Home
last modified time | relevance | path

Searched refs:lsm (Results 1 – 21 of 21) sorted by relevance

/linux-6.6.21/security/
Dsecurity.c102 static bool __init is_enabled(struct lsm_info *lsm) in is_enabled() argument
104 if (!lsm->enabled) in is_enabled()
107 return *lsm->enabled; in is_enabled()
113 static void __init set_enabled(struct lsm_info *lsm, bool enabled) in set_enabled() argument
119 if (!lsm->enabled) { in set_enabled()
121 lsm->enabled = &lsm_enabled_true; in set_enabled()
123 lsm->enabled = &lsm_enabled_false; in set_enabled()
124 } else if (lsm->enabled == &lsm_enabled_true) { in set_enabled()
126 lsm->enabled = &lsm_enabled_false; in set_enabled()
127 } else if (lsm->enabled == &lsm_enabled_false) { in set_enabled()
[all …]
DKconfig246 This can be controlled at boot with the "lsm=" parameter.
/linux-6.6.21/include/linux/
Dlsm_hooks.h53 const char *lsm; member
107 const char *lsm);
130 #define DEFINE_LSM(lsm) \ argument
131 static struct lsm_info __lsm_##lsm \
135 #define DEFINE_EARLY_LSM(lsm) \ argument
136 static struct lsm_info __early_lsm_##lsm \
Dbpf_types.h76 BPF_PROG_TYPE(BPF_PROG_TYPE_LSM, lsm,
Dsecurity.h475 int security_getprocattr(struct task_struct *p, const char *lsm, const char *name,
477 int security_setprocattr(const char *lsm, const char *name, void *value,
1349 static inline int security_getprocattr(struct task_struct *p, const char *lsm, in security_getprocattr() argument
1355 static inline int security_setprocattr(const char *lsm, char *name, in security_setprocattr() argument
/linux-6.6.21/security/integrity/ima/
Dima_policy.c120 } lsm[MAX_LSM_RULES]; member
383 ima_filter_rule_free(entry->lsm[i].rule); in ima_lsm_free_rule()
384 kfree(entry->lsm[i].args_p); in ima_lsm_free_rule()
417 memset(nentry->lsm, 0, sizeof_field(struct ima_rule_entry, lsm)); in ima_lsm_copy_rule()
420 if (!entry->lsm[i].args_p) in ima_lsm_copy_rule()
423 nentry->lsm[i].type = entry->lsm[i].type; in ima_lsm_copy_rule()
424 nentry->lsm[i].args_p = entry->lsm[i].args_p; in ima_lsm_copy_rule()
426 ima_filter_rule_init(nentry->lsm[i].type, Audit_equal, in ima_lsm_copy_rule()
427 nentry->lsm[i].args_p, in ima_lsm_copy_rule()
428 &nentry->lsm[i].rule); in ima_lsm_copy_rule()
[all …]
/linux-6.6.21/Documentation/bpf/libbpf/
Dprogram_types.rst102 … | ``BPF_LSM_MAC`` | ``lsm+`` [#lsm]_ …
104 … | | ``lsm.s+`` [#lsm]_ …
200 .. [#lsm] The ``lsm`` attachment format is ``lsm[.s]/<hook>``.
/linux-6.6.21/Documentation/security/
Dindex.rst11 lsm
12 lsm-development
Dlsm.rst64 An interface `/sys/kernel/security/lsm` reports a comma separated list
/linux-6.6.21/Documentation/bpf/
Dprog_lsm.rst61 * ``"lsm/file_mprotect"`` indicates the LSM hook that the program must
67 SEC("lsm/file_mprotect")
134 `tools/testing/selftests/bpf/progs/lsm.c`_ and the corresponding
140 .. _tools/testing/selftests/bpf/progs/lsm.c:
141 …t.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tree/tools/testing/selftests/bpf/progs/lsm.c
/linux-6.6.21/security/keys/
Dpermission.c41 goto lsm; in key_task_permission()
89 lsm: in key_task_permission()
/linux-6.6.21/tools/testing/selftests/bpf/prog_tests/
Dtest_lsm.c54 static int test_lsm(struct lsm *skel) in test_lsm()
100 struct lsm *skel = NULL; in test_test_lsm()
/linux-6.6.21/security/safesetid/
DMakefile7 safesetid-y := lsm.o securityfs.o
/linux-6.6.21/Documentation/ABI/testing/
Dima_policy24 condition:= base | lsm [option]
28 lsm: [[subj_user=] [subj_role=] [subj_type=]
49 lsm: are LSM specific
/linux-6.6.21/security/apparmor/
DMakefile7 path.o domain.o policy.o policy_unpack.o procattr.o lsm.o \
/linux-6.6.21/Documentation/admin-guide/LSM/
Dindex.rst26 ``/sys/kernel/security/lsm``. This is a comma separated list, and
/linux-6.6.21/fs/proc/
Dinternal.h95 const char *lsm; member
Dbase.c152 { .lsm = LSM })
2733 length = security_getprocattr(task, PROC_I(inode)->op.lsm, in proc_pid_attr_read()
2791 rv = security_setprocattr(PROC_I(inode)->op.lsm, in proc_pid_attr_write()
/linux-6.6.21/Documentation/userspace-api/
Dlandlock.rst468 still enable it by adding ``lsm=landlock,[...]`` to
/linux-6.6.21/Documentation/admin-guide/
Dkernel-parameters.txt3024 lsm.debug [SECURITY] Enable LSM initialization debugging output.
3026 lsm=lsm1,...,lsmN
5759 "lsm=" parameter.
/linux-6.6.21/
DMAINTAINERS19306 T: git git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/lsm.git