Function report

Linux Kernel

v5.5.9

Brick Technologies Co., Ltd

Source Code:security\selinux\avc.c Create Date:2022-07-28 18:44:07
Last Modify:2020-03-12 14:18:49 Copyright©Brick
home page Tree
Annotation kernel can get tool activityDownload SCCTChinese

Name:avc_denied

Proto:static noinline int avc_denied(struct selinux_state *state, unsigned int ssid, unsigned int tsid, u16 tclass, unsigned int requested, u8 driver, u8 xperm, unsigned int flags, struct av_decision *avd)

Type:int

Parameter:

TypeParameterName
struct selinux_state *state
unsigned intssid
unsigned inttsid
u16tclass
unsigned intrequested
u8driver
u8xperm
unsigned intflags
struct av_decision *avd
1013  If flags & Ignore permissive mode. Then Return -EACCES
1016  If enforcing_enabled(state) && Not (flags & definitions of av_decision.flags ) Then Return -EACCES
1020  avc_update_node Update an AVC entry*@event : Updating event*@perms : Permission mask bits*@ssid,@tsid,@tclass : identifier of an AVC entry*@seqno : sequence number when decision was made*@xpd: extended_perms_decision to be added to the node
1022  Return 0
Caller
NameDescribe
avc_has_extended_permsThe avc extended permissions logic adds an additional 256 bits of* permissions to an avc node when extended permissions for that node are* specified in the avtab
avc_has_perm_noauditavc_has_perm_noaudit - Check permissions but perform no auditing