函数逻辑报告

Linux Kernel

v5.5.9

Brick Technologies Co., Ltd

Source Code:security\selinux\hooks.c Create Date:2022-07-27 20:27:42
Last Modify:2020-03-12 14:18:49 Copyright©Brick
首页 函数Tree
注解内核,赢得工具下载SCCTEnglish

函数名称:Check whether a task has a particular permission to an inode.The 'adp' parameter is optional and allows other auditdata to be passed (e.g. the dentry).

函数原型:static int inode_has_perm(const struct cred *cred, struct inode *inode, unsigned int perms, struct common_audit_data *adp)

返回类型:int

参数:

类型参数名称
const struct cred *cred
struct inode *inode
unsigned intperms
struct common_audit_data *adp
1676  validate_creds(cred)
1678  如果此条件成立可能性小(为编译器优化)(IS_PRIVATE(inode))则返回:0
1681  sid等于get the security ID of a set of credentials
1682  isec等于selinux_inode(inode)
1684  返回:avc_has_perm - Check permissions and perform any appropriate auditing
调用者
名称描述
dentry_has_permSame as inode_has_perm, but pass explicit audit data containingthe dentry to help the auditing code to more easily generate thepathname if needed.
path_has_permSame as inode_has_perm, but pass explicit audit data containingthe path to help the auditing code to more easily generate thepathname if needed.
file_path_has_permSame as path_has_perm, but uses the inode from the file struct.
file_has_permCheck whether a task can use an open file descriptor toaccess an inode in a given way. Check access to thedescriptor itself, and then use dentry_has_perm tocheck a particular permission to the file.Access to the descriptor is implicitly granted if it
selinux_mmap_file