security/landlock/audit.c

137

get_hierarchy(const struct landlock_ruleset *const domain, const size_t layer)

security/landlock/audit.c

170

struct landlock_ruleset dom2 = {

security/landlock/audit.c

184

static size_t get_denied_layer(const struct landlock_ruleset *const domain,

security/landlock/audit.c

204

const struct landlock_ruleset dom = {

security/landlock/cred.c

40

struct landlock_ruleset *const dom = landlock_cred(cred)->domain;

security/landlock/cred.h

129

const struct landlock_ruleset *domain;

security/landlock/cred.h

36

struct landlock_ruleset *domain;

security/landlock/cred.h

80

static inline struct landlock_ruleset *landlock_get_current_domain(void)

security/landlock/cred.h

88

static inline const struct landlock_ruleset *

security/landlock/fs.c

1029

static bool collect_domain_accesses(const struct landlock_ruleset *const domain,

security/landlock/fs.c

1791

struct landlock_ruleset *prev_dom;

security/landlock/fs.c

323

int landlock_append_fs_rule(struct landlock_ruleset *const ruleset,

security/landlock/fs.c

364

find_rule(const struct landlock_ruleset *const domain,

security/landlock/fs.c

742

is_access_to_paths_allowed(const struct landlock_ruleset *const domain,

security/landlock/fs.h

127

int landlock_append_fs_rule(struct landlock_ruleset *const ruleset,

security/landlock/net.c

22

int landlock_append_net_rule(struct landlock_ruleset *const ruleset,

security/landlock/net.h

18

int landlock_append_net_rule(struct landlock_ruleset *const ruleset,

security/landlock/net.h

26

landlock_append_net_rule(struct landlock_ruleset *const ruleset, const u16 port,

security/landlock/ruleset.c

147

static struct rb_root *get_root(struct landlock_ruleset *const ruleset,

security/landlock/ruleset.c

178

const struct landlock_ruleset ruleset = {

security/landlock/ruleset.c

205

static int insert_rule(struct landlock_ruleset *const ruleset,

security/landlock/ruleset.c

304

int landlock_insert_rule(struct landlock_ruleset *const ruleset,

security/landlock/ruleset.c

31

static struct landlock_ruleset *create_ruleset(const u32 num_layers)

security/landlock/ruleset.c

318

static int merge_tree(struct landlock_ruleset *const dst,

security/landlock/ruleset.c

319

struct landlock_ruleset *const src,

security/landlock/ruleset.c

33

struct landlock_ruleset *new_ruleset;

security/landlock/ruleset.c

360

static int merge_ruleset(struct landlock_ruleset *const dst,

security/landlock/ruleset.c

361

struct landlock_ruleset *const src)

security/landlock/ruleset.c

403

static int inherit_tree(struct landlock_ruleset *const parent,

security/landlock/ruleset.c

404

struct landlock_ruleset *const child,

security/landlock/ruleset.c

435

static int inherit_ruleset(struct landlock_ruleset *const parent,

security/landlock/ruleset.c

436

struct landlock_ruleset *const child)

security/landlock/ruleset.c

481

static void free_ruleset(struct landlock_ruleset *const ruleset)

security/landlock/ruleset.c

500

void landlock_put_ruleset(struct landlock_ruleset *const ruleset)

security/landlock/ruleset.c

509

struct landlock_ruleset *ruleset;

security/landlock/ruleset.c

511

ruleset = container_of(work, struct landlock_ruleset, work_free);

security/landlock/ruleset.c

516

void landlock_put_ruleset_deferred(struct landlock_ruleset *const ruleset)

security/landlock/ruleset.c

536

struct landlock_ruleset *

security/landlock/ruleset.c

537

landlock_merge_ruleset(struct landlock_ruleset *const parent,

security/landlock/ruleset.c

538

struct landlock_ruleset *const ruleset)

security/landlock/ruleset.c

540

struct landlock_ruleset *new_dom __free(landlock_put_ruleset) = NULL;

security/landlock/ruleset.c

56

struct landlock_ruleset *

security/landlock/ruleset.c

589

landlock_find_rule(const struct landlock_ruleset *const ruleset,

security/landlock/ruleset.c

595

root = get_root((struct landlock_ruleset *)ruleset, id.type);

security/landlock/ruleset.c

61

struct landlock_ruleset *new_ruleset;

security/landlock/ruleset.c

661

get_access_mask_t(const struct landlock_ruleset *const ruleset,

security/landlock/ruleset.c

679

landlock_init_layer_masks(const struct landlock_ruleset *const domain,

security/landlock/ruleset.h

192

struct landlock_ruleset *

security/landlock/ruleset.h

197

void landlock_put_ruleset(struct landlock_ruleset *const ruleset);

security/landlock/ruleset.h

198

void landlock_put_ruleset_deferred(struct landlock_ruleset *const ruleset);

security/landlock/ruleset.h

200

DEFINE_FREE(landlock_put_ruleset, struct landlock_ruleset *,

security/landlock/ruleset.h

203

int landlock_insert_rule(struct landlock_ruleset *const ruleset,

security/landlock/ruleset.h

207

struct landlock_ruleset *

security/landlock/ruleset.h

208

landlock_merge_ruleset(struct landlock_ruleset *const parent,

security/landlock/ruleset.h

209

struct landlock_ruleset *const ruleset);

security/landlock/ruleset.h

212

landlock_find_rule(const struct landlock_ruleset *const ruleset,

security/landlock/ruleset.h

215

static inline void landlock_get_ruleset(struct landlock_ruleset *const ruleset)

security/landlock/ruleset.h

230

landlock_union_access_masks(const struct landlock_ruleset *const domain)

security/landlock/ruleset.h

247

landlock_add_fs_access_mask(struct landlock_ruleset *const ruleset,

security/landlock/ruleset.h

259

landlock_add_net_access_mask(struct landlock_ruleset *const ruleset,

security/landlock/ruleset.h

271

landlock_add_scope_mask(struct landlock_ruleset *const ruleset,

security/landlock/ruleset.h

282

landlock_get_fs_access_mask(const struct landlock_ruleset *const ruleset,

security/landlock/ruleset.h

291

landlock_get_net_access_mask(const struct landlock_ruleset *const ruleset,

security/landlock/ruleset.h

298

landlock_get_scope_mask(const struct landlock_ruleset *const ruleset,

security/landlock/ruleset.h

308

landlock_init_layer_masks(const struct landlock_ruleset *const domain,

security/landlock/syscalls.c

125

struct landlock_ruleset *ruleset = filp->private_data;

security/landlock/syscalls.c

203

struct landlock_ruleset *ruleset;

security/landlock/syscalls.c

266

static struct landlock_ruleset *get_ruleset_from_fd(const int fd,

security/landlock/syscalls.c

270

struct landlock_ruleset *ruleset;

security/landlock/syscalls.c

317

static int add_rule_path_beneath(struct landlock_ruleset *const ruleset,

security/landlock/syscalls.c

355

static int add_rule_net_port(struct landlock_ruleset *ruleset,

security/landlock/syscalls.c

425

struct landlock_ruleset *ruleset __free(landlock_put_ruleset) = NULL;

security/landlock/syscalls.c

485

struct landlock_ruleset *ruleset __free(landlock_put_ruleset) = NULL;

security/landlock/syscalls.c

550

struct landlock_ruleset *const new_dom =

security/landlock/task.c

138

const struct landlock_ruleset *child_dom;

security/landlock/task.c

179

static bool domain_is_scoped(const struct landlock_ruleset *const client,

security/landlock/task.c

180

const struct landlock_ruleset *const server,

security/landlock/task.c

236

const struct landlock_ruleset *const domain)

security/landlock/task.c

238

const struct landlock_ruleset *dom_other;

security/landlock/task.c

41

static bool domain_scope_le(const struct landlock_ruleset *const parent,

security/landlock/task.c

42

const struct landlock_ruleset *const child)

security/landlock/task.c

63

static int domain_ptrace(const struct landlock_ruleset *const parent,

security/landlock/task.c

64

const struct landlock_ruleset *const child)

security/landlock/task.c

98

const struct landlock_ruleset *const child_dom =