACK, port, cred, &clid); in nfs4_init_clientid()
136 status = nfs4_proc_setclientid_confirm(clp, &clid, cred); in nfs4_init_clientid()
160 const struct cred *cred) in nfs40_discover_server_trunking() argument
174 status = nfs4_proc_setclientid(clp, NFS4_CALLBACK, port, cred, &clid); in nfs40_discover_server_trunking()
180 status = nfs40_walk_client_list(clp, result, cred); in nfs40_discover_server_trunking()
194 const struct cred *nfs4_get_machine_cred(struct nfs_client *clp) in nfs4_get_machine_cred()
207 static const struct cred *
210 const struct cred *cred = NULL; in nfs4_get_renew_cred_server_locked() local
220 cred = get_cred(sp->so_cred); in nfs4_get_renew_cred_server_locked()
[all …]
/linux-6.6.21/net/sunrpc/auth_gss/
Dauth_gss.c133 gss_cred_set_ctx(struct rpc_cred *cred, struct gss_cl_ctx *ctx) in gss_cred_set_ctx() argument
135 struct gss_cred *gss_cred = container_of(cred, struct gss_cred, gc_base); in gss_cred_set_ctx()
137 if (!test_bit(RPCAUTH_CRED_NEW, &cred->cr_flags)) in gss_cred_set_ctx()
141 set_bit(RPCAUTH_CRED_UPTODATE, &cred->cr_flags); in gss_cred_set_ctx()
143 clear_bit(RPCAUTH_CRED_NEW, &cred->cr_flags); in gss_cred_set_ctx()
147 gss_cred_get_ctx(struct rpc_cred *cred) in gss_cred_get_ctx() argument
149 struct gss_cred *gss_cred = container_of(cred, struct gss_cred, gc_base); in gss_cred_get_ctx()
406 const struct cred *cred) in gss_encode_v0_msg() argument
408 struct user_namespace *userns = cred->user_ns; in gss_encode_v0_msg()
433 const struct cred *cred) in gss_encode_v1_msg() argument
[all …]
/linux-6.6.21/io_uring/
Dfdinfo.c20 const struct cred *cred) in io_uring_show_cred() argument
28 seq_put_decimal_ull(m, "\tUid:\t", from_kuid_munged(uns, cred->uid)); in io_uring_show_cred()
29 seq_put_decimal_ull(m, "\t\t", from_kuid_munged(uns, cred->euid)); in io_uring_show_cred()
30 seq_put_decimal_ull(m, "\t\t", from_kuid_munged(uns, cred->suid)); in io_uring_show_cred()
31 seq_put_decimal_ull(m, "\t\t", from_kuid_munged(uns, cred->fsuid)); in io_uring_show_cred()
32 seq_put_decimal_ull(m, "\n\tGid:\t", from_kgid_munged(uns, cred->gid)); in io_uring_show_cred()
33 seq_put_decimal_ull(m, "\t\t", from_kgid_munged(uns, cred->egid)); in io_uring_show_cred()
34 seq_put_decimal_ull(m, "\t\t", from_kgid_munged(uns, cred->sgid)); in io_uring_show_cred()
35 seq_put_decimal_ull(m, "\t\t", from_kgid_munged(uns, cred->fsgid)); in io_uring_show_cred()
37 gi = cred->group_info; in io_uring_show_cred()
[all …]
/linux-6.6.21/fs/smb/client/
Dcifs_spnego.c21 static const struct cred *spnego_cred;
96 const struct cred *saved_cred; in cifs_get_spnego_key()
180 struct cred *cred; in init_cifs_spnego() local
192 cred = prepare_kernel_cred(&init_task); in init_cifs_spnego()
193 if (!cred) in init_cifs_spnego()
197 GLOBAL_ROOT_UID, GLOBAL_ROOT_GID, cred, in init_cifs_spnego()
215 cred->thread_keyring = keyring; in init_cifs_spnego()
216 cred->jit_keyring = KEY_REQKEY_DEFL_THREAD_KEYRING; in init_cifs_spnego()
217 spnego_cred = cred; in init_cifs_spnego()
225 put_cred(cred); in init_cifs_spnego()
/linux-6.6.21/security/safesetid/
Dlsm.c90 static int safesetid_security_capable(const struct cred *cred, in safesetid_security_capable() argument
113 if (setid_policy_lookup((kid_t){.uid = cred->uid}, INVALID_ID, UID) == SIDPOL_DEFAULT) in safesetid_security_capable()
120 __kuid_val(cred->uid)); in safesetid_security_capable()
127 if (setid_policy_lookup((kid_t){.gid = cred->gid}, INVALID_ID, GID) == SIDPOL_DEFAULT) in safesetid_security_capable()
134 __kgid_val(cred->gid)); in safesetid_security_capable()
147 static bool id_permitted_for_cred(const struct cred *old, kid_t new_id, enum setid_type new_type) in id_permitted_for_cred()
190 static int safesetid_task_fix_setuid(struct cred *new, in safesetid_task_fix_setuid()
191 const struct cred *old, in safesetid_task_fix_setuid()
214 static int safesetid_task_fix_setgid(struct cred *new, in safesetid_task_fix_setgid()
215 const struct cred *old, in safesetid_task_fix_setgid()
[all …]

1234567891011