函数逻辑报告

Linux Kernel

v5.5.9

Brick Technologies Co., Ltd

Source Code:security\selinux\xfrm.c Create Date:2022-07-27 20:46:26
Last Modify:2020-03-12 14:18:49 Copyright©Brick
首页 函数Tree
注解内核,赢得工具下载SCCTEnglish

函数名称:LSM hook that controls access to unlabelled packets. If* a xfrm_state is authorizable (defined by macro) then it was* already authorized by the IPSec process. If not, then* we need to check for unlabelled access since this may not have

函数原型:int selinux_xfrm_sock_rcv_skb(unsigned int sk_sid, struct sk_buff *skb, struct common_audit_data *ad)

返回类型:int

参数:

类型参数名称
unsigned intsk_sid
struct sk_buff *skb
struct common_audit_data *ad
408  sp等于skb_sec_path(skb)
409  peer_sid等于SECINITSID_UNLABELED
411  如果sp
412 i小于len循环
413  x等于xvec[i]
415  如果xReturns true if the xfrm contains a security blob for SELinux.
416  ctx等于Security context
417  peer_sid等于ctx_sid
418  退出
426  返回:avc_has_perm - Check permissions and perform any appropriate auditing
调用者
名称描述
selinux_sock_rcv_skb_compat