/linux-6.6.21/include/linux/ |
D | cred.h | 19 struct cred; 65 extern void set_groups(struct cred *, struct group_info *); 110 struct cred { struct 148 extern void __put_cred(struct cred *); argument 151 extern const struct cred *get_task_cred(struct task_struct *); 152 extern struct cred *cred_alloc_blank(void); 153 extern struct cred *prepare_creds(void); 154 extern struct cred *prepare_exec_creds(void); 155 extern int commit_creds(struct cred *); 156 extern void abort_creds(struct cred *); [all …]
|
D | security.h | 37 struct cred; 143 extern int cap_capable(const struct cred *cred, struct user_namespace *ns, 150 extern int cap_capset(struct cred *new, const struct cred *old, 167 extern int cap_task_fix_setuid(struct cred *new, const struct cred *old, int flags); 266 int security_binder_set_context_mgr(const struct cred *mgr); 267 int security_binder_transaction(const struct cred *from, 268 const struct cred *to); 269 int security_binder_transfer_binder(const struct cred *from, 270 const struct cred *to); 271 int security_binder_transfer_file(const struct cred *from, [all …]
|
D | lsm_hook_defs.h | 29 LSM_HOOK(int, 0, binder_set_context_mgr, const struct cred *mgr) 30 LSM_HOOK(int, 0, binder_transaction, const struct cred *from, 31 const struct cred *to) 32 LSM_HOOK(int, 0, binder_transfer_binder, const struct cred *from, 33 const struct cred *to) 34 LSM_HOOK(int, 0, binder_transfer_file, const struct cred *from, 35 const struct cred *to, const struct file *file) 41 LSM_HOOK(int, 0, capset, struct cred *new, const struct cred *old, 44 LSM_HOOK(int, 0, capable, const struct cred *cred, struct user_namespace *ns, 88 struct qstr *name, const struct cred *old, struct cred *new) [all …]
|
/linux-6.6.21/net/sunrpc/ |
D | auth.c | 41 static struct cred machine_cred = { 49 const struct cred *rpc_machine_cred(void) in rpc_machine_cred() 261 rpcauth_unhash_cred_locked(struct rpc_cred *cred) in rpcauth_unhash_cred_locked() argument 263 if (!test_and_clear_bit(RPCAUTH_CRED_HASHED, &cred->cr_flags)) in rpcauth_unhash_cred_locked() 265 hlist_del_rcu(&cred->cr_hash); in rpcauth_unhash_cred_locked() 270 rpcauth_unhash_cred(struct rpc_cred *cred) in rpcauth_unhash_cred() argument 275 if (!test_bit(RPCAUTH_CRED_HASHED, &cred->cr_flags)) in rpcauth_unhash_cred() 277 cache_lock = &cred->cr_auth->au_credcache->lock; in rpcauth_unhash_cred() 279 ret = rpcauth_unhash_cred_locked(cred); in rpcauth_unhash_cred() 312 rpcauth_stringify_acceptor(struct rpc_cred *cred) in rpcauth_stringify_acceptor() argument [all …]
|
D | auth_unix.c | 71 unx_destroy_cred(struct rpc_cred *cred) in unx_destroy_cred() argument 73 call_rcu(&cred->cr_rcu, unx_free_cred_callback); in unx_destroy_cred() 80 unx_match(struct auth_cred *acred, struct rpc_cred *cred, int flags) in unx_match() argument 85 if (cred->cr_cred == acred->cred) in unx_match() 88 …if (!uid_eq(cred->cr_cred->fsuid, acred->cred->fsuid) || !gid_eq(cred->cr_cred->fsgid, acred->cred… in unx_match() 91 if (acred->cred->group_info != NULL) in unx_match() 92 groups = acred->cred->group_info->ngroups; in unx_match() 95 if (cred->cr_cred->group_info == NULL) in unx_match() 97 if (groups != cred->cr_cred->group_info->ngroups) in unx_match() 101 if (!gid_eq(cred->cr_cred->group_info->gid[i], acred->cred->group_info->gid[i])) in unx_match() [all …]
|
/linux-6.6.21/kernel/ |
D | cred.c | 44 struct cred init_cred = { 70 struct cred *cred = container_of(rcu, struct cred, rcu); in put_cred_rcu() local 72 kdebug("put_cred_rcu(%p)", cred); in put_cred_rcu() 74 if (atomic_long_read(&cred->usage) != 0) in put_cred_rcu() 76 cred, atomic_long_read(&cred->usage)); in put_cred_rcu() 78 security_cred_free(cred); in put_cred_rcu() 79 key_put(cred->session_keyring); in put_cred_rcu() 80 key_put(cred->process_keyring); in put_cred_rcu() 81 key_put(cred->thread_keyring); in put_cred_rcu() 82 key_put(cred->request_key_auth); in put_cred_rcu() [all …]
|
D | uid16.c | 66 const struct cred *cred = current_cred(); in SYSCALL_DEFINE3() local 70 ruid = high2lowuid(from_kuid_munged(cred->user_ns, cred->uid)); in SYSCALL_DEFINE3() 71 euid = high2lowuid(from_kuid_munged(cred->user_ns, cred->euid)); in SYSCALL_DEFINE3() 72 suid = high2lowuid(from_kuid_munged(cred->user_ns, cred->suid)); in SYSCALL_DEFINE3() 89 const struct cred *cred = current_cred(); in SYSCALL_DEFINE3() local 93 rgid = high2lowgid(from_kgid_munged(cred->user_ns, cred->gid)); in SYSCALL_DEFINE3() 94 egid = high2lowgid(from_kgid_munged(cred->user_ns, cred->egid)); in SYSCALL_DEFINE3() 95 sgid = high2lowgid(from_kgid_munged(cred->user_ns, cred->sgid)); in SYSCALL_DEFINE3() 156 const struct cred *cred = current_cred(); in SYSCALL_DEFINE2() local 162 i = cred->group_info->ngroups; in SYSCALL_DEFINE2() [all …]
|
D | groups.c | 118 void set_groups(struct cred *new, struct group_info *group_info) in set_groups() 136 struct cred *new; in set_current_groups() 137 const struct cred *old; in set_current_groups() 163 const struct cred *cred = current_cred(); in SYSCALL_DEFINE2() local 170 i = cred->group_info->ngroups; in SYSCALL_DEFINE2() 176 if (groups_to_user(grouplist, cred->group_info)) { in SYSCALL_DEFINE2() 229 const struct cred *cred = current_cred(); in in_group_p() local 232 if (!gid_eq(grp, cred->fsgid)) in in_group_p() 233 retval = groups_search(cred->group_info, grp); in in_group_p() 241 const struct cred *cred = current_cred(); in in_egroup_p() local [all …]
|
/linux-6.6.21/security/keys/ |
D | process_keys.c | 77 const struct cred *cred = current_cred(); in look_up_user_keyrings() local 82 uid_t uid = from_kuid(user_ns, cred->user->uid); in look_up_user_keyrings() 106 uid_keyring = keyring_alloc(buf, cred->user->uid, INVALID_GID, in look_up_user_keyrings() 107 cred, user_keyring_perm, in look_up_user_keyrings() 128 session_keyring = keyring_alloc(buf, cred->user->uid, INVALID_GID, in look_up_user_keyrings() 129 cred, user_keyring_perm, in look_up_user_keyrings() 185 struct key *get_user_session_keyring_rcu(const struct cred *cred) in get_user_session_keyring_rcu() argument 187 struct key *reg_keyring = READ_ONCE(cred->user_ns->user_keyring_register); in get_user_session_keyring_rcu() 194 .cred = cred, in get_user_session_keyring_rcu() 205 from_kuid(cred->user_ns, in get_user_session_keyring_rcu() [all …]
|
D | request_key_auth.c | 112 if (rka->cred) in free_request_key_auth() 113 put_cred(rka->cred); in free_request_key_auth() 166 const struct cred *cred = current_cred(); in request_key_auth_new() local 185 if (cred->request_key_auth) { in request_key_auth_new() 187 down_read(&cred->request_key_auth->sem); in request_key_auth_new() 192 &cred->request_key_auth->flags)) { in request_key_auth_new() 193 up_read(&cred->request_key_auth->sem); in request_key_auth_new() 198 irka = cred->request_key_auth->payload.data[0]; in request_key_auth_new() 199 rka->cred = get_cred(irka->cred); in request_key_auth_new() 202 up_read(&cred->request_key_auth->sem); in request_key_auth_new() [all …]
|
D | request_key.c | 80 static int umh_keys_init(struct subprocess_info *info, struct cred *cred) in umh_keys_init() argument 84 return install_session_keyring_to_cred(cred, keyring); in umh_keys_init() 122 const struct cred *cred = current_cred(); in call_sbin_request_key() local 139 cred = get_current_cred(); in call_sbin_request_key() 140 keyring = keyring_alloc(desc, cred->fsuid, cred->fsgid, cred, in call_sbin_request_key() 143 put_cred(cred); in call_sbin_request_key() 155 sprintf(uid_str, "%d", from_kuid(&init_user_ns, cred->fsuid)); in call_sbin_request_key() 156 sprintf(gid_str, "%d", from_kgid(&init_user_ns, cred->fsgid)); in call_sbin_request_key() 163 cred->thread_keyring ? cred->thread_keyring->serial : 0); in call_sbin_request_key() 166 if (cred->process_keyring) in call_sbin_request_key() [all …]
|
/linux-6.6.21/include/linux/sunrpc/ |
D | svcauth.h | 36 static inline void init_svc_cred(struct svc_cred *cred) in init_svc_cred() argument 38 cred->cr_group_info = NULL; in init_svc_cred() 39 cred->cr_raw_principal = NULL; in init_svc_cred() 40 cred->cr_principal = NULL; in init_svc_cred() 41 cred->cr_targ_princ = NULL; in init_svc_cred() 42 cred->cr_gss_mech = NULL; in init_svc_cred() 45 static inline void free_svc_cred(struct svc_cred *cred) in free_svc_cred() argument 47 if (cred->cr_group_info) in free_svc_cred() 48 put_group_info(cred->cr_group_info); in free_svc_cred() 49 kfree(cred->cr_raw_principal); in free_svc_cred() [all …]
|
/linux-6.6.21/security/ |
D | commoncap.c | 66 int cap_capable(const struct cred *cred, struct user_namespace *targ_ns, in cap_capable() argument 77 if (ns == cred->user_ns) in cap_capable() 78 return cap_raised(cred->cap_effective, cap) ? 0 : -EPERM; in cap_capable() 84 if (ns->level <= cred->user_ns->level) in cap_capable() 91 if ((ns->parent == cred->user_ns) && uid_eq(ns->owner, cred->euid)) in cap_capable() 137 const struct cred *cred, *child_cred; in cap_ptrace_access_check() local 141 cred = current_cred(); in cap_ptrace_access_check() 144 caller_caps = &cred->cap_effective; in cap_ptrace_access_check() 146 caller_caps = &cred->cap_permitted; in cap_ptrace_access_check() 147 if (cred->user_ns == child_cred->user_ns && in cap_ptrace_access_check() [all …]
|
/linux-6.6.21/security/apparmor/include/ |
D | cred.h | 22 static inline struct aa_label *cred_label(const struct cred *cred) in cred_label() argument 24 struct aa_label **blob = cred->security + apparmor_blob_sizes.lbs_cred; in cred_label() 30 static inline void set_cred_label(const struct cred *cred, in set_cred_label() argument 33 struct aa_label **blob = cred->security + apparmor_blob_sizes.lbs_cred; in set_cred_label() 47 static inline struct aa_label *aa_cred_raw_label(const struct cred *cred) in aa_cred_raw_label() argument 49 struct aa_label *label = cred_label(cred); in aa_cred_raw_label() 61 static inline struct aa_label *aa_get_newest_cred_label(const struct cred *cred) in aa_get_newest_cred_label() argument 63 return aa_get_newest_label(aa_cred_raw_label(cred)); in aa_get_newest_cred_label()
|
D | mount.h | 28 int aa_remount(const struct cred *subj_cred, 32 int aa_bind_mount(const struct cred *subj_cred, 37 int aa_mount_change_type(const struct cred *subj_cred, 41 int aa_move_mount_old(const struct cred *subj_cred, 44 int aa_move_mount(const struct cred *subj_cred, 48 int aa_new_mount(const struct cred *subj_cred, 53 int aa_umount(const struct cred *subj_cred, 56 int aa_pivotroot(const struct cred *subj_cred,
|
/linux-6.6.21/include/linux/pds/ |
D | pds_intr.h | 130 u32 cred, u32 flags) in pds_core_intr_credits() argument 132 if (WARN_ON_ONCE(cred > PDS_CORE_INTR_CRED_COUNT)) { in pds_core_intr_credits() 133 cred = ioread32(&intr_ctrl->credits); in pds_core_intr_credits() 134 cred &= PDS_CORE_INTR_CRED_COUNT_SIGNED; in pds_core_intr_credits() 137 iowrite32(cred | flags, &intr_ctrl->credits); in pds_core_intr_credits() 143 u32 cred; in pds_core_intr_clean_flags() local 145 cred = ioread32(&intr_ctrl->credits); in pds_core_intr_clean_flags() 146 cred &= PDS_CORE_INTR_CRED_COUNT_SIGNED; in pds_core_intr_clean_flags() 147 cred |= flags; in pds_core_intr_clean_flags() 148 iowrite32(cred, &intr_ctrl->credits); in pds_core_intr_clean_flags()
|
/linux-6.6.21/drivers/net/ethernet/pensando/ionic/ |
D | ionic_regs.h | 66 int intr_idx, u32 cred, u32 flags) in ionic_intr_credits() argument 68 if (WARN_ON_ONCE(cred > IONIC_INTR_CRED_COUNT)) { in ionic_intr_credits() 69 cred = ioread32(&intr_ctrl[intr_idx].credits); in ionic_intr_credits() 70 cred &= IONIC_INTR_CRED_COUNT_SIGNED; in ionic_intr_credits() 73 iowrite32(cred | flags, &intr_ctrl[intr_idx].credits); in ionic_intr_credits() 79 u32 cred; in ionic_intr_clean() local 81 cred = ioread32(&intr_ctrl[intr_idx].credits); in ionic_intr_clean() 82 cred &= IONIC_INTR_CRED_COUNT_SIGNED; in ionic_intr_clean() 83 cred |= IONIC_INTR_CRED_RESET_COALESCE; in ionic_intr_clean() 84 iowrite32(cred, &intr_ctrl[intr_idx].credits); in ionic_intr_clean()
|
/linux-6.6.21/security/apparmor/ |
D | task.c | 50 struct cred *new; in aa_replace_current_label() 123 struct cred *new; in aa_set_current_hat() 163 struct cred *new; in aa_restore_previous_label() 229 static int profile_ptrace_perm(const struct cred *cred, in profile_ptrace_perm() argument 238 ad->subj_cred = cred; in profile_ptrace_perm() 246 static int profile_tracee_perm(const struct cred *cred, in profile_tracee_perm() argument 255 return profile_ptrace_perm(cred, tracee, tracer, request, ad); in profile_tracee_perm() 258 static int profile_tracer_perm(const struct cred *cred, in profile_tracer_perm() argument 267 return profile_ptrace_perm(cred, tracer, tracee, request, ad); in profile_tracer_perm() 276 ad->error = aa_capable(cred, &tracer->label, CAP_SYS_PTRACE, in profile_tracer_perm() [all …]
|
/linux-6.6.21/fs/nfs/ |
D | nfs4_fs.h | 70 nfs4_stateid *, const struct cred *); 116 const struct cred *so_cred; /* Associated cred */ 224 int (*establish_clid)(struct nfs_client *, const struct cred *); 225 int (*reclaim_complete)(struct nfs_client *, const struct cred *); 227 const struct cred *); 256 const struct cred *cred; member 260 int (*sched_state_renewal)(struct nfs_client *, const struct cred *, unsigned); 261 const struct cred * (*get_state_renewal_cred)(struct nfs_client *); 262 int (*renew_lease)(struct nfs_client *, const struct cred *); 267 struct nfs4_fs_locations *, struct page *, const struct cred *); [all …]
|
D | delegation.h | 18 const struct cred *cred; member 42 int nfs_inode_set_delegation(struct inode *inode, const struct cred *cred, 44 void nfs_inode_reclaim_delegation(struct inode *inode, const struct cred *cred, 69 int nfs4_proc_delegreturn(struct inode *inode, const struct cred *cred, const nfs4_stateid *stateid… 72 …elegation_stateid(struct inode *inode, fmode_t flags, nfs4_stateid *dst, const struct cred **cred);
|
D | nfs4state.c | 113 int nfs4_init_clientid(struct nfs_client *clp, const struct cred *cred) in nfs4_init_clientid() argument 129 status = nfs4_proc_setclientid(clp, NFS4_CALLBACK, port, cred, &clid); in nfs4_init_clientid() 136 status = nfs4_proc_setclientid_confirm(clp, &clid, cred); in nfs4_init_clientid() 160 const struct cred *cred) in nfs40_discover_server_trunking() argument 174 status = nfs4_proc_setclientid(clp, NFS4_CALLBACK, port, cred, &clid); in nfs40_discover_server_trunking() 180 status = nfs40_walk_client_list(clp, result, cred); in nfs40_discover_server_trunking() 194 const struct cred *nfs4_get_machine_cred(struct nfs_client *clp) in nfs4_get_machine_cred() 207 static const struct cred * 210 const struct cred *cred = NULL; in nfs4_get_renew_cred_server_locked() local 220 cred = get_cred(sp->so_cred); in nfs4_get_renew_cred_server_locked() [all …]
|
/linux-6.6.21/net/sunrpc/auth_gss/ |
D | auth_gss.c | 133 gss_cred_set_ctx(struct rpc_cred *cred, struct gss_cl_ctx *ctx) in gss_cred_set_ctx() argument 135 struct gss_cred *gss_cred = container_of(cred, struct gss_cred, gc_base); in gss_cred_set_ctx() 137 if (!test_bit(RPCAUTH_CRED_NEW, &cred->cr_flags)) in gss_cred_set_ctx() 141 set_bit(RPCAUTH_CRED_UPTODATE, &cred->cr_flags); in gss_cred_set_ctx() 143 clear_bit(RPCAUTH_CRED_NEW, &cred->cr_flags); in gss_cred_set_ctx() 147 gss_cred_get_ctx(struct rpc_cred *cred) in gss_cred_get_ctx() argument 149 struct gss_cred *gss_cred = container_of(cred, struct gss_cred, gc_base); in gss_cred_get_ctx() 406 const struct cred *cred) in gss_encode_v0_msg() argument 408 struct user_namespace *userns = cred->user_ns; in gss_encode_v0_msg() 433 const struct cred *cred) in gss_encode_v1_msg() argument [all …]
|
/linux-6.6.21/io_uring/ |
D | fdinfo.c | 20 const struct cred *cred) in io_uring_show_cred() argument 28 seq_put_decimal_ull(m, "\tUid:\t", from_kuid_munged(uns, cred->uid)); in io_uring_show_cred() 29 seq_put_decimal_ull(m, "\t\t", from_kuid_munged(uns, cred->euid)); in io_uring_show_cred() 30 seq_put_decimal_ull(m, "\t\t", from_kuid_munged(uns, cred->suid)); in io_uring_show_cred() 31 seq_put_decimal_ull(m, "\t\t", from_kuid_munged(uns, cred->fsuid)); in io_uring_show_cred() 32 seq_put_decimal_ull(m, "\n\tGid:\t", from_kgid_munged(uns, cred->gid)); in io_uring_show_cred() 33 seq_put_decimal_ull(m, "\t\t", from_kgid_munged(uns, cred->egid)); in io_uring_show_cred() 34 seq_put_decimal_ull(m, "\t\t", from_kgid_munged(uns, cred->sgid)); in io_uring_show_cred() 35 seq_put_decimal_ull(m, "\t\t", from_kgid_munged(uns, cred->fsgid)); in io_uring_show_cred() 37 gi = cred->group_info; in io_uring_show_cred() [all …]
|
/linux-6.6.21/fs/smb/client/ |
D | cifs_spnego.c | 21 static const struct cred *spnego_cred; 96 const struct cred *saved_cred; in cifs_get_spnego_key() 180 struct cred *cred; in init_cifs_spnego() local 192 cred = prepare_kernel_cred(&init_task); in init_cifs_spnego() 193 if (!cred) in init_cifs_spnego() 197 GLOBAL_ROOT_UID, GLOBAL_ROOT_GID, cred, in init_cifs_spnego() 215 cred->thread_keyring = keyring; in init_cifs_spnego() 216 cred->jit_keyring = KEY_REQKEY_DEFL_THREAD_KEYRING; in init_cifs_spnego() 217 spnego_cred = cred; in init_cifs_spnego() 225 put_cred(cred); in init_cifs_spnego()
|
/linux-6.6.21/security/safesetid/ |
D | lsm.c | 90 static int safesetid_security_capable(const struct cred *cred, in safesetid_security_capable() argument 113 if (setid_policy_lookup((kid_t){.uid = cred->uid}, INVALID_ID, UID) == SIDPOL_DEFAULT) in safesetid_security_capable() 120 __kuid_val(cred->uid)); in safesetid_security_capable() 127 if (setid_policy_lookup((kid_t){.gid = cred->gid}, INVALID_ID, GID) == SIDPOL_DEFAULT) in safesetid_security_capable() 134 __kgid_val(cred->gid)); in safesetid_security_capable() 147 static bool id_permitted_for_cred(const struct cred *old, kid_t new_id, enum setid_type new_type) in id_permitted_for_cred() 190 static int safesetid_task_fix_setuid(struct cred *new, in safesetid_task_fix_setuid() 191 const struct cred *old, in safesetid_task_fix_setuid() 214 static int safesetid_task_fix_setgid(struct cred *new, in safesetid_task_fix_setgid() 215 const struct cred *old, in safesetid_task_fix_setgid() [all …]
|