Blame view
security/dummy.c
28.3 KB
1da177e4c
Linux-2.6.12-rc2
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 |
/* * Stub functions for the default security function pointers in case no * security model is loaded. * * Copyright (C) 2001 WireX Communications, Inc <chris@wirex.com> * Copyright (C) 2001-2002 Greg Kroah-Hartman <greg@kroah.com> * Copyright (C) 2001 Networks Associates Technology, Inc <ssmalley@nai.com> * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. */ #undef DEBUG |
c59ede7b7
[PATCH] move capa...
|
16 |
#include <linux/capability.h> |
|
1da177e4c
Linux-2.6.12-rc2
|
17 18 19 20 21 22 23 24 25 26 27 28 |
#include <linux/kernel.h> #include <linux/mman.h> #include <linux/pagemap.h> #include <linux/swap.h> #include <linux/security.h> #include <linux/skbuff.h> #include <linux/netlink.h> #include <net/sock.h> #include <linux/xattr.h> #include <linux/hugetlb.h> #include <linux/ptrace.h> #include <linux/file.h> |
8cdbc2b98
capabilities: add...
|
29 30 |
#include <linux/prctl.h> #include <linux/securebits.h> |
|
1da177e4c
Linux-2.6.12-rc2
|
31 32 33 34 35 36 37 38 39 |
static int dummy_ptrace (struct task_struct *parent, struct task_struct *child)
{
return 0;
}
static int dummy_capget (struct task_struct *target, kernel_cap_t * effective,
kernel_cap_t * inheritable, kernel_cap_t * permitted)
{
|
|
72c2d5823
V3 file capabilit...
|
40 |
if (target->euid == 0) {
|
|
e338d263a
Add 64-bit capabi...
|
41 42 43 44 45 |
cap_set_full(*permitted);
cap_set_init_eff(*effective);
} else {
cap_clear(*permitted);
cap_clear(*effective);
|
|
72c2d5823
V3 file capabilit...
|
46 |
} |
|
e338d263a
Add 64-bit capabi...
|
47 48 49 50 51 52 |
cap_clear(*inheritable);
if (target->fsuid != 0) {
*permitted = cap_drop_fs_set(*permitted);
*effective = cap_drop_fs_set(*effective);
|
|
1da177e4c
Linux-2.6.12-rc2
|
53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 |
}
return 0;
}
static int dummy_capset_check (struct task_struct *target,
kernel_cap_t * effective,
kernel_cap_t * inheritable,
kernel_cap_t * permitted)
{
return -EPERM;
}
static void dummy_capset_set (struct task_struct *target,
kernel_cap_t * effective,
kernel_cap_t * inheritable,
kernel_cap_t * permitted)
{
return;
}
static int dummy_acct (struct file *file)
{
return 0;
}
static int dummy_capable (struct task_struct *tsk, int cap)
{
if (cap_raised (tsk->cap_effective, cap))
return 0;
return -EPERM;
}
static int dummy_sysctl (ctl_table * table, int op)
{
return 0;
}
static int dummy_quotactl (int cmds, int type, int id, struct super_block *sb)
{
return 0;
}
static int dummy_quota_on (struct dentry *dentry)
{
return 0;
}
static int dummy_syslog (int type)
{
if ((type != 3 && type != 10) && current->euid)
return -EPERM;
return 0;
}
static int dummy_settime(struct timespec *ts, struct timezone *tz)
{
if (!capable(CAP_SYS_TIME))
return -EPERM;
return 0;
}
|
34b4e4aa3
fix NULL pointer ...
|
113 |
static int dummy_vm_enough_memory(struct mm_struct *mm, long pages) |
|
1da177e4c
Linux-2.6.12-rc2
|
114 115 116 117 118 |
{
int cap_sys_admin = 0;
if (dummy_capable(current, CAP_SYS_ADMIN) == 0)
cap_sys_admin = 1;
|
|
34b4e4aa3
fix NULL pointer ...
|
119 |
return __vm_enough_memory(mm, pages, cap_sys_admin); |
|
1da177e4c
Linux-2.6.12-rc2
|
120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 |
}
static int dummy_bprm_alloc_security (struct linux_binprm *bprm)
{
return 0;
}
static void dummy_bprm_free_security (struct linux_binprm *bprm)
{
return;
}
static void dummy_bprm_apply_creds (struct linux_binprm *bprm, int unsafe)
{
if (bprm->e_uid != current->uid || bprm->e_gid != current->gid) {
|
6c5d52382
coredump masking:...
|
135 |
set_dumpable(current->mm, suid_dumpable); |
|
1da177e4c
Linux-2.6.12-rc2
|
136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 |
if ((unsafe & ~LSM_UNSAFE_PTRACE_CAP) && !capable(CAP_SETUID)) {
bprm->e_uid = current->uid;
bprm->e_gid = current->gid;
}
}
current->suid = current->euid = current->fsuid = bprm->e_uid;
current->sgid = current->egid = current->fsgid = bprm->e_gid;
dummy_capget(current, ¤t->cap_effective, ¤t->cap_inheritable, ¤t->cap_permitted);
}
static void dummy_bprm_post_apply_creds (struct linux_binprm *bprm)
{
return;
}
static int dummy_bprm_set_security (struct linux_binprm *bprm)
{
return 0;
}
static int dummy_bprm_check_security (struct linux_binprm *bprm)
{
return 0;
}
static int dummy_bprm_secureexec (struct linux_binprm *bprm)
{
/* The new userland will simply use the value provided
in the AT_SECURE field to decide whether secure mode
is required. Hence, this logic is required to preserve
the legacy decision algorithm used by the old userland. */
return (current->euid != current->uid ||
current->egid != current->gid);
}
static int dummy_sb_alloc_security (struct super_block *sb)
{
return 0;
}
static void dummy_sb_free_security (struct super_block *sb)
{
return;
}
|
e00075298
LSM/SELinux: Inte...
|
183 |
static int dummy_sb_copy_data (char *orig, char *copy) |
|
1da177e4c
Linux-2.6.12-rc2
|
184 185 186 187 188 189 190 191 |
{
return 0;
}
static int dummy_sb_kern_mount (struct super_block *sb, void *data)
{
return 0;
}
|
726c33422
[PATCH] VFS: Perm...
|
192 |
static int dummy_sb_statfs (struct dentry *dentry) |
|
1da177e4c
Linux-2.6.12-rc2
|
193 194 195 |
{
return 0;
}
|
b5266eb4c
[PATCH] switch a ...
|
196 |
static int dummy_sb_mount (char *dev_name, struct path *path, char *type, |
|
1da177e4c
Linux-2.6.12-rc2
|
197 198 199 200 |
unsigned long flags, void *data)
{
return 0;
}
|
|
b5266eb4c
[PATCH] switch a ...
|
201 |
static int dummy_sb_check_sb (struct vfsmount *mnt, struct path *path) |
|
1da177e4c
Linux-2.6.12-rc2
|
202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 |
{
return 0;
}
static int dummy_sb_umount (struct vfsmount *mnt, int flags)
{
return 0;
}
static void dummy_sb_umount_close (struct vfsmount *mnt)
{
return;
}
static void dummy_sb_umount_busy (struct vfsmount *mnt)
{
return;
}
static void dummy_sb_post_remount (struct vfsmount *mnt, unsigned long flags,
void *data)
{
return;
}
|
|
b5266eb4c
[PATCH] switch a ...
|
226 |
static void dummy_sb_post_addmount (struct vfsmount *mnt, struct path *path) |
|
1da177e4c
Linux-2.6.12-rc2
|
227 228 229 |
{
return;
}
|
|
b5266eb4c
[PATCH] switch a ...
|
230 |
static int dummy_sb_pivotroot (struct path *old_path, struct path *new_path) |
|
1da177e4c
Linux-2.6.12-rc2
|
231 232 233 |
{
return 0;
}
|
|
b5266eb4c
[PATCH] switch a ...
|
234 |
static void dummy_sb_post_pivotroot (struct path *old_path, struct path *new_path) |
|
1da177e4c
Linux-2.6.12-rc2
|
235 236 237 |
{
return;
}
|
|
e00075298
LSM/SELinux: Inte...
|
238 239 |
static int dummy_sb_get_mnt_opts(const struct super_block *sb, struct security_mnt_opts *opts) |
|
c9180a57a
Security: add get...
|
240 |
{
|
|
e00075298
LSM/SELinux: Inte...
|
241 |
security_init_mnt_opts(opts); |
|
c9180a57a
Security: add get...
|
242 243 |
return 0; } |
|
e00075298
LSM/SELinux: Inte...
|
244 245 |
static int dummy_sb_set_mnt_opts(struct super_block *sb, struct security_mnt_opts *opts) |
|
c9180a57a
Security: add get...
|
246 |
{
|
|
e00075298
LSM/SELinux: Inte...
|
247 |
if (unlikely(opts->num_mnt_opts)) |
|
c9180a57a
Security: add get...
|
248 249 250 251 252 253 254 255 256 |
return -EOPNOTSUPP;
return 0;
}
static void dummy_sb_clone_mnt_opts(const struct super_block *oldsb,
struct super_block *newsb)
{
return;
}
|
|
e00075298
LSM/SELinux: Inte...
|
257 258 259 260 |
static int dummy_sb_parse_opts_str(char *options, struct security_mnt_opts *opts)
{
return 0;
}
|
|
1da177e4c
Linux-2.6.12-rc2
|
261 262 263 264 265 266 267 268 269 |
static int dummy_inode_alloc_security (struct inode *inode)
{
return 0;
}
static void dummy_inode_free_security (struct inode *inode)
{
return;
}
|
5e41ff9e0
[PATCH] security:...
|
270 271 272 273 274 |
static int dummy_inode_init_security (struct inode *inode, struct inode *dir,
char **name, void **value, size_t *len)
{
return -EOPNOTSUPP;
}
|
|
1da177e4c
Linux-2.6.12-rc2
|
275 276 277 278 279 |
static int dummy_inode_create (struct inode *inode, struct dentry *dentry,
int mask)
{
return 0;
}
|
|
1da177e4c
Linux-2.6.12-rc2
|
280 281 282 283 284 |
static int dummy_inode_link (struct dentry *old_dentry, struct inode *inode,
struct dentry *new_dentry)
{
return 0;
}
|
|
1da177e4c
Linux-2.6.12-rc2
|
285 286 287 288 289 290 291 292 293 294 |
static int dummy_inode_unlink (struct inode *inode, struct dentry *dentry)
{
return 0;
}
static int dummy_inode_symlink (struct inode *inode, struct dentry *dentry,
const char *name)
{
return 0;
}
|
|
1da177e4c
Linux-2.6.12-rc2
|
295 296 297 298 299 |
static int dummy_inode_mkdir (struct inode *inode, struct dentry *dentry,
int mask)
{
return 0;
}
|
|
1da177e4c
Linux-2.6.12-rc2
|
300 301 302 303 304 305 306 307 308 309 |
static int dummy_inode_rmdir (struct inode *inode, struct dentry *dentry)
{
return 0;
}
static int dummy_inode_mknod (struct inode *inode, struct dentry *dentry,
int mode, dev_t dev)
{
return 0;
}
|
|
1da177e4c
Linux-2.6.12-rc2
|
310 311 312 313 314 315 316 |
static int dummy_inode_rename (struct inode *old_inode,
struct dentry *old_dentry,
struct inode *new_inode,
struct dentry *new_dentry)
{
return 0;
}
|
|
1da177e4c
Linux-2.6.12-rc2
|
317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 |
static int dummy_inode_readlink (struct dentry *dentry)
{
return 0;
}
static int dummy_inode_follow_link (struct dentry *dentry,
struct nameidata *nameidata)
{
return 0;
}
static int dummy_inode_permission (struct inode *inode, int mask, struct nameidata *nd)
{
return 0;
}
static int dummy_inode_setattr (struct dentry *dentry, struct iattr *iattr)
{
return 0;
}
static int dummy_inode_getattr (struct vfsmount *mnt, struct dentry *dentry)
{
return 0;
}
static void dummy_inode_delete (struct inode *ino)
{
return;
}
|
|
8f0cfa52a
xattr: add missin...
|
347 348 |
static int dummy_inode_setxattr (struct dentry *dentry, const char *name, const void *value, size_t size, int flags) |
|
1da177e4c
Linux-2.6.12-rc2
|
349 350 351 352 353 354 355 |
{
if (!strncmp(name, XATTR_SECURITY_PREFIX,
sizeof(XATTR_SECURITY_PREFIX) - 1) &&
!capable(CAP_SYS_ADMIN))
return -EPERM;
return 0;
}
|
|
8f0cfa52a
xattr: add missin...
|
356 357 358 |
static void dummy_inode_post_setxattr (struct dentry *dentry, const char *name, const void *value, size_t size, int flags) |
|
1da177e4c
Linux-2.6.12-rc2
|
359 360 |
{
}
|
|
8f0cfa52a
xattr: add missin...
|
361 |
static int dummy_inode_getxattr (struct dentry *dentry, const char *name) |
|
1da177e4c
Linux-2.6.12-rc2
|
362 363 364 365 366 367 368 369 |
{
return 0;
}
static int dummy_inode_listxattr (struct dentry *dentry)
{
return 0;
}
|
|
8f0cfa52a
xattr: add missin...
|
370 |
static int dummy_inode_removexattr (struct dentry *dentry, const char *name) |
|
1da177e4c
Linux-2.6.12-rc2
|
371 372 373 374 375 376 377 |
{
if (!strncmp(name, XATTR_SECURITY_PREFIX,
sizeof(XATTR_SECURITY_PREFIX) - 1) &&
!capable(CAP_SYS_ADMIN))
return -EPERM;
return 0;
}
|
b53767719
Implement file po...
|
378 379 380 381 382 383 384 385 386 |
static int dummy_inode_need_killpriv(struct dentry *dentry)
{
return 0;
}
static int dummy_inode_killpriv(struct dentry *dentry)
{
return 0;
}
|
424925940
VFS/Security: Rew...
|
387 |
static int dummy_inode_getsecurity(const struct inode *inode, const char *name, void **buffer, bool alloc) |
|
1da177e4c
Linux-2.6.12-rc2
|
388 389 390 391 392 393 394 395 396 397 398 399 400 |
{
return -EOPNOTSUPP;
}
static int dummy_inode_setsecurity(struct inode *inode, const char *name, const void *value, size_t size, int flags)
{
return -EOPNOTSUPP;
}
static int dummy_inode_listsecurity(struct inode *inode, char *buffer, size_t buffer_size)
{
return 0;
}
|
8a076191f
LSM: Introduce in...
|
401 402 403 404 |
static void dummy_inode_getsecid(const struct inode *inode, u32 *secid)
{
*secid = 0;
}
|
|
1da177e4c
Linux-2.6.12-rc2
|
405 406 407 408 409 410 411 412 413 414 415 416 417 418 419 420 421 422 423 424 425 426 427 |
static int dummy_file_permission (struct file *file, int mask)
{
return 0;
}
static int dummy_file_alloc_security (struct file *file)
{
return 0;
}
static void dummy_file_free_security (struct file *file)
{
return;
}
static int dummy_file_ioctl (struct file *file, unsigned int command,
unsigned long arg)
{
return 0;
}
static int dummy_file_mmap (struct file *file, unsigned long reqprot,
unsigned long prot,
|
|
ed0321895
security: Protect...
|
428 429 430 |
unsigned long flags, unsigned long addr, unsigned long addr_only) |
|
1da177e4c
Linux-2.6.12-rc2
|
431 |
{
|
|
ab5a91a83
Security: allow c...
|
432 |
if ((addr < mmap_min_addr) && !capable(CAP_SYS_RAWIO)) |
|
ed0321895
security: Protect...
|
433 |
return -EACCES; |
|
1da177e4c
Linux-2.6.12-rc2
|
434 435 436 437 438 439 440 441 442 443 444 445 446 447 448 449 450 451 452 453 454 455 456 457 458 459 460 461 462 463 464 465 466 467 468 469 |
return 0;
}
static int dummy_file_mprotect (struct vm_area_struct *vma,
unsigned long reqprot,
unsigned long prot)
{
return 0;
}
static int dummy_file_lock (struct file *file, unsigned int cmd)
{
return 0;
}
static int dummy_file_fcntl (struct file *file, unsigned int cmd,
unsigned long arg)
{
return 0;
}
static int dummy_file_set_fowner (struct file *file)
{
return 0;
}
static int dummy_file_send_sigiotask (struct task_struct *tsk,
struct fown_struct *fown, int sig)
{
return 0;
}
static int dummy_file_receive (struct file *file)
{
return 0;
}
|
788e7dd4c
SELinux: Improve ...
|
470 471 472 473 |
static int dummy_dentry_open (struct file *file)
{
return 0;
}
|
|
1da177e4c
Linux-2.6.12-rc2
|
474 475 476 477 478 479 480 481 482 483 484 485 486 487 488 489 490 491 492 493 494 495 496 497 498 499 500 501 502 503 504 505 506 507 508 509 510 511 512 513 514 515 516 517 518 |
static int dummy_task_create (unsigned long clone_flags)
{
return 0;
}
static int dummy_task_alloc_security (struct task_struct *p)
{
return 0;
}
static void dummy_task_free_security (struct task_struct *p)
{
return;
}
static int dummy_task_setuid (uid_t id0, uid_t id1, uid_t id2, int flags)
{
return 0;
}
static int dummy_task_post_setuid (uid_t id0, uid_t id1, uid_t id2, int flags)
{
dummy_capget(current, ¤t->cap_effective, ¤t->cap_inheritable, ¤t->cap_permitted);
return 0;
}
static int dummy_task_setgid (gid_t id0, gid_t id1, gid_t id2, int flags)
{
return 0;
}
static int dummy_task_setpgid (struct task_struct *p, pid_t pgid)
{
return 0;
}
static int dummy_task_getpgid (struct task_struct *p)
{
return 0;
}
static int dummy_task_getsid (struct task_struct *p)
{
return 0;
}
|
|
f9008e4c5
[PATCH] SELinux: ...
|
519 |
static void dummy_task_getsecid (struct task_struct *p, u32 *secid) |
|
8a076191f
LSM: Introduce in...
|
520 521 522 |
{
*secid = 0;
}
|
|
f9008e4c5
[PATCH] SELinux: ...
|
523 |
|
|
1da177e4c
Linux-2.6.12-rc2
|
524 525 526 527 528 529 530 531 532 |
static int dummy_task_setgroups (struct group_info *group_info)
{
return 0;
}
static int dummy_task_setnice (struct task_struct *p, int nice)
{
return 0;
}
|
03e680606
[PATCH] lsm: add ...
|
533 534 535 536 |
static int dummy_task_setioprio (struct task_struct *p, int ioprio)
{
return 0;
}
|
|
a1836a42d
[PATCH] SELinux: ...
|
537 538 539 540 |
static int dummy_task_getioprio (struct task_struct *p)
{
return 0;
}
|
|
1da177e4c
Linux-2.6.12-rc2
|
541 542 543 544 545 546 547 548 549 550 551 552 553 554 555 |
static int dummy_task_setrlimit (unsigned int resource, struct rlimit *new_rlim)
{
return 0;
}
static int dummy_task_setscheduler (struct task_struct *p, int policy,
struct sched_param *lp)
{
return 0;
}
static int dummy_task_getscheduler (struct task_struct *p)
{
return 0;
}
|
|
35601547b
[PATCH] SELinux: ...
|
556 557 558 559 |
static int dummy_task_movememory (struct task_struct *p)
{
return 0;
}
|
|
1da177e4c
Linux-2.6.12-rc2
|
560 561 562 563 564 565 |
static int dummy_task_wait (struct task_struct *p)
{
return 0;
}
static int dummy_task_kill (struct task_struct *p, struct siginfo *info,
|
|
f9008e4c5
[PATCH] SELinux: ...
|
566 |
int sig, u32 secid) |
|
1da177e4c
Linux-2.6.12-rc2
|
567 568 569 570 571 |
{
return 0;
}
static int dummy_task_prctl (int option, unsigned long arg2, unsigned long arg3,
|
|
3898b1b4e
capabilities: imp...
|
572 |
unsigned long arg4, unsigned long arg5, long *rc_p) |
|
1da177e4c
Linux-2.6.12-rc2
|
573 |
{
|
|
8cdbc2b98
capabilities: add...
|
574 575 576 577 578 579 580 581 582 583 584 585 586 587 588 589 590 591 592 593 594 |
switch (option) {
case PR_CAPBSET_READ:
*rc_p = (cap_valid(arg2) ? 1 : -EINVAL);
break;
case PR_GET_KEEPCAPS:
*rc_p = issecure(SECURE_KEEP_CAPS);
break;
case PR_SET_KEEPCAPS:
if (arg2 > 1)
*rc_p = -EINVAL;
else if (arg2)
current->securebits |= issecure_mask(SECURE_KEEP_CAPS);
else
current->securebits &=
~issecure_mask(SECURE_KEEP_CAPS);
break;
default:
return 0;
}
return 1;
|
|
1da177e4c
Linux-2.6.12-rc2
|
595 596 597 598 599 600 601 602 603 604 605 606 607 608 609 |
}
static void dummy_task_reparent_to_init (struct task_struct *p)
{
p->euid = p->fsuid = 0;
return;
}
static void dummy_task_to_inode(struct task_struct *p, struct inode *inode)
{ }
static int dummy_ipc_permission (struct kern_ipc_perm *ipcp, short flag)
{
return 0;
}
|
|
8a076191f
LSM: Introduce in...
|
610 611 612 613 |
static void dummy_ipc_getsecid(struct kern_ipc_perm *ipcp, u32 *secid)
{
*secid = 0;
}
|
|
1da177e4c
Linux-2.6.12-rc2
|
614 615 616 617 618 619 620 621 622 623 624 625 626 627 628 629 630 631 632 633 634 635 636 637 638 639 640 641 642 643 644 645 646 647 648 649 650 651 652 653 654 655 656 657 658 659 660 661 662 663 664 665 666 667 668 669 670 671 672 673 674 675 676 677 678 679 680 681 682 683 684 685 686 687 688 689 690 691 692 693 694 695 696 697 698 699 700 701 702 703 704 705 706 707 708 709 710 711 712 713 714 |
static int dummy_msg_msg_alloc_security (struct msg_msg *msg)
{
return 0;
}
static void dummy_msg_msg_free_security (struct msg_msg *msg)
{
return;
}
static int dummy_msg_queue_alloc_security (struct msg_queue *msq)
{
return 0;
}
static void dummy_msg_queue_free_security (struct msg_queue *msq)
{
return;
}
static int dummy_msg_queue_associate (struct msg_queue *msq,
int msqflg)
{
return 0;
}
static int dummy_msg_queue_msgctl (struct msg_queue *msq, int cmd)
{
return 0;
}
static int dummy_msg_queue_msgsnd (struct msg_queue *msq, struct msg_msg *msg,
int msgflg)
{
return 0;
}
static int dummy_msg_queue_msgrcv (struct msg_queue *msq, struct msg_msg *msg,
struct task_struct *target, long type,
int mode)
{
return 0;
}
static int dummy_shm_alloc_security (struct shmid_kernel *shp)
{
return 0;
}
static void dummy_shm_free_security (struct shmid_kernel *shp)
{
return;
}
static int dummy_shm_associate (struct shmid_kernel *shp, int shmflg)
{
return 0;
}
static int dummy_shm_shmctl (struct shmid_kernel *shp, int cmd)
{
return 0;
}
static int dummy_shm_shmat (struct shmid_kernel *shp, char __user *shmaddr,
int shmflg)
{
return 0;
}
static int dummy_sem_alloc_security (struct sem_array *sma)
{
return 0;
}
static void dummy_sem_free_security (struct sem_array *sma)
{
return;
}
static int dummy_sem_associate (struct sem_array *sma, int semflg)
{
return 0;
}
static int dummy_sem_semctl (struct sem_array *sma, int cmd)
{
return 0;
}
static int dummy_sem_semop (struct sem_array *sma,
struct sembuf *sops, unsigned nsops, int alter)
{
return 0;
}
static int dummy_netlink_send (struct sock *sk, struct sk_buff *skb)
{
NETLINK_CB(skb).eff_cap = current->cap_effective;
return 0;
}
|
c7bdb545d
[NETLINK]: Encaps...
|
715 |
static int dummy_netlink_recv (struct sk_buff *skb, int cap) |
|
1da177e4c
Linux-2.6.12-rc2
|
716 |
{
|
|
c7bdb545d
[NETLINK]: Encaps...
|
717 |
if (!cap_raised (NETLINK_CB (skb).eff_cap, cap)) |
|
1da177e4c
Linux-2.6.12-rc2
|
718 719 720 721 722 723 724 725 726 727 728 729 730 731 732 733 734 735 736 737 738 739 740 |
return -EPERM;
return 0;
}
#ifdef CONFIG_SECURITY_NETWORK
static int dummy_unix_stream_connect (struct socket *sock,
struct socket *other,
struct sock *newsk)
{
return 0;
}
static int dummy_unix_may_send (struct socket *sock,
struct socket *other)
{
return 0;
}
static int dummy_socket_create (int family, int type,
int protocol, int kern)
{
return 0;
}
|
7420ed23a
[NetLabel]: SELin...
|
741 742 |
static int dummy_socket_post_create (struct socket *sock, int family, int type, int protocol, int kern) |
|
1da177e4c
Linux-2.6.12-rc2
|
743 |
{
|
|
7420ed23a
[NetLabel]: SELin...
|
744 |
return 0; |
|
1da177e4c
Linux-2.6.12-rc2
|
745 746 747 748 749 750 751 752 753 754 755 756 757 758 759 760 761 762 763 764 765 766 767 768 769 770 771 772 773 774 775 776 777 778 779 780 781 782 783 784 785 786 787 788 789 790 791 792 793 794 795 796 797 798 799 800 801 802 803 804 805 806 807 808 809 810 811 812 813 814 815 |
}
static int dummy_socket_bind (struct socket *sock, struct sockaddr *address,
int addrlen)
{
return 0;
}
static int dummy_socket_connect (struct socket *sock, struct sockaddr *address,
int addrlen)
{
return 0;
}
static int dummy_socket_listen (struct socket *sock, int backlog)
{
return 0;
}
static int dummy_socket_accept (struct socket *sock, struct socket *newsock)
{
return 0;
}
static void dummy_socket_post_accept (struct socket *sock,
struct socket *newsock)
{
return;
}
static int dummy_socket_sendmsg (struct socket *sock, struct msghdr *msg,
int size)
{
return 0;
}
static int dummy_socket_recvmsg (struct socket *sock, struct msghdr *msg,
int size, int flags)
{
return 0;
}
static int dummy_socket_getsockname (struct socket *sock)
{
return 0;
}
static int dummy_socket_getpeername (struct socket *sock)
{
return 0;
}
static int dummy_socket_setsockopt (struct socket *sock, int level, int optname)
{
return 0;
}
static int dummy_socket_getsockopt (struct socket *sock, int level, int optname)
{
return 0;
}
static int dummy_socket_shutdown (struct socket *sock, int how)
{
return 0;
}
static int dummy_socket_sock_rcv_skb (struct sock *sk, struct sk_buff *skb)
{
return 0;
}
|
2c7946a7b
[SECURITY]: TCP/U...
|
816 817 818 819 820 |
static int dummy_socket_getpeersec_stream(struct socket *sock, char __user *optval,
int __user *optlen, unsigned len)
{
return -ENOPROTOOPT;
}
|
|
dc49c1f94
[AF_UNIX]: Kernel...
|
821 |
static int dummy_socket_getpeersec_dgram(struct socket *sock, struct sk_buff *skb, u32 *secid) |
|
1da177e4c
Linux-2.6.12-rc2
|
822 823 824 |
{
return -ENOPROTOOPT;
}
|
|
7d877f3bd
[PATCH] gfp_t: net/*
|
825 |
static inline int dummy_sk_alloc_security (struct sock *sk, int family, gfp_t priority) |
|
1da177e4c
Linux-2.6.12-rc2
|
826 827 828 829 830 831 832 |
{
return 0;
}
static inline void dummy_sk_free_security (struct sock *sk)
{
}
|
df71837d5
[LSM-IPSec]: Secu...
|
833 |
|
|
892c141e6
[MLSXFRM]: Add se...
|
834 835 836 |
static inline void dummy_sk_clone_security (const struct sock *sk, struct sock *newsk)
{
}
|
|
beb8d13be
[MLSXFRM]: Add fl...
|
837 |
static inline void dummy_sk_getsecid(struct sock *sk, u32 *secid) |
|
df71837d5
[LSM-IPSec]: Secu...
|
838 |
{
|
|
df71837d5
[LSM-IPSec]: Secu...
|
839 |
} |
|
4237c75c0
[MLSXFRM]: Auto-l...
|
840 841 842 843 844 845 846 847 848 849 850 851 852 853 854 |
static inline void dummy_sock_graft(struct sock* sk, struct socket *parent)
{
}
static inline int dummy_inet_conn_request(struct sock *sk,
struct sk_buff *skb, struct request_sock *req)
{
return 0;
}
static inline void dummy_inet_csk_clone(struct sock *newsk,
const struct request_sock *req)
{
}
|
|
6b877699c
SELinux: Return c...
|
855 856 857 858 |
static inline void dummy_inet_conn_established(struct sock *sk,
struct sk_buff *skb)
{
}
|
|
4237c75c0
[MLSXFRM]: Auto-l...
|
859 860 861 862 |
static inline void dummy_req_classify_flow(const struct request_sock *req,
struct flowi *fl)
{
}
|
|
1da177e4c
Linux-2.6.12-rc2
|
863 |
#endif /* CONFIG_SECURITY_NETWORK */ |
|
df71837d5
[LSM-IPSec]: Secu...
|
864 |
#ifdef CONFIG_SECURITY_NETWORK_XFRM |
03e1ad7b5
LSM: Make the Lab...
|
865 866 |
static int dummy_xfrm_policy_alloc_security(struct xfrm_sec_ctx **ctxp, struct xfrm_user_sec_ctx *sec_ctx) |
|
df71837d5
[LSM-IPSec]: Secu...
|
867 868 869 |
{
return 0;
}
|
|
03e1ad7b5
LSM: Make the Lab...
|
870 871 |
static inline int dummy_xfrm_policy_clone_security(struct xfrm_sec_ctx *old_ctx, struct xfrm_sec_ctx **new_ctxp) |
|
df71837d5
[LSM-IPSec]: Secu...
|
872 873 874 |
{
return 0;
}
|
|
03e1ad7b5
LSM: Make the Lab...
|
875 |
static void dummy_xfrm_policy_free_security(struct xfrm_sec_ctx *ctx) |
|
df71837d5
[LSM-IPSec]: Secu...
|
876 877 |
{
}
|
|
03e1ad7b5
LSM: Make the Lab...
|
878 |
static int dummy_xfrm_policy_delete_security(struct xfrm_sec_ctx *ctx) |
|
c8c05a8ee
[LSM-IPsec]: SELi...
|
879 880 881 |
{
return 0;
}
|
|
e0d1caa7b
[MLSXFRM]: Flow b...
|
882 |
static int dummy_xfrm_state_alloc_security(struct xfrm_state *x, |
|
c1a856c96
SELinux: Various ...
|
883 |
struct xfrm_user_sec_ctx *sec_ctx, u32 secid) |
|
df71837d5
[LSM-IPSec]: Secu...
|
884 885 886 887 888 889 890 |
{
return 0;
}
static void dummy_xfrm_state_free_security(struct xfrm_state *x)
{
}
|
|
c8c05a8ee
[LSM-IPsec]: SELi...
|
891 892 893 894 |
static int dummy_xfrm_state_delete_security(struct xfrm_state *x)
{
return 0;
}
|
|
03e1ad7b5
LSM: Make the Lab...
|
895 896 |
static int dummy_xfrm_policy_lookup(struct xfrm_sec_ctx *ctx, u32 sk_sid, u8 dir) |
|
df71837d5
[LSM-IPSec]: Secu...
|
897 898 899 |
{
return 0;
}
|
|
e0d1caa7b
[MLSXFRM]: Flow b...
|
900 901 902 903 904 905 |
static int dummy_xfrm_state_pol_flow_match(struct xfrm_state *x,
struct xfrm_policy *xp, struct flowi *fl)
{
return 1;
}
|
|
beb8d13be
[MLSXFRM]: Add fl...
|
906 |
static int dummy_xfrm_decode_session(struct sk_buff *skb, u32 *fl, int ckall) |
|
e0d1caa7b
[MLSXFRM]: Flow b...
|
907 908 909 |
{
return 0;
}
|
|
df71837d5
[LSM-IPSec]: Secu...
|
910 |
#endif /* CONFIG_SECURITY_NETWORK_XFRM */ |
|
1da177e4c
Linux-2.6.12-rc2
|
911 912 913 914 |
static int dummy_register_security (const char *name, struct security_operations *ops)
{
return -EINVAL;
}
|
|
1da177e4c
Linux-2.6.12-rc2
|
915 916 917 918 |
static void dummy_d_instantiate (struct dentry *dentry, struct inode *inode)
{
return;
}
|
04ff97086
[PATCH] sanitize ...
|
919 |
static int dummy_getprocattr(struct task_struct *p, char *name, char **value) |
|
1da177e4c
Linux-2.6.12-rc2
|
920 921 922 923 924 925 926 927 |
{
return -EINVAL;
}
static int dummy_setprocattr(struct task_struct *p, char *name, void *value, size_t size)
{
return -EINVAL;
}
|
|
dc49c1f94
[AF_UNIX]: Kernel...
|
928 929 930 931 |
static int dummy_secid_to_secctx(u32 secid, char **secdata, u32 *seclen)
{
return -EOPNOTSUPP;
}
|
|
7bf570dc8
Security: Make se...
|
932 |
static int dummy_secctx_to_secid(const char *secdata, u32 seclen, u32 *secid) |
|
63cb34492
security: add a s...
|
933 934 935 |
{
return -EOPNOTSUPP;
}
|
|
dc49c1f94
[AF_UNIX]: Kernel...
|
936 937 938 |
static void dummy_release_secctx(char *secdata, u32 seclen)
{
}
|
|
29db91906
[PATCH] Keys: Add...
|
939 |
#ifdef CONFIG_KEYS |
|
7e047ef5f
[PATCH] keys: sor...
|
940 941 |
static inline int dummy_key_alloc(struct key *key, struct task_struct *ctx, unsigned long flags) |
|
29db91906
[PATCH] Keys: Add...
|
942 943 944 945 946 947 948 949 950 951 952 953 954 955 |
{
return 0;
}
static inline void dummy_key_free(struct key *key)
{
}
static inline int dummy_key_permission(key_ref_t key_ref,
struct task_struct *context,
key_perm_t perm)
{
return 0;
}
|
|
70a5bb72b
keys: add keyctl ...
|
956 957 958 959 960 961 |
static int dummy_key_getsecurity(struct key *key, char **_buffer)
{
*_buffer = NULL;
return 0;
}
|
|
29db91906
[PATCH] Keys: Add...
|
962 |
#endif /* CONFIG_KEYS */ |
|
1da177e4c
Linux-2.6.12-rc2
|
963 |
|
|
03d37d25e
LSM/Audit: Introd...
|
964 965 966 967 968 969 970 971 972 973 974 975 976 977 978 979 980 981 982 983 984 985 986 |
#ifdef CONFIG_AUDIT
static inline int dummy_audit_rule_init(u32 field, u32 op, char *rulestr,
void **lsmrule)
{
return 0;
}
static inline int dummy_audit_rule_known(struct audit_krule *krule)
{
return 0;
}
static inline int dummy_audit_rule_match(u32 secid, u32 field, u32 op,
void *lsmrule,
struct audit_context *actx)
{
return 0;
}
static inline void dummy_audit_rule_free(void *lsmrule)
{ }
#endif /* CONFIG_AUDIT */
|
|
076c54c5b
Security: Introdu...
|
987 988 989 |
struct security_operations dummy_security_ops = {
.name = "dummy",
};
|
|
1da177e4c
Linux-2.6.12-rc2
|
990 991 992 993 994 995 996 997 998 999 1000 1001 1002 1003 1004 1005 1006 1007 1008 1009 1010 1011 1012 1013 1014 1015 1016 1017 1018 1019 1020 1021 1022 1023 1024 1025 1026 1027 1028 1029 1030 1031 1032 |
#define set_to_dummy_if_null(ops, function) \
do { \
if (!ops->function) { \
ops->function = dummy_##function; \
pr_debug("Had to override the " #function \
" security operation with the dummy one.
");\
} \
} while (0)
void security_fixup_ops (struct security_operations *ops)
{
set_to_dummy_if_null(ops, ptrace);
set_to_dummy_if_null(ops, capget);
set_to_dummy_if_null(ops, capset_check);
set_to_dummy_if_null(ops, capset_set);
set_to_dummy_if_null(ops, acct);
set_to_dummy_if_null(ops, capable);
set_to_dummy_if_null(ops, quotactl);
set_to_dummy_if_null(ops, quota_on);
set_to_dummy_if_null(ops, sysctl);
set_to_dummy_if_null(ops, syslog);
set_to_dummy_if_null(ops, settime);
set_to_dummy_if_null(ops, vm_enough_memory);
set_to_dummy_if_null(ops, bprm_alloc_security);
set_to_dummy_if_null(ops, bprm_free_security);
set_to_dummy_if_null(ops, bprm_apply_creds);
set_to_dummy_if_null(ops, bprm_post_apply_creds);
set_to_dummy_if_null(ops, bprm_set_security);
set_to_dummy_if_null(ops, bprm_check_security);
set_to_dummy_if_null(ops, bprm_secureexec);
set_to_dummy_if_null(ops, sb_alloc_security);
set_to_dummy_if_null(ops, sb_free_security);
set_to_dummy_if_null(ops, sb_copy_data);
set_to_dummy_if_null(ops, sb_kern_mount);
set_to_dummy_if_null(ops, sb_statfs);
set_to_dummy_if_null(ops, sb_mount);
set_to_dummy_if_null(ops, sb_check_sb);
set_to_dummy_if_null(ops, sb_umount);
set_to_dummy_if_null(ops, sb_umount_close);
set_to_dummy_if_null(ops, sb_umount_busy);
set_to_dummy_if_null(ops, sb_post_remount);
|
|
1da177e4c
Linux-2.6.12-rc2
|
1033 1034 1035 |
set_to_dummy_if_null(ops, sb_post_addmount); set_to_dummy_if_null(ops, sb_pivotroot); set_to_dummy_if_null(ops, sb_post_pivotroot); |
|
c9180a57a
Security: add get...
|
1036 1037 1038 |
set_to_dummy_if_null(ops, sb_get_mnt_opts); set_to_dummy_if_null(ops, sb_set_mnt_opts); set_to_dummy_if_null(ops, sb_clone_mnt_opts); |
|
e00075298
LSM/SELinux: Inte...
|
1039 |
set_to_dummy_if_null(ops, sb_parse_opts_str); |
|
1da177e4c
Linux-2.6.12-rc2
|
1040 1041 |
set_to_dummy_if_null(ops, inode_alloc_security); set_to_dummy_if_null(ops, inode_free_security); |
|
5e41ff9e0
[PATCH] security:...
|
1042 |
set_to_dummy_if_null(ops, inode_init_security); |
|
1da177e4c
Linux-2.6.12-rc2
|
1043 |
set_to_dummy_if_null(ops, inode_create); |
|
1da177e4c
Linux-2.6.12-rc2
|
1044 |
set_to_dummy_if_null(ops, inode_link); |
|
1da177e4c
Linux-2.6.12-rc2
|
1045 1046 |
set_to_dummy_if_null(ops, inode_unlink); set_to_dummy_if_null(ops, inode_symlink); |
|
1da177e4c
Linux-2.6.12-rc2
|
1047 |
set_to_dummy_if_null(ops, inode_mkdir); |
|
1da177e4c
Linux-2.6.12-rc2
|
1048 1049 |
set_to_dummy_if_null(ops, inode_rmdir); set_to_dummy_if_null(ops, inode_mknod); |
|
1da177e4c
Linux-2.6.12-rc2
|
1050 |
set_to_dummy_if_null(ops, inode_rename); |
|
1da177e4c
Linux-2.6.12-rc2
|
1051 1052 1053 1054 1055 1056 1057 1058 1059 1060 1061 |
set_to_dummy_if_null(ops, inode_readlink); set_to_dummy_if_null(ops, inode_follow_link); set_to_dummy_if_null(ops, inode_permission); set_to_dummy_if_null(ops, inode_setattr); set_to_dummy_if_null(ops, inode_getattr); set_to_dummy_if_null(ops, inode_delete); set_to_dummy_if_null(ops, inode_setxattr); set_to_dummy_if_null(ops, inode_post_setxattr); set_to_dummy_if_null(ops, inode_getxattr); set_to_dummy_if_null(ops, inode_listxattr); set_to_dummy_if_null(ops, inode_removexattr); |
|
b53767719
Implement file po...
|
1062 1063 |
set_to_dummy_if_null(ops, inode_need_killpriv); set_to_dummy_if_null(ops, inode_killpriv); |
|
1da177e4c
Linux-2.6.12-rc2
|
1064 1065 1066 |
set_to_dummy_if_null(ops, inode_getsecurity); set_to_dummy_if_null(ops, inode_setsecurity); set_to_dummy_if_null(ops, inode_listsecurity); |
|
8a076191f
LSM: Introduce in...
|
1067 |
set_to_dummy_if_null(ops, inode_getsecid); |
|
1da177e4c
Linux-2.6.12-rc2
|
1068 1069 1070 1071 1072 1073 1074 1075 1076 1077 1078 |
set_to_dummy_if_null(ops, file_permission); set_to_dummy_if_null(ops, file_alloc_security); set_to_dummy_if_null(ops, file_free_security); set_to_dummy_if_null(ops, file_ioctl); set_to_dummy_if_null(ops, file_mmap); set_to_dummy_if_null(ops, file_mprotect); set_to_dummy_if_null(ops, file_lock); set_to_dummy_if_null(ops, file_fcntl); set_to_dummy_if_null(ops, file_set_fowner); set_to_dummy_if_null(ops, file_send_sigiotask); set_to_dummy_if_null(ops, file_receive); |
|
788e7dd4c
SELinux: Improve ...
|
1079 |
set_to_dummy_if_null(ops, dentry_open); |
|
1da177e4c
Linux-2.6.12-rc2
|
1080 1081 1082 1083 1084 1085 1086 1087 1088 |
set_to_dummy_if_null(ops, task_create); set_to_dummy_if_null(ops, task_alloc_security); set_to_dummy_if_null(ops, task_free_security); set_to_dummy_if_null(ops, task_setuid); set_to_dummy_if_null(ops, task_post_setuid); set_to_dummy_if_null(ops, task_setgid); set_to_dummy_if_null(ops, task_setpgid); set_to_dummy_if_null(ops, task_getpgid); set_to_dummy_if_null(ops, task_getsid); |
|
f9008e4c5
[PATCH] SELinux: ...
|
1089 |
set_to_dummy_if_null(ops, task_getsecid); |
|
1da177e4c
Linux-2.6.12-rc2
|
1090 1091 |
set_to_dummy_if_null(ops, task_setgroups); set_to_dummy_if_null(ops, task_setnice); |
|
03e680606
[PATCH] lsm: add ...
|
1092 |
set_to_dummy_if_null(ops, task_setioprio); |
|
a1836a42d
[PATCH] SELinux: ...
|
1093 |
set_to_dummy_if_null(ops, task_getioprio); |
|
1da177e4c
Linux-2.6.12-rc2
|
1094 1095 1096 |
set_to_dummy_if_null(ops, task_setrlimit); set_to_dummy_if_null(ops, task_setscheduler); set_to_dummy_if_null(ops, task_getscheduler); |
|
35601547b
[PATCH] SELinux: ...
|
1097 |
set_to_dummy_if_null(ops, task_movememory); |
|
1da177e4c
Linux-2.6.12-rc2
|
1098 1099 1100 1101 1102 1103 |
set_to_dummy_if_null(ops, task_wait); set_to_dummy_if_null(ops, task_kill); set_to_dummy_if_null(ops, task_prctl); set_to_dummy_if_null(ops, task_reparent_to_init); set_to_dummy_if_null(ops, task_to_inode); set_to_dummy_if_null(ops, ipc_permission); |
|
8a076191f
LSM: Introduce in...
|
1104 |
set_to_dummy_if_null(ops, ipc_getsecid); |
|
1da177e4c
Linux-2.6.12-rc2
|
1105 1106 1107 1108 1109 1110 1111 1112 1113 1114 1115 1116 1117 1118 1119 1120 1121 1122 1123 1124 1125 |
set_to_dummy_if_null(ops, msg_msg_alloc_security); set_to_dummy_if_null(ops, msg_msg_free_security); set_to_dummy_if_null(ops, msg_queue_alloc_security); set_to_dummy_if_null(ops, msg_queue_free_security); set_to_dummy_if_null(ops, msg_queue_associate); set_to_dummy_if_null(ops, msg_queue_msgctl); set_to_dummy_if_null(ops, msg_queue_msgsnd); set_to_dummy_if_null(ops, msg_queue_msgrcv); set_to_dummy_if_null(ops, shm_alloc_security); set_to_dummy_if_null(ops, shm_free_security); set_to_dummy_if_null(ops, shm_associate); set_to_dummy_if_null(ops, shm_shmctl); set_to_dummy_if_null(ops, shm_shmat); set_to_dummy_if_null(ops, sem_alloc_security); set_to_dummy_if_null(ops, sem_free_security); set_to_dummy_if_null(ops, sem_associate); set_to_dummy_if_null(ops, sem_semctl); set_to_dummy_if_null(ops, sem_semop); set_to_dummy_if_null(ops, netlink_send); set_to_dummy_if_null(ops, netlink_recv); set_to_dummy_if_null(ops, register_security); |
|
1da177e4c
Linux-2.6.12-rc2
|
1126 1127 1128 |
set_to_dummy_if_null(ops, d_instantiate); set_to_dummy_if_null(ops, getprocattr); set_to_dummy_if_null(ops, setprocattr); |
|
dc49c1f94
[AF_UNIX]: Kernel...
|
1129 |
set_to_dummy_if_null(ops, secid_to_secctx); |
|
63cb34492
security: add a s...
|
1130 |
set_to_dummy_if_null(ops, secctx_to_secid); |
|
dc49c1f94
[AF_UNIX]: Kernel...
|
1131 |
set_to_dummy_if_null(ops, release_secctx); |
|
1da177e4c
Linux-2.6.12-rc2
|
1132 1133 1134 1135 1136 1137 1138 1139 1140 1141 1142 1143 1144 1145 1146 1147 1148 1149 |
#ifdef CONFIG_SECURITY_NETWORK set_to_dummy_if_null(ops, unix_stream_connect); set_to_dummy_if_null(ops, unix_may_send); set_to_dummy_if_null(ops, socket_create); set_to_dummy_if_null(ops, socket_post_create); set_to_dummy_if_null(ops, socket_bind); set_to_dummy_if_null(ops, socket_connect); set_to_dummy_if_null(ops, socket_listen); set_to_dummy_if_null(ops, socket_accept); set_to_dummy_if_null(ops, socket_post_accept); set_to_dummy_if_null(ops, socket_sendmsg); set_to_dummy_if_null(ops, socket_recvmsg); set_to_dummy_if_null(ops, socket_getsockname); set_to_dummy_if_null(ops, socket_getpeername); set_to_dummy_if_null(ops, socket_setsockopt); set_to_dummy_if_null(ops, socket_getsockopt); set_to_dummy_if_null(ops, socket_shutdown); set_to_dummy_if_null(ops, socket_sock_rcv_skb); |
c841aa030
[SECURITY] getpee...
|
1150 1151 |
set_to_dummy_if_null(ops, socket_getpeersec_stream); set_to_dummy_if_null(ops, socket_getpeersec_dgram); |
|
1da177e4c
Linux-2.6.12-rc2
|
1152 1153 |
set_to_dummy_if_null(ops, sk_alloc_security); set_to_dummy_if_null(ops, sk_free_security); |
|
892c141e6
[MLSXFRM]: Add se...
|
1154 |
set_to_dummy_if_null(ops, sk_clone_security); |
|
beb8d13be
[MLSXFRM]: Add fl...
|
1155 |
set_to_dummy_if_null(ops, sk_getsecid); |
|
4237c75c0
[MLSXFRM]: Auto-l...
|
1156 1157 1158 |
set_to_dummy_if_null(ops, sock_graft); set_to_dummy_if_null(ops, inet_conn_request); set_to_dummy_if_null(ops, inet_csk_clone); |
|
6b877699c
SELinux: Return c...
|
1159 |
set_to_dummy_if_null(ops, inet_conn_established); |
|
4237c75c0
[MLSXFRM]: Auto-l...
|
1160 |
set_to_dummy_if_null(ops, req_classify_flow); |
|
df71837d5
[LSM-IPSec]: Secu...
|
1161 1162 1163 1164 1165 |
#endif /* CONFIG_SECURITY_NETWORK */ #ifdef CONFIG_SECURITY_NETWORK_XFRM set_to_dummy_if_null(ops, xfrm_policy_alloc_security); set_to_dummy_if_null(ops, xfrm_policy_clone_security); set_to_dummy_if_null(ops, xfrm_policy_free_security); |
|
c8c05a8ee
[LSM-IPsec]: SELi...
|
1166 |
set_to_dummy_if_null(ops, xfrm_policy_delete_security); |
|
df71837d5
[LSM-IPSec]: Secu...
|
1167 1168 |
set_to_dummy_if_null(ops, xfrm_state_alloc_security); set_to_dummy_if_null(ops, xfrm_state_free_security); |
|
c8c05a8ee
[LSM-IPsec]: SELi...
|
1169 |
set_to_dummy_if_null(ops, xfrm_state_delete_security); |
|
df71837d5
[LSM-IPSec]: Secu...
|
1170 |
set_to_dummy_if_null(ops, xfrm_policy_lookup); |
|
e0d1caa7b
[MLSXFRM]: Flow b...
|
1171 |
set_to_dummy_if_null(ops, xfrm_state_pol_flow_match); |
|
e0d1caa7b
[MLSXFRM]: Flow b...
|
1172 |
set_to_dummy_if_null(ops, xfrm_decode_session); |
|
df71837d5
[LSM-IPSec]: Secu...
|
1173 |
#endif /* CONFIG_SECURITY_NETWORK_XFRM */ |
|
29db91906
[PATCH] Keys: Add...
|
1174 1175 1176 1177 |
#ifdef CONFIG_KEYS set_to_dummy_if_null(ops, key_alloc); set_to_dummy_if_null(ops, key_free); set_to_dummy_if_null(ops, key_permission); |
|
70a5bb72b
keys: add keyctl ...
|
1178 |
set_to_dummy_if_null(ops, key_getsecurity); |
|
29db91906
[PATCH] Keys: Add...
|
1179 |
#endif /* CONFIG_KEYS */ |
|
03d37d25e
LSM/Audit: Introd...
|
1180 1181 1182 1183 1184 1185 |
#ifdef CONFIG_AUDIT set_to_dummy_if_null(ops, audit_rule_init); set_to_dummy_if_null(ops, audit_rule_known); set_to_dummy_if_null(ops, audit_rule_match); set_to_dummy_if_null(ops, audit_rule_free); #endif |
|
1da177e4c
Linux-2.6.12-rc2
|
1186 |
} |