函数逻辑报告

Linux Kernel

v5.5.9

Brick Technologies Co., Ltd

Source Code:security\selinux\xfrm.c Create Date:2022-07-27 20:46:01
Last Modify:2020-03-12 14:18:49 Copyright©Brick
首页 函数Tree
注解内核,赢得工具下载SCCTEnglish

函数名称:Returns true if the xfrm contains a security blob for SELinux.

函数原型:static inline int selinux_authorizable_xfrm(struct xfrm_state *x)

返回类型:int

参数:

类型参数名称
struct xfrm_state *x
67  返回:Returns true if the context is an LSM/SELinux context.
调用者
名称描述
selinux_xfrm_state_pol_flow_matchLSM hook implementation that authorizes that a state matches* the given policy, flow combo.
selinux_xfrm_skb_sid_egress
selinux_xfrm_skb_sid_ingress
selinux_xfrm_sock_rcv_skbLSM hook that controls access to unlabelled packets. If* a xfrm_state is authorizable (defined by macro) then it was* already authorized by the IPSec process. If not, then* we need to check for unlabelled access since this may not have
selinux_xfrm_postroute_lastPOSTROUTE_LAST hook's XFRM processing:* If we have no security association, then we need to determine* whether the socket is allowed to send to an unlabelled destination.* If we do have a authorizable security association, then it has already been