€•      Œsphinx.addnodes”Œdocument”“”)”}”(Œ	rawsource”Œ ”Œchildren”]”(Œtranslations”ŒLanguagesNode”“”)”}”(hhh]”(h Œpending_xref”“”)”}”(hhh]”Œdocutils.nodes”ŒText”“”ŒChinese (Simplified)”…””}”Œparent”hsbaŒ
attributes”}”(Œids”]”Œclasses”]”Œnames”]”Œdupnames”]”Œbackrefs”]”Œ	refdomain”Œstd”Œreftype”Œdoc”Œ	reftarget”Œ,/translations/zh_CN/security/lsm-development”Œmodname”NŒ	classname”NŒrefexplicit”ˆuŒtagname”hhhubh)”}”(hhh]”hŒChinese (Traditional)”…””}”hh2sbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ,/translations/zh_TW/security/lsm-development”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒItalian”…””}”hhFsbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ,/translations/it_IT/security/lsm-development”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒJapanese”…””}”hhZsbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ,/translations/ja_JP/security/lsm-development”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒKorean”…””}”hhnsbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ,/translations/ko_KR/security/lsm-development”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒPortuguese (Brazilian)”…””}”hh‚sbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ,/translations/pt_BR/security/lsm-development”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒSpanish”…””}”hh–sbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ,/translations/sp_SP/security/lsm-development”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubeh}”(h]”h ]”h"]”h$]”h&]”Œcurrent_language”ŒEnglish”uh1h
hhŒ	_document”hŒsource”NŒline”NubhŒsection”“”)”}”(hhh]”(hŒtitle”“”)”}”(hŒ!Linux Security Module Development”h]”hŒ!Linux Security Module Development”…””}”(hh¼h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhh·h²hh³ŒF/var/lib/git/docbuild/linux/Documentation/security/lsm-development.rst”h´KubhŒ	paragraph”“”)”}”(hXÝ  Based on https://lore.kernel.org/r/20071026073721.618b4778@laptopd505.fenrus.org,
a new LSM is accepted into the kernel when its intent (a description of
what it tries to protect against and in what cases one would expect to
use it) has been appropriately documented in ``Documentation/admin-guide/LSM/``.
This allows an LSM's code to be easily compared to its goals, and so
that end users and distros can make a more informed decision about which
LSMs suit their requirements.”h]”(hŒ	Based on ”…””}”(hhÍh²hh³Nh´NubhŒ	reference”“”)”}”(hŒGhttps://lore.kernel.org/r/20071026073721.618b4778@laptopd505.fenrus.org”h]”hŒGhttps://lore.kernel.org/r/20071026073721.618b4778@laptopd505.fenrus.org”…””}”(hh×h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”Œrefuri”hÙuh1hÕhhÍubhŒ¾,
a new LSM is accepted into the kernel when its intent (a description of
what it tries to protect against and in what cases one would expect to
use it) has been appropriately documented in ”…””}”(hhÍh²hh³Nh´NubhŒliteral”“”)”}”(hŒ"``Documentation/admin-guide/LSM/``”h]”hŒDocumentation/admin-guide/LSM/”…””}”(hhìh²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhhÍubhŒ¯.
This allows an LSMâ€™s code to be easily compared to its goals, and so
that end users and distros can make a more informed decision about which
LSMs suit their requirements.”…””}”(hhÍh²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Khh·h²hubhÌ)”}”(hŒFor extensive documentation on the available LSM hook interfaces, please
see ``security/security.c`` and associated structures:”h]”(hŒMFor extensive documentation on the available LSM hook interfaces, please
see ”…””}”(hj  h²hh³Nh´Nubhë)”}”(hŒ``security/security.c``”h]”hŒsecurity/security.c”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj  ubhŒ and associated structures:”…””}”(hj  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Khh·h²hubh Œindex”“”)”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(Œsingle”Œ#security_free_mnt_opts (C function)”Œc.security_free_mnt_opts”hNt”auh1j$  hh·h²hh³Nh´Nubh Œdesc”“”)”}”(hhh]”(h Œdesc_signature”“”)”}”(hŒ-void security_free_mnt_opts (void **mnt_opts)”h]”h Œdesc_signature_line”“”)”}”(hŒ,void security_free_mnt_opts(void **mnt_opts)”h]”(h Œdesc_sig_keyword_type”“”)”}”(hŒvoid”h]”hŒvoid”…””}”(hjH  h²hh³Nh´Nubah}”(h]”h ]”Œkt”ah"]”h$]”h&]”uh1jF  hjB  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÄubh Œdesc_sig_space”“”)”}”(hŒ ”h]”hŒ ”…””}”(hjZ  h²hh³Nh´Nubah}”(h]”h ]”Œw”ah"]”h$]”h&]”uh1jX  hjB  h²hh³jW  h´MÄubh Œ	desc_name”“”)”}”(hŒsecurity_free_mnt_opts”h]”h Œdesc_sig_name”“”)”}”(hŒsecurity_free_mnt_opts”h]”hŒsecurity_free_mnt_opts”…””}”(hjq  h²hh³Nh´Nubah}”(h]”h ]”Œn”ah"]”h$]”h&]”uh1jo  hjk  ubah}”(h]”h ]”(Œsig-name”Œdescname”eh"]”h$]”h&]”Œ	xml:space”Œpreserve”uh1ji  hjB  h²hh³jW  h´MÄubh Œdesc_parameterlist”“”)”}”(hŒ(void **mnt_opts)”h]”h Œdesc_parameter”“”)”}”(hŒvoid **mnt_opts”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hj–  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj’  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¤  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj’  ubh Œdesc_sig_punctuation”“”)”}”(hŒ*”h]”hŒ*”…””}”(hj´  h²hh³Nh´Nubah}”(h]”h ]”Œp”ah"]”h$]”h&]”uh1j²  hj’  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjÃ  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj’  ubjp  )”}”(hŒmnt_opts”h]”hŒmnt_opts”…””}”(hjÐ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj’  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjŒ  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjB  h²hh³jW  h´MÄubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  Œadd_permalink”ˆuh1j@  Œsphinx_line_type”Œ
declarator”hj<  h²hh³jW  h´MÄubah}”(h]”j3  ah ]”(Œsig”Œ
sig-object”eh"]”h$]”h&]”Œis_multiline”ˆŒ
_toc_parts”)Œ	_toc_name”huh1j:  h³jW  h´MÄhj7  h²hubh Œdesc_content”“”)”}”(hhh]”hÌ)”}”(hŒ)Free memory associated with mount options”h]”hŒ)Free memory associated with mount options”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÄhj  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj7  h²hh³jW  h´MÄubeh}”(h]”h ]”(Œc”Œfunction”eh"]”h$]”h&]”Œdomain”j  Œobjtype”j  Œdesctype”j  Œnoindex”‰Œnoindexentry”‰Œnocontentsentry”‰uh1j5  h²hhh·h³Nh´NubhŒ	container”“”)”}”(hŒ|**Parameters**

``void **mnt_opts``
  LSM processed mount options

**Description**

Free memory associated with **mnt_ops**.”h]”(hÌ)”}”(hŒ**Parameters**”h]”hŒstrong”“”)”}”(hj/  h]”hŒ
Parameters”…””}”(hj3  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj-  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÈhj)  ubhŒdefinition_list”“”)”}”(hhh]”hŒdefinition_list_item”“”)”}”(hŒ0``void **mnt_opts``
LSM processed mount options
”h]”(hŒterm”“”)”}”(hŒ``void **mnt_opts``”h]”hë)”}”(hjV  h]”hŒvoid **mnt_opts”…””}”(hjX  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjT  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÅhjN  ubhŒ
definition”“”)”}”(hhh]”hÌ)”}”(hŒLSM processed mount options”h]”hŒLSM processed mount options”…””}”(hjq  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jk  h´MÅhjn  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjN  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jk  h´MÅhjI  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj)  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj“  h]”hŒDescription”…””}”(hj•  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj‘  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÇhj)  ubhÌ)”}”(hŒ(Free memory associated with **mnt_ops**.”h]”(hŒFree memory associated with ”…””}”(hj©  h²hh³Nh´Nubj2  )”}”(hŒ**mnt_ops**”h]”hŒmnt_ops”…””}”(hj±  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj©  ubhŒ.”…””}”(hj©  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÆhj)  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ%security_sb_eat_lsm_opts (C function)”Œc.security_sb_eat_lsm_opts”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ=int security_sb_eat_lsm_opts (char *options, void **mnt_opts)”h]”jA  )”}”(hŒ<int security_sb_eat_lsm_opts(char *options, void **mnt_opts)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjê  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjæ  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÓubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjù  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjæ  h²hh³jø  h´MÓubjj  )”}”(hŒsecurity_sb_eat_lsm_opts”h]”jp  )”}”(hŒsecurity_sb_eat_lsm_opts”h]”hŒsecurity_sb_eat_lsm_opts”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjæ  h²hh³jø  h´MÓubj‹  )”}”(hŒ (char *options, void **mnt_opts)”h]”(j‘  )”}”(hŒchar *options”h]”(jG  )”}”(hŒchar”h]”hŒchar”…””}”(hj'  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj#  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj5  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj#  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjC  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj#  ubjp  )”}”(hŒoptions”h]”hŒoptions”…””}”(hjP  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj#  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj  ubj‘  )”}”(hŒvoid **mnt_opts”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hji  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hje  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjw  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hje  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj…  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hje  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj’  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hje  ubjp  )”}”(hŒmnt_opts”h]”hŒmnt_opts”…””}”(hjŸ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hje  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjæ  h²hh³jø  h´MÓubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjâ  h²hh³jø  h´MÓubah}”(h]”jÝ  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jø  h´MÓhjß  h²hubj   )”}”(hhh]”hÌ)”}”(hŒConsume LSM mount options”h]”hŒConsume LSM mount options”…””}”(hjÉ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÓhjÆ  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjß  h²hh³jø  h´MÓubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  já  j#  já  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒë**Parameters**

``char *options``
  mount options

``void **mnt_opts``
  LSM processed mount options

**Description**

Eat (scan **options**) and save them in **mnt_opts**.

**Return**

Returns 0 on success, negative values on failure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjë  h]”hŒ
Parameters”…””}”(hjí  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjé  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M×hjå  ubjH  )”}”(hhh]”(jM  )”}”(hŒ ``char *options``
mount options
”h]”(jS  )”}”(hŒ``char *options``”h]”hë)”}”(hj
  h]”hŒchar *options”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÔhj  ubjm  )”}”(hhh]”hÌ)”}”(hŒmount options”h]”hŒmount options”…””}”(hj#  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j  h´MÔhj   ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j  h´MÔhj  ubjM  )”}”(hŒ0``void **mnt_opts``
LSM processed mount options
”h]”(jS  )”}”(hŒ``void **mnt_opts``”h]”hë)”}”(hjC  h]”hŒvoid **mnt_opts”…””}”(hjE  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjA  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÕhj=  ubjm  )”}”(hhh]”hÌ)”}”(hŒLSM processed mount options”h]”hŒLSM processed mount options”…””}”(hj\  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jX  h´MÕhjY  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj=  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jX  h´MÕhj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjå  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj~  h]”hŒDescription”…””}”(hj€  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj|  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M×hjå  ubhÌ)”}”(hŒ5Eat (scan **options**) and save them in **mnt_opts**.”h]”(hŒ
Eat (scan ”…””}”(hj”  h²hh³Nh´Nubj2  )”}”(hŒ**options**”h]”hŒoptions”…””}”(hjœ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj”  ubhŒ) and save them in ”…””}”(hj”  h²hh³Nh´Nubj2  )”}”(hŒ**mnt_opts**”h]”hŒmnt_opts”…””}”(hj®  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj”  ubhŒ.”…””}”(hj”  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÖhjå  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjÉ  h]”hŒReturn”…””}”(hjË  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÇ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MØhjå  ubhÌ)”}”(hŒ1Returns 0 on success, negative values on failure.”h]”hŒ1Returns 0 on success, negative values on failure.”…””}”(hjß  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÙhjå  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ(security_sb_mnt_opts_compat (C function)”Œc.security_sb_mnt_opts_compat”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒHint security_sb_mnt_opts_compat (struct super_block *sb, void *mnt_opts)”h]”jA  )”}”(hŒGint security_sb_mnt_opts_compat(struct super_block *sb, void *mnt_opts)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj
  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MâubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj
  h²hh³j  h´Mâubjj  )”}”(hŒsecurity_sb_mnt_opts_compat”h]”jp  )”}”(hŒsecurity_sb_mnt_opts_compat”h]”hŒsecurity_sb_mnt_opts_compat”…””}”(hj/  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj+  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj
  h²hh³j  h´Mâubj‹  )”}”(hŒ((struct super_block *sb, void *mnt_opts)”h]”(j‘  )”}”(hŒstruct super_block *sb”h]”(h Œdesc_sig_keyword”“”)”}”(hŒstruct”h]”hŒstruct”…””}”(hjM  h²hh³Nh´Nubah}”(h]”h ]”Œk”ah"]”h$]”h&]”uh1jK  hjG  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj\  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjG  ubh)”}”(hhh]”jp  )”}”(hŒsuper_block”h]”hŒsuper_block”…””}”(hjm  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjj  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”Œ
identifier”Œ	reftarget”jo  Œmodname”NŒ	classname”NŒc:parent_key”Œsphinx.domains.c”Œ	LookupKey”“”)”}”Œdata”]”jˆ  ŒASTIdentifier”“”)”}”jƒ  j1  sbŒc.security_sb_mnt_opts_compat”†”asbuh1hhjG  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj•  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjG  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj£  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjG  ubjp  )”}”(hŒsb”h]”hŒsb”…””}”(hj°  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjG  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjC  ubj‘  )”}”(hŒvoid *mnt_opts”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjÉ  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÅ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj×  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÅ  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjå  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjÅ  ubjp  )”}”(hŒmnt_opts”h]”hŒmnt_opts”…””}”(hjò  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÅ  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjC  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj
  h²hh³j  h´Mâubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj  h²hh³j  h´Mâubah}”(h]”j  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j  h´Mâhj  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ&Check if new mount options are allowed”h]”hŒ&Check if new mount options are allowed”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mâhj  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj  h²hh³j  h´Mâubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j4  j#  j4  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hXA  **Parameters**

``struct super_block *sb``
  filesystem superblock

``void *mnt_opts``
  new mount options

**Description**

Determine if the new mount options in **mnt_opts** are allowed given the
existing mounted filesystem at **sb**.  **sb** superblock being compared.

**Return**

Returns 0 if options are compatible.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj>  h]”hŒ
Parameters”…””}”(hj@  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj<  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mæhj8  ubjH  )”}”(hhh]”(jM  )”}”(hŒ1``struct super_block *sb``
filesystem superblock
”h]”(jS  )”}”(hŒ``struct super_block *sb``”h]”hë)”}”(hj]  h]”hŒstruct super_block *sb”…””}”(hj_  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj[  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MãhjW  ubjm  )”}”(hhh]”hÌ)”}”(hŒfilesystem superblock”h]”hŒfilesystem superblock”…””}”(hjv  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jr  h´Mãhjs  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjW  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jr  h´MãhjT  ubjM  )”}”(hŒ%``void *mnt_opts``
new mount options
”h]”(jS  )”}”(hŒ``void *mnt_opts``”h]”hë)”}”(hj–  h]”hŒvoid *mnt_opts”…””}”(hj˜  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj”  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mähj  ubjm  )”}”(hhh]”hÌ)”}”(hŒnew mount options”h]”hŒnew mount options”…””}”(hj¯  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j«  h´Mähj¬  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j«  h´MähjT  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj8  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjÑ  h]”hŒDescription”…””}”(hjÓ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÏ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mæhj8  ubhÌ)”}”(hŒ’Determine if the new mount options in **mnt_opts** are allowed given the
existing mounted filesystem at **sb**.  **sb** superblock being compared.”h]”(hŒ&Determine if the new mount options in ”…””}”(hjç  h²hh³Nh´Nubj2  )”}”(hŒ**mnt_opts**”h]”hŒmnt_opts”…””}”(hjï  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjç  ubhŒ6 are allowed given the
existing mounted filesystem at ”…””}”(hjç  h²hh³Nh´Nubj2  )”}”(hŒ**sb**”h]”hŒsb”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjç  ubhŒ.  ”…””}”(hjç  h²hh³Nh´Nubj2  )”}”(hŒ**sb**”h]”hŒsb”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjç  ubhŒ superblock being compared.”…””}”(hjç  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Måhj8  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj.  h]”hŒReturn”…””}”(hj0  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj,  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mèhj8  ubhÌ)”}”(hŒ$Returns 0 if options are compatible.”h]”hŒ$Returns 0 if options are compatible.”…””}”(hjD  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Méhj8  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ security_sb_remount (C function)”Œc.security_sb_remount”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ@int security_sb_remount (struct super_block *sb, void *mnt_opts)”h]”jA  )”}”(hŒ?int security_sb_remount(struct super_block *sb, void *mnt_opts)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjs  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjo  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MóubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj‚  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjo  h²hh³j  h´Móubjj  )”}”(hŒsecurity_sb_remount”h]”jp  )”}”(hŒsecurity_sb_remount”h]”hŒsecurity_sb_remount”…””}”(hj”  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjo  h²hh³j  h´Móubj‹  )”}”(hŒ((struct super_block *sb, void *mnt_opts)”h]”(j‘  )”}”(hŒstruct super_block *sb”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj°  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj¬  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj½  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¬  ubh)”}”(hhh]”jp  )”}”(hŒsuper_block”h]”hŒsuper_block”…””}”(hjÎ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjË  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jÐ  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j–  sbŒc.security_sb_remount”†”asbuh1hhj¬  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjî  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¬  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjü  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj¬  ubjp  )”}”(hŒsb”h]”hŒsb”…””}”(hj	  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¬  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj¨  ubj‘  )”}”(hŒvoid *mnt_opts”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hj"  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj0  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj>  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj  ubjp  )”}”(hŒmnt_opts”h]”hŒmnt_opts”…””}”(hjK  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj¨  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjo  h²hh³j  h´Móubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjk  h²hh³j  h´Móubah}”(h]”jf  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j  h´Móhjh  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ3Verify no incompatible mount changes during remount”h]”hŒ3Verify no incompatible mount changes during remount”…””}”(hju  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Móhjr  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjh  h²hh³j  h´Móubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j  j#  j  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX  **Parameters**

``struct super_block *sb``
  filesystem superblock

``void *mnt_opts``
  (re)mount options

**Description**

Extracts security system specific mount options and verifies no changes are
being made to those options.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj—  h]”hŒ
Parameters”…””}”(hj™  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj•  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M÷hj‘  ubjH  )”}”(hhh]”(jM  )”}”(hŒ1``struct super_block *sb``
filesystem superblock
”h]”(jS  )”}”(hŒ``struct super_block *sb``”h]”hë)”}”(hj¶  h]”hŒstruct super_block *sb”…””}”(hj¸  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj´  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Môhj°  ubjm  )”}”(hhh]”hÌ)”}”(hŒfilesystem superblock”h]”hŒfilesystem superblock”…””}”(hjÏ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jË  h´MôhjÌ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj°  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jË  h´Môhj­  ubjM  )”}”(hŒ%``void *mnt_opts``
(re)mount options
”h]”(jS  )”}”(hŒ``void *mnt_opts``”h]”hë)”}”(hjï  h]”hŒvoid *mnt_opts”…””}”(hjñ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjí  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mõhjé  ubjm  )”}”(hhh]”hÌ)”}”(hŒ(re)mount options”h]”hŒ(re)mount options”…””}”(hj	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j	  h´Mõhj	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjé  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j	  h´Mõhj­  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj‘  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj*	  h]”hŒDescription”…””}”(hj,	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj(	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M÷hj‘  ubhÌ)”}”(hŒhExtracts security system specific mount options and verifies no changes are
being made to those options.”h]”hŒhExtracts security system specific mount options and verifies no changes are
being made to those options.”…””}”(hj@	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Möhj‘  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjQ	  h]”hŒReturn”…””}”(hjS	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjO	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mùhj‘  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hjg	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Múhj‘  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ%security_sb_set_mnt_opts (C function)”Œc.security_sb_set_mnt_opts”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ~int security_sb_set_mnt_opts (struct super_block *sb, void *mnt_opts, unsigned long kern_flags, unsigned long *set_kern_flags)”h]”jA  )”}”(hŒ}int security_sb_set_mnt_opts(struct super_block *sb, void *mnt_opts, unsigned long kern_flags, unsigned long *set_kern_flags)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj–	  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj’	  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MaubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¥	  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj’	  h²hh³j¤	  h´Maubjj  )”}”(hŒsecurity_sb_set_mnt_opts”h]”jp  )”}”(hŒsecurity_sb_set_mnt_opts”h]”hŒsecurity_sb_set_mnt_opts”…””}”(hj·	  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj³	  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj’	  h²hh³j¤	  h´Maubj‹  )”}”(hŒa(struct super_block *sb, void *mnt_opts, unsigned long kern_flags, unsigned long *set_kern_flags)”h]”(j‘  )”}”(hŒstruct super_block *sb”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjÓ	  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjÏ	  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjà	  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÏ	  ubh)”}”(hhh]”jp  )”}”(hŒsuper_block”h]”hŒsuper_block”…””}”(hjñ	  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjî	  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jó	  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j¹	  sbŒc.security_sb_set_mnt_opts”†”asbuh1hhjÏ	  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj
  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÏ	  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj
  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjÏ	  ubjp  )”}”(hŒsb”h]”hŒsb”…””}”(hj,
  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÏ	  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjË	  ubj‘  )”}”(hŒvoid *mnt_opts”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjE
  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjA
  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjS
  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjA
  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hja
  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjA
  ubjp  )”}”(hŒmnt_opts”h]”hŒmnt_opts”…””}”(hjn
  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjA
  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjË	  ubj‘  )”}”(hŒunsigned long kern_flags”h]”(jG  )”}”(hŒunsigned”h]”hŒunsigned”…””}”(hj‡
  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjƒ
  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj•
  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjƒ
  ubjG  )”}”(hŒlong”h]”hŒlong”…””}”(hj£
  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjƒ
  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj±
  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjƒ
  ubjp  )”}”(hŒ
kern_flags”h]”hŒ
kern_flags”…””}”(hj¿
  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjƒ
  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjË	  ubj‘  )”}”(hŒunsigned long *set_kern_flags”h]”(jG  )”}”(hŒunsigned”h]”hŒunsigned”…””}”(hjØ
  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÔ
  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjæ
  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÔ
  ubjG  )”}”(hŒlong”h]”hŒlong”…””}”(hjô
  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÔ
  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÔ
  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjÔ
  ubjp  )”}”(hŒset_kern_flags”h]”hŒset_kern_flags”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÔ
  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjË	  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj’	  h²hh³j¤	  h´Maubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjŽ	  h²hh³j¤	  h´Maubah}”(h]”j‰	  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j¤	  h´Mahj‹	  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ&Set the mount options for a filesystem”h]”hŒ&Set the mount options for a filesystem”…””}”(hjG  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MahjD  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj‹	  h²hh³j¤	  h´Maubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j_  j#  j_  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX]  **Parameters**

``struct super_block *sb``
  filesystem superblock

``void *mnt_opts``
  binary mount options

``unsigned long kern_flags``
  kernel flags (in)

``unsigned long *set_kern_flags``
  kernel flags (out)

**Description**

Set the security relevant mount options used for a superblock.

**Return**

Returns 0 on success, error on failure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hji  h]”hŒ
Parameters”…””}”(hjk  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjg  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mehjc  ubjH  )”}”(hhh]”(jM  )”}”(hŒ1``struct super_block *sb``
filesystem superblock
”h]”(jS  )”}”(hŒ``struct super_block *sb``”h]”hë)”}”(hjˆ  h]”hŒstruct super_block *sb”…””}”(hjŠ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj†  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mbhj‚  ubjm  )”}”(hhh]”hÌ)”}”(hŒfilesystem superblock”h]”hŒfilesystem superblock”…””}”(hj¡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j  h´Mbhjž  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj‚  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j  h´Mbhj  ubjM  )”}”(hŒ(``void *mnt_opts``
binary mount options
”h]”(jS  )”}”(hŒ``void *mnt_opts``”h]”hë)”}”(hjÁ  h]”hŒvoid *mnt_opts”…””}”(hjÃ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj¿  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mchj»  ubjm  )”}”(hhh]”hÌ)”}”(hŒbinary mount options”h]”hŒbinary mount options”…””}”(hjÚ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÖ  h´Mchj×  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj»  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÖ  h´Mchj  ubjM  )”}”(hŒ/``unsigned long kern_flags``
kernel flags (in)
”h]”(jS  )”}”(hŒ``unsigned long kern_flags``”h]”hë)”}”(hjú  h]”hŒunsigned long kern_flags”…””}”(hjü  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjø  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mdhjô  ubjm  )”}”(hhh]”hÌ)”}”(hŒkernel flags (in)”h]”hŒkernel flags (in)”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j  h´Mdhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjô  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j  h´Mdhj  ubjM  )”}”(hŒ5``unsigned long *set_kern_flags``
kernel flags (out)
”h]”(jS  )”}”(hŒ!``unsigned long *set_kern_flags``”h]”hë)”}”(hj3  h]”hŒunsigned long *set_kern_flags”…””}”(hj5  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj1  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mehj-  ubjm  )”}”(hhh]”hÌ)”}”(hŒkernel flags (out)”h]”hŒkernel flags (out)”…””}”(hjL  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jH  h´MehjI  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj-  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jH  h´Mehj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjc  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjn  h]”hŒDescription”…””}”(hjp  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjl  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mghjc  ubhÌ)”}”(hŒ>Set the security relevant mount options used for a superblock.”h]”hŒ>Set the security relevant mount options used for a superblock.”…””}”(hj„  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mfhjc  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj•  h]”hŒReturn”…””}”(hj—  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj“  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhhjc  ubhÌ)”}”(hŒ'Returns 0 on success, error on failure.”h]”hŒ'Returns 0 on success, error on failure.”…””}”(hj«  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mihjc  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ'security_sb_clone_mnt_opts (C function)”Œc.security_sb_clone_mnt_opts”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ”int security_sb_clone_mnt_opts (const struct super_block *oldsb, struct super_block *newsb, unsigned long kern_flags, unsigned long *set_kern_flags)”h]”jA  )”}”(hŒ“int security_sb_clone_mnt_opts(const struct super_block *oldsb, struct super_block *newsb, unsigned long kern_flags, unsigned long *set_kern_flags)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjÚ  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÖ  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M~ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjé  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÖ  h²hh³jè  h´M~ubjj  )”}”(hŒsecurity_sb_clone_mnt_opts”h]”jp  )”}”(hŒsecurity_sb_clone_mnt_opts”h]”hŒsecurity_sb_clone_mnt_opts”…””}”(hjû  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj÷  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjÖ  h²hh³jè  h´M~ubj‹  )”}”(hŒu(const struct super_block *oldsb, struct super_block *newsb, unsigned long kern_flags, unsigned long *set_kern_flags)”h]”(j‘  )”}”(hŒconst struct super_block *oldsb”h]”(jL  )”}”(hŒconst”h]”hŒconst”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj%  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj  ubjL  )”}”(hjO  h]”hŒstruct”…””}”(hj3  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj@  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj  ubh)”}”(hhh]”jp  )”}”(hŒsuper_block”h]”hŒsuper_block”…””}”(hjQ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjN  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jS  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jý  sbŒc.security_sb_clone_mnt_opts”†”asbuh1hhj  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjq  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj  ubjp  )”}”(hŒoldsb”h]”hŒoldsb”…””}”(hjŒ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj  ubj‘  )”}”(hŒstruct super_block *newsb”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj¥  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj¡  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj²  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¡  ubh)”}”(hhh]”jp  )”}”(hŒsuper_block”h]”hŒsuper_block”…””}”(hjÃ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÀ  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jÅ  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jm  Œc.security_sb_clone_mnt_opts”†”asbuh1hhj¡  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjá  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¡  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjï  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj¡  ubjp  )”}”(hŒnewsb”h]”hŒnewsb”…””}”(hjü  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¡  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj  ubj‘  )”}”(hŒunsigned long kern_flags”h]”(jG  )”}”(hŒunsigned”h]”hŒunsigned”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj#  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj  ubjG  )”}”(hŒlong”h]”hŒlong”…””}”(hj1  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj?  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj  ubjp  )”}”(hŒ
kern_flags”h]”hŒ
kern_flags”…””}”(hjM  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj  ubj‘  )”}”(hŒunsigned long *set_kern_flags”h]”(jG  )”}”(hŒunsigned”h]”hŒunsigned”…””}”(hjf  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjb  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjt  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjb  ubjG  )”}”(hŒlong”h]”hŒlong”…””}”(hj‚  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjb  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjb  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjž  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjb  ubjp  )”}”(hŒset_kern_flags”h]”hŒset_kern_flags”…””}”(hj«  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjb  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjÖ  h²hh³jè  h´M~ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjÒ  h²hh³jè  h´M~ubah}”(h]”jÍ  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jè  h´M~hjÏ  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ"Duplicate superblock mount options”h]”hŒ"Duplicate superblock mount options”…””}”(hjÕ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M~hjÒ  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjÏ  h²hh³jè  h´M~ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jí  j#  jí  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hXn  **Parameters**

``const struct super_block *oldsb``
  source superblock

``struct super_block *newsb``
  destination superblock

``unsigned long kern_flags``
  kernel flags (in)

``unsigned long *set_kern_flags``
  kernel flags (out)

**Description**

Copy all security options from a given superblock to another.

**Return**

Returns 0 on success, error on failure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj÷  h]”hŒ
Parameters”…””}”(hjù  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjõ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M‚hjñ  ubjH  )”}”(hhh]”(jM  )”}”(hŒ6``const struct super_block *oldsb``
source superblock
”h]”(jS  )”}”(hŒ#``const struct super_block *oldsb``”h]”hë)”}”(hj  h]”hŒconst struct super_block *oldsb”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj  ubjm  )”}”(hhh]”hÌ)”}”(hŒsource superblock”h]”hŒsource superblock”…””}”(hj/  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j+  h´Mhj,  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j+  h´Mhj  ubjM  )”}”(hŒ5``struct super_block *newsb``
destination superblock
”h]”(jS  )”}”(hŒ``struct super_block *newsb``”h]”hë)”}”(hjO  h]”hŒstruct super_block *newsb”…””}”(hjQ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjM  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M€hjI  ubjm  )”}”(hhh]”hÌ)”}”(hŒdestination superblock”h]”hŒdestination superblock”…””}”(hjh  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jd  h´M€hje  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjI  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jd  h´M€hj  ubjM  )”}”(hŒ/``unsigned long kern_flags``
kernel flags (in)
”h]”(jS  )”}”(hŒ``unsigned long kern_flags``”h]”hë)”}”(hjˆ  h]”hŒunsigned long kern_flags”…””}”(hjŠ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj†  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj‚  ubjm  )”}”(hhh]”hÌ)”}”(hŒkernel flags (in)”h]”hŒkernel flags (in)”…””}”(hj¡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j  h´Mhjž  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj‚  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j  h´Mhj  ubjM  )”}”(hŒ5``unsigned long *set_kern_flags``
kernel flags (out)
”h]”(jS  )”}”(hŒ!``unsigned long *set_kern_flags``”h]”hë)”}”(hjÁ  h]”hŒunsigned long *set_kern_flags”…””}”(hjÃ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj¿  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M‚hj»  ubjm  )”}”(hhh]”hÌ)”}”(hŒkernel flags (out)”h]”hŒkernel flags (out)”…””}”(hjÚ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÖ  h´M‚hj×  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj»  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÖ  h´M‚hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjñ  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjü  h]”hŒDescription”…””}”(hjþ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjú  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M„hjñ  ubhÌ)”}”(hŒ=Copy all security options from a given superblock to another.”h]”hŒ=Copy all security options from a given superblock to another.”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mƒhjñ  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj#  h]”hŒReturn”…””}”(hj%  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj!  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M…hjñ  ubhÌ)”}”(hŒ'Returns 0 on success, error on failure.”h]”hŒ'Returns 0 on success, error on failure.”…””}”(hj9  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M†hjñ  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ*security_dentry_init_security (C function)”Œc.security_dentry_init_security”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ‘int security_dentry_init_security (struct dentry *dentry, int mode, const struct qstr *name, const char **xattr_name, struct lsm_context *lsmctx)”h]”jA  )”}”(hŒint security_dentry_init_security(struct dentry *dentry, int mode, const struct qstr *name, const char **xattr_name, struct lsm_context *lsmctx)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjh  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjd  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MéubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjw  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjd  h²hh³jv  h´Méubjj  )”}”(hŒsecurity_dentry_init_security”h]”jp  )”}”(hŒsecurity_dentry_init_security”h]”hŒsecurity_dentry_init_security”…””}”(hj‰  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj…  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjd  h²hh³jv  h´Méubj‹  )”}”(hŒo(struct dentry *dentry, int mode, const struct qstr *name, const char **xattr_name, struct lsm_context *lsmctx)”h]”(j‘  )”}”(hŒstruct dentry *dentry”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj¥  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj¡  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj²  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¡  ubh)”}”(hhh]”jp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hjÃ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÀ  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jÅ  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j‹  sbŒc.security_dentry_init_security”†”asbuh1hhj¡  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjã  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¡  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjñ  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj¡  ubjp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hjþ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¡  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj  ubj‘  )”}”(hŒint mode”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj%  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj  ubjp  )”}”(hŒmode”h]”hŒmode”…””}”(hj3  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj  ubj‘  )”}”(hŒconst struct qstr *name”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hjL  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjH  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjY  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjH  ubjL  )”}”(hjO  h]”hŒstruct”…””}”(hjg  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjH  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjt  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjH  ubh)”}”(hhh]”jp  )”}”(hŒqstr”h]”hŒqstr”…””}”(hj…  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj‚  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j‡  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jß  Œc.security_dentry_init_security”†”asbuh1hhjH  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj£  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjH  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj±  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjH  ubjp  )”}”(hŒname”h]”hŒname”…””}”(hj¾  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjH  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj  ubj‘  )”}”(hŒconst char **xattr_name”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hj×  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjÓ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjä  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÓ  ubjG  )”}”(hŒchar”h]”hŒchar”…””}”(hjò  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÓ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj   h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÓ  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjÓ  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjÓ  ubjp  )”}”(hŒ
xattr_name”h]”hŒ
xattr_name”…””}”(hj(  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÓ  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj  ubj‘  )”}”(hŒstruct lsm_context *lsmctx”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjA  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj=  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjN  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj=  ubh)”}”(hhh]”jp  )”}”(hŒlsm_context”h]”hŒlsm_context”…””}”(hj_  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj\  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”ja  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jß  Œc.security_dentry_init_security”†”asbuh1hhj=  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj}  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj=  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj‹  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj=  ubjp  )”}”(hŒlsmctx”h]”hŒlsmctx”…””}”(hj˜  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj=  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjd  h²hh³jv  h´Méubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj`  h²hh³jv  h´Méubah}”(h]”j[  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jv  h´Méhj]  h²hubj   )”}”(hhh]”hÌ)”}”(hŒPerform dentry initialization”h]”hŒPerform dentry initialization”…””}”(hjÂ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Méhj¿  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj]  h²hh³jv  h´Méubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jÚ  j#  jÚ  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hXn  **Parameters**

``struct dentry *dentry``
  the dentry to initialize

``int mode``
  mode used to determine resource type

``const struct qstr *name``
  name of the last path component

``const char **xattr_name``
  name of the security/LSM xattr

``struct lsm_context *lsmctx``
  pointer to the resulting LSM context

**Description**

Compute a context for a dentry as the inode is not yet available since NFSv4
has no label backed by an EA anyway.  It is important to note that
**xattr_name** does not need to be free'd by the caller, it is a static string.

**Return**

Returns 0 on success, negative values on failure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjä  h]”hŒ
Parameters”…””}”(hjæ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjâ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MíhjÞ  ubjH  )”}”(hhh]”(jM  )”}”(hŒ3``struct dentry *dentry``
the dentry to initialize
”h]”(jS  )”}”(hŒ``struct dentry *dentry``”h]”hë)”}”(hj  h]”hŒstruct dentry *dentry”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mêhjý  ubjm  )”}”(hhh]”hÌ)”}”(hŒthe dentry to initialize”h]”hŒthe dentry to initialize”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j  h´Mêhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjý  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j  h´Mêhjú  ubjM  )”}”(hŒ2``int mode``
mode used to determine resource type
”h]”(jS  )”}”(hŒ``int mode``”h]”hë)”}”(hj<  h]”hŒint mode”…””}”(hj>  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj:  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mëhj6  ubjm  )”}”(hhh]”hÌ)”}”(hŒ$mode used to determine resource type”h]”hŒ$mode used to determine resource type”…””}”(hjU  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jQ  h´MëhjR  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj6  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jQ  h´Mëhjú  ubjM  )”}”(hŒ<``const struct qstr *name``
name of the last path component
”h]”(jS  )”}”(hŒ``const struct qstr *name``”h]”hë)”}”(hju  h]”hŒconst struct qstr *name”…””}”(hjw  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjs  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mìhjo  ubjm  )”}”(hhh]”hÌ)”}”(hŒname of the last path component”h]”hŒname of the last path component”…””}”(hjŽ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jŠ  h´Mìhj‹  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjo  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jŠ  h´Mìhjú  ubjM  )”}”(hŒ;``const char **xattr_name``
name of the security/LSM xattr
”h]”(jS  )”}”(hŒ``const char **xattr_name``”h]”hë)”}”(hj®  h]”hŒconst char **xattr_name”…””}”(hj°  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj¬  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Míhj¨  ubjm  )”}”(hhh]”hÌ)”}”(hŒname of the security/LSM xattr”h]”hŒname of the security/LSM xattr”…””}”(hjÇ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÃ  h´MíhjÄ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj¨  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÃ  h´Míhjú  ubjM  )”}”(hŒD``struct lsm_context *lsmctx``
pointer to the resulting LSM context
”h]”(jS  )”}”(hŒ``struct lsm_context *lsmctx``”h]”hë)”}”(hjç  h]”hŒstruct lsm_context *lsmctx”…””}”(hjé  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjå  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mîhjá  ubjm  )”}”(hhh]”hÌ)”}”(hŒ$pointer to the resulting LSM context”h]”hŒ$pointer to the resulting LSM context”…””}”(hj   h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jü  h´Mîhjý  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjá  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jü  h´Mîhjú  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjÞ  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj"  h]”hŒDescription”…””}”(hj$  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj   ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MðhjÞ  ubhÌ)”}”(hŒßCompute a context for a dentry as the inode is not yet available since NFSv4
has no label backed by an EA anyway.  It is important to note that
**xattr_name** does not need to be free'd by the caller, it is a static string.”h]”(hŒCompute a context for a dentry as the inode is not yet available since NFSv4
has no label backed by an EA anyway.  It is important to note that
”…””}”(hj8  h²hh³Nh´Nubj2  )”}”(hŒ**xattr_name**”h]”hŒ
xattr_name”…””}”(hj@  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj8  ubhŒC does not need to be freeâ€™d by the caller, it is a static string.”…””}”(hj8  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MïhjÞ  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj[  h]”hŒReturn”…””}”(hj]  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjY  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MóhjÞ  ubhÌ)”}”(hŒ1Returns 0 on success, negative values on failure.”h]”hŒ1Returns 0 on success, negative values on failure.”…””}”(hjq  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MôhjÞ  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ,security_dentry_create_files_as (C function)”Œ!c.security_dentry_create_files_as”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒˆint security_dentry_create_files_as (struct dentry *dentry, int mode, const struct qstr *name, const struct cred *old, struct cred *new)”h]”jA  )”}”(hŒ‡int security_dentry_create_files_as(struct dentry *dentry, int mode, const struct qstr *name, const struct cred *old, struct cred *new)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj   h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjœ  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¯  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjœ  h²hh³j®  h´Mubjj  )”}”(hŒsecurity_dentry_create_files_as”h]”jp  )”}”(hŒsecurity_dentry_create_files_as”h]”hŒsecurity_dentry_create_files_as”…””}”(hjÁ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj½  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjœ  h²hh³j®  h´Mubj‹  )”}”(hŒd(struct dentry *dentry, int mode, const struct qstr *name, const struct cred *old, struct cred *new)”h]”(j‘  )”}”(hŒstruct dentry *dentry”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjÝ  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjÙ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjê  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÙ  ubh)”}”(hhh]”jp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hjû  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjø  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jý  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jÃ  sbŒ!c.security_dentry_create_files_as”†”asbuh1hhjÙ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÙ  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj)  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjÙ  ubjp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hj6  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÙ  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÕ  ubj‘  )”}”(hŒint mode”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjO  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjK  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj]  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjK  ubjp  )”}”(hŒmode”h]”hŒmode”…””}”(hjk  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjK  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÕ  ubj‘  )”}”(hŒconst struct qstr *name”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hj„  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj€  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj‘  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj€  ubjL  )”}”(hjO  h]”hŒstruct”…””}”(hjŸ  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj€  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¬  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj€  ubh)”}”(hhh]”jp  )”}”(hŒqstr”h]”hŒqstr”…””}”(hj½  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjº  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j¿  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  Œ!c.security_dentry_create_files_as”†”asbuh1hhj€  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÛ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj€  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjé  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj€  ubjp  )”}”(hŒname”h]”hŒname”…””}”(hjö  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj€  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÕ  ubj‘  )”}”(hŒconst struct cred *old”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj  ubjL  )”}”(hjO  h]”hŒstruct”…””}”(hj*  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj7  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj  ubh)”}”(hhh]”jp  )”}”(hŒcred”h]”hŒcred”…””}”(hjH  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjE  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jJ  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  Œ!c.security_dentry_create_files_as”†”asbuh1hhj  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjf  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjt  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj  ubjp  )”}”(hŒold”h]”hŒold”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÕ  ubj‘  )”}”(hŒstruct cred *new”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjš  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj–  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj§  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj–  ubh)”}”(hhh]”jp  )”}”(hŒcred”h]”hŒcred”…””}”(hj¸  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjµ  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jº  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  Œ!c.security_dentry_create_files_as”†”asbuh1hhj–  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÖ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj–  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjä  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj–  ubjp  )”}”(hŒnew”h]”hŒnew”…””}”(hjñ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj–  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÕ  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjœ  h²hh³j®  h´Mubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj˜  h²hh³j®  h´Mubah}”(h]”j“  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j®  •(      h´Mhj•  h²hubj   )”}”(hhh]”hÌ)”}”(hŒPerform dentry initialization”h]”hŒPerform dentry initialization”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj•  h²hh³j®  h´Mubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j3  j#  j3  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX[  **Parameters**

``struct dentry *dentry``
  the dentry to initialize

``int mode``
  mode used to determine resource type

``const struct qstr *name``
  name of the last path component

``const struct cred *old``
  creds to use for LSM context calculations

``struct cred *new``
  creds to modify

**Description**

Compute a context for a dentry as the inode is not yet available and set
that context in passed in creds so that new files are created using that
context. Context is calculated using the passed in creds and not the creds
of the caller.

**Return**

Returns 0 on success, error on failure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj=  h]”hŒ
Parameters”…””}”(hj?  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj;  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj7  ubjH  )”}”(hhh]”(jM  )”}”(hŒ3``struct dentry *dentry``
the dentry to initialize
”h]”(jS  )”}”(hŒ``struct dentry *dentry``”h]”hë)”}”(hj\  h]”hŒstruct dentry *dentry”…””}”(hj^  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjZ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MhjV  ubjm  )”}”(hhh]”hÌ)”}”(hŒthe dentry to initialize”h]”hŒthe dentry to initialize”…””}”(hju  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jq  h´Mhjr  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjV  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jq  h´MhjS  ubjM  )”}”(hŒ2``int mode``
mode used to determine resource type
”h]”(jS  )”}”(hŒ``int mode``”h]”hë)”}”(hj•  h]”hŒint mode”…””}”(hj—  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj“  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj  ubjm  )”}”(hhh]”hÌ)”}”(hŒ$mode used to determine resource type”h]”hŒ$mode used to determine resource type”…””}”(hj®  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jª  h´Mhj«  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jª  h´MhjS  ubjM  )”}”(hŒ<``const struct qstr *name``
name of the last path component
”h]”(jS  )”}”(hŒ``const struct qstr *name``”h]”hë)”}”(hjÎ  h]”hŒconst struct qstr *name”…””}”(hjÐ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjÌ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MhjÈ  ubjm  )”}”(hhh]”hÌ)”}”(hŒname of the last path component”h]”hŒname of the last path component”…””}”(hjç  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jã  h´Mhjä  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÈ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jã  h´MhjS  ubjM  )”}”(hŒE``const struct cred *old``
creds to use for LSM context calculations
”h]”(jS  )”}”(hŒ``const struct cred *old``”h]”hë)”}”(hj  h]”hŒconst struct cred *old”…””}”(hj	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj  ubjm  )”}”(hhh]”hÌ)”}”(hŒ)creds to use for LSM context calculations”h]”hŒ)creds to use for LSM context calculations”…””}”(hj   h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j  h´Mhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j  h´MhjS  ubjM  )”}”(hŒ%``struct cred *new``
creds to modify
”h]”(jS  )”}”(hŒ``struct cred *new``”h]”hë)”}”(hj@  h]”hŒstruct cred *new”…””}”(hjB  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj>  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj:  ubjm  )”}”(hhh]”hÌ)”}”(hŒcreds to modify”h]”hŒcreds to modify”…””}”(hjY  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jU  h´MhjV  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj:  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jU  h´MhjS  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj7  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj{  h]”hŒDescription”…””}”(hj}  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjy  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj7  ubhÌ)”}”(hŒëCompute a context for a dentry as the inode is not yet available and set
that context in passed in creds so that new files are created using that
context. Context is calculated using the passed in creds and not the creds
of the caller.”h]”hŒëCompute a context for a dentry as the inode is not yet available and set
that context in passed in creds so that new files are created using that
context. Context is calculated using the passed in creds and not the creds
of the caller.”…””}”(hj‘  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj7  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj¢  h]”hŒReturn”…””}”(hj¤  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj   ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj7  ubhÌ)”}”(hŒ'Returns 0 on success, error on failure.”h]”hŒ'Returns 0 on success, error on failure.”…””}”(hj¸  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj7  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ)security_inode_init_security (C function)”Œc.security_inode_init_security”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒŽint security_inode_init_security (struct inode *inode, struct inode *dir, const struct qstr *qstr, const initxattrs initxattrs, void *fs_data)”h]”jA  )”}”(hŒint security_inode_init_security(struct inode *inode, struct inode *dir, const struct qstr *qstr, const initxattrs initxattrs, void *fs_data)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjç  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjã  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjö  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjã  h²hh³jõ  h´Mubjj  )”}”(hŒsecurity_inode_init_security”h]”jp  )”}”(hŒsecurity_inode_init_security”h]”hŒsecurity_inode_init_security”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjã  h²hh³jõ  h´Mubj‹  )”}”(hŒm(struct inode *inode, struct inode *dir, const struct qstr *qstr, const initxattrs initxattrs, void *fs_data)”h]”(j‘  )”}”(hŒstruct inode *inode”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj$  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj   ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj1  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj   ubh)”}”(hhh]”jp  )”}”(hŒinode”h]”hŒinode”…””}”(hjB  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj?  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jD  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j
  sbŒc.security_inode_init_security”†”asbuh1hhj   ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjb  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj   ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjp  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj   ubjp  )”}”(hŒinode”h]”hŒinode”…””}”(hj}  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj   ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj  ubj‘  )”}”(hŒstruct inode *dir”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj–  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj’  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj£  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj’  ubh)”}”(hhh]”jp  )”}”(hŒinode”h]”hŒinode”…””}”(hj´  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj±  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j¶  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j^  Œc.security_inode_init_security”†”asbuh1hhj’  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÒ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj’  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjà  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj’  ubjp  )”}”(hŒdir”h]”hŒdir”…””}”(hjí  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj’  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj  ubj‘  )”}”(hŒconst struct qstr *qstr”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj  ubjL  )”}”(hjO  h]”hŒstruct”…””}”(hj!  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj.  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj  ubh)”}”(hhh]”jp  )”}”(hŒqstr”h]”hŒqstr”…””}”(hj?  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj<  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jA  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j^  Œc.security_inode_init_security”†”asbuh1hhj  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj]  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjk  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj  ubjp  )”}”(hŒqstr”h]”hŒqstr”…””}”(hjx  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj  ubj‘  )”}”(hŒconst initxattrs initxattrs”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hj‘  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjž  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj  ubh)”}”(hhh]”jp  )”}”(hŒ
initxattrs”h]”hŒ
initxattrs”…””}”(hj¯  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¬  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j±  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j^  Œc.security_inode_init_security”†”asbuh1hhj  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÍ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj  ubjp  )”}”(hŒ
initxattrs”h]”hŒ
initxattrs”…””}”(hjÛ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj  ubj‘  )”}”(hŒvoid *fs_data”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjô  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjð  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjð  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjð  ubjp  )”}”(hŒfs_data”h]”hŒfs_data”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjð  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjã  h²hh³jõ  h´Mubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjß  h²hh³jõ  h´Mubah}”(h]”jÚ  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jõ  h´MhjÜ  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ!Initialize an inode's LSM context”h]”hŒ#Initialize an inodeâ€™s LSM context”…””}”(hjG  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MhjD  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjÜ  h²hh³jõ  h´Mubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j_  j#  j_  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hXd  **Parameters**

``struct inode *inode``
  the inode

``struct inode *dir``
  parent directory

``const struct qstr *qstr``
  last component of the pathname

``const initxattrs initxattrs``
  callback function to write xattrs

``void *fs_data``
  filesystem specific data

**Description**

Obtain the security attribute name suffix and value to set on a newly
created inode and set up the incore security field for the new inode.  This
hook is called by the fs code as part of the inode creation transaction and
provides for atomic labeling of the inode, unlike the post_create/mkdir/...
hooks called by the VFS.

The hook function is expected to populate the xattrs array, by calling
lsm_get_xattr_slot() to retrieve the slots reserved by the security module
with the lbs_xattr_count field of the lsm_blob_sizes structure.  For each
slot, the hook function should set ->name to the attribute name suffix
(e.g. selinux), to allocate ->value (will be freed by the caller) and set it
to the attribute value, to set ->value_len to the length of the value.  If
the security module does not use security attributes or does not wish to put
a security attribute on this particular inode, then it should return
-EOPNOTSUPP to skip this processing.

**Return**

Returns 0 if the LSM successfully initialized all of the inode
security attributes that are required, negative values otherwise.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hji  h]”hŒ
Parameters”…””}”(hjk  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjg  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhjc  ubjH  )”}”(hhh]”(jM  )”}”(hŒ"``struct inode *inode``
the inode
”h]”(jS  )”}”(hŒ``struct inode *inode``”h]”hë)”}”(hjˆ  h]”hŒstruct inode *inode”…””}”(hjŠ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj†  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj‚  ubjm  )”}”(hhh]”hÌ)”}”(hŒ	the inode”h]”hŒ	the inode”…””}”(hj¡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j  h´Mhjž  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj‚  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j  h´Mhj  ubjM  )”}”(hŒ'``struct inode *dir``
parent directory
”h]”(jS  )”}”(hŒ``struct inode *dir``”h]”hë)”}”(hjÁ  h]”hŒstruct inode *dir”…””}”(hjÃ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj¿  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj»  ubjm  )”}”(hhh]”hÌ)”}”(hŒparent directory”h]”hŒparent directory”…””}”(hjÚ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÖ  h´Mhj×  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj»  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÖ  h´Mhj  ubjM  )”}”(hŒ;``const struct qstr *qstr``
last component of the pathname
”h]”(jS  )”}”(hŒ``const struct qstr *qstr``”h]”hë)”}”(hjú  h]”hŒconst struct qstr *qstr”…””}”(hjü  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjø  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhjô  ubjm  )”}”(hhh]”hÌ)”}”(hŒlast component of the pathname”h]”hŒlast component of the pathname”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j  h´Mhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjô  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j  h´Mhj  ubjM  )”}”(hŒB``const initxattrs initxattrs``
callback function to write xattrs
”h]”(jS  )”}”(hŒ``const initxattrs initxattrs``”h]”hë)”}”(hj3  h]”hŒconst initxattrs initxattrs”…””}”(hj5  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj1  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj-  ubjm  )”}”(hhh]”hÌ)”}”(hŒ!callback function to write xattrs”h]”hŒ!callback function to write xattrs”…””}”(hjL  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jH  h´MhjI  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj-  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jH  h´Mhj  ubjM  )”}”(hŒ+``void *fs_data``
filesystem specific data
”h]”(jS  )”}”(hŒ``void *fs_data``”h]”hë)”}”(hjl  h]”hŒvoid *fs_data”…””}”(hjn  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhjf  ubjm  )”}”(hhh]”hÌ)”}”(hŒfilesystem specific data”h]”hŒfilesystem specific data”…””}”(hj…  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j  h´Mhj‚  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjf  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j  h´Mhj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjc  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj§  h]”hŒDescription”…””}”(hj©  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj¥  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M hjc  ubhÌ)”}”(hXB  Obtain the security attribute name suffix and value to set on a newly
created inode and set up the incore security field for the new inode.  This
hook is called by the fs code as part of the inode creation transaction and
provides for atomic labeling of the inode, unlike the post_create/mkdir/...
hooks called by the VFS.”h]”hXB  Obtain the security attribute name suffix and value to set on a newly
created inode and set up the incore security field for the new inode.  This
hook is called by the fs code as part of the inode creation transaction and
provides for atomic labeling of the inode, unlike the post_create/mkdir/...
hooks called by the VFS.”…””}”(hj½  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhjc  ubhÌ)”}”(hXq  The hook function is expected to populate the xattrs array, by calling
lsm_get_xattr_slot() to retrieve the slots reserved by the security module
with the lbs_xattr_count field of the lsm_blob_sizes structure.  For each
slot, the hook function should set ->name to the attribute name suffix
(e.g. selinux), to allocate ->value (will be freed by the caller) and set it
to the attribute value, to set ->value_len to the length of the value.  If
the security module does not use security attributes or does not wish to put
a security attribute on this particular inode, then it should return
-EOPNOTSUPP to skip this processing.”h]”hXq  The hook function is expected to populate the xattrs array, by calling
lsm_get_xattr_slot() to retrieve the slots reserved by the security module
with the lbs_xattr_count field of the lsm_blob_sizes structure.  For each
slot, the hook function should set ->name to the attribute name suffix
(e.g. selinux), to allocate ->value (will be freed by the caller) and set it
to the attribute value, to set ->value_len to the length of the value.  If
the security module does not use security attributes or does not wish to put
a security attribute on this particular inode, then it should return
-EOPNOTSUPP to skip this processing.”…””}”(hjÌ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M%hjc  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjÝ  h]”hŒReturn”…””}”(hjß  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÛ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M/hjc  ubhÌ)”}”(hŒ€Returns 0 if the LSM successfully initialized all of the inode
security attributes that are required, negative values otherwise.”h]”hŒ€Returns 0 if the LSM successfully initialized all of the inode
security attributes that are required, negative values otherwise.”…””}”(hjó  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M0hjc  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ security_path_mknod (C function)”Œc.security_path_mknod”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒgint security_path_mknod (const struct path *dir, struct dentry *dentry, umode_t mode, unsigned int dev)”h]”jA  )”}”(hŒfint security_path_mknod(const struct path *dir, struct dentry *dentry, umode_t mode, unsigned int dev)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj"  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MyubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj1  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj  h²hh³j0  h´Myubjj  )”}”(hŒsecurity_path_mknod”h]”jp  )”}”(hŒsecurity_path_mknod”h]”hŒsecurity_path_mknod”…””}”(hjC  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj?  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj  h²hh³j0  h´Myubj‹  )”}”(hŒO(const struct path *dir, struct dentry *dentry, umode_t mode, unsigned int dev)”h]”(j‘  )”}”(hŒconst struct path *dir”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hj_  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj[  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjl  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj[  ubjL  )”}”(hjO  h]”hŒstruct”…””}”(hjz  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj[  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj‡  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj[  ubh)”}”(hhh]”jp  )”}”(hŒpath”h]”hŒpath”…””}”(hj˜  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj•  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jš  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jE  sbŒc.security_path_mknod”†”asbuh1hhj[  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¸  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj[  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjÆ  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj[  ubjp  )”}”(hŒdir”h]”hŒdir”…””}”(hjÓ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj[  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjW  ubj‘  )”}”(hŒstruct dentry *dentry”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjì  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjè  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjù  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjè  ubh)”}”(hhh]”jp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hj
  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j´  Œc.security_path_mknod”†”asbuh1hhjè  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj(  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjè  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj6  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjè  ubjp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hjC  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjè  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjW  ubj‘  )”}”(hŒumode_t mode”h]”(h)”}”(hhh]”jp  )”}”(hŒumode_t”h]”hŒumode_t”…””}”(hj_  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj\  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”ja  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j´  Œc.security_path_mknod”†”asbuh1hhjX  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj}  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjX  ubjp  )”}”(hŒmode”h]”hŒmode”…””}”(hj‹  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjX  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjW  ubj‘  )”}”(hŒunsigned int dev”h]”(jG  )”}”(hŒunsigned”h]”hŒunsigned”…””}”(hj¤  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj   ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj²  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj   ubjG  )”}”(hŒint”h]”hŒint”…””}”(hjÀ  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj   ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÎ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj   ubjp  )”}”(hŒdev”h]”hŒdev”…””}”(hjÜ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj   ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjW  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj  h²hh³j0  h´Myubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj  h²hh³j0  h´Myubah}”(h]”j  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j0  h´Myhj  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ+Check if creating a special file is allowed”h]”hŒ+Check if creating a special file is allowed”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Myhj  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj  h²hh³j0  h´Myubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j  j#  j  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hXn  **Parameters**

``const struct path *dir``
  parent directory

``struct dentry *dentry``
  new file

``umode_t mode``
  new file mode

``unsigned int dev``
  device number

**Description**

Check permissions when creating a file. Note that this hook is called even
if mknod operation is being done for a regular file.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj(  h]”hŒ
Parameters”…””}”(hj*  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj&  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M}hj"  ubjH  )”}”(hhh]”(jM  )”}”(hŒ,``const struct path *dir``
parent directory
”h]”(jS  )”}”(hŒ``const struct path *dir``”h]”hë)”}”(hjG  h]”hŒconst struct path *dir”…””}”(hjI  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjE  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MzhjA  ubjm  )”}”(hhh]”hÌ)”}”(hŒparent directory”h]”hŒparent directory”…””}”(hj`  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j\  h´Mzhj]  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjA  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j\  h´Mzhj>  ubjM  )”}”(hŒ#``struct dentry *dentry``
new file
”h]”(jS  )”}”(hŒ``struct dentry *dentry``”h]”hë)”}”(hj€  h]”hŒstruct dentry *dentry”…””}”(hj‚  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj~  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M{hjz  ubjm  )”}”(hhh]”hÌ)”}”(hŒnew file”h]”hŒnew file”…””}”(hj™  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j•  h´M{hj–  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjz  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j•  h´M{hj>  ubjM  )”}”(hŒ``umode_t mode``
new file mode
”h]”(jS  )”}”(hŒ``umode_t mode``”h]”hë)”}”(hj¹  h]”hŒumode_t mode”…””}”(hj»  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj·  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M|hj³  ubjm  )”}”(hhh]”hÌ)”}”(hŒnew file mode”h]”hŒnew file mode”…””}”(hjÒ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÎ  h´M|hjÏ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj³  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÎ  h´M|hj>  ubjM  )”}”(hŒ#``unsigned int dev``
device number
”h]”(jS  )”}”(hŒ``unsigned int dev``”h]”hë)”}”(hjò  h]”hŒunsigned int dev”…””}”(hjô  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjð  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M}hjì  ubjm  )”}”(hhh]”hÌ)”}”(hŒdevice number”h]”hŒdevice number”…””}”(hj   h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j   h´M}hj   ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjì  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j   h´M}hj>  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj"  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj-   h]”hŒDescription”…””}”(hj/   h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj+   ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj"  ubhÌ)”}”(hŒCheck permissions when creating a file. Note that this hook is called even
if mknod operation is being done for a regular file.”h]”hŒCheck permissions when creating a file. Note that this hook is called even
if mknod operation is being done for a regular file.”…””}”(hjC   h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M~hj"  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjT   h]”hŒReturn”…””}”(hjV   h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjR   ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj"  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hjj   h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M‚hj"  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ security_path_mkdir (C function)”Œc.security_path_mkdir”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒUint security_path_mkdir (const struct path *dir, struct dentry *dentry, umode_t mode)”h]”jA  )”}”(hŒTint security_path_mkdir(const struct path *dir, struct dentry *dentry, umode_t mode)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj™   h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj•   h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MœubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¨   h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj•   h²hh³j§   h´Mœubjj  )”}”(hŒsecurity_path_mkdir”h]”jp  )”}”(hŒsecurity_path_mkdir”h]”hŒsecurity_path_mkdir”…””}”(hjº   h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¶   ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj•   h²hh³j§   h´Mœubj‹  )”}”(hŒ=(const struct path *dir, struct dentry *dentry, umode_t mode)”h]”(j‘  )”}”(hŒconst struct path *dir”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hjÖ   h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjÒ   ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjã   h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÒ   ubjL  )”}”(hjO  h]”hŒstruct”…””}”(hjñ   h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjÒ   ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjþ   h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÒ   ubh)”}”(hhh]”jp  )”}”(hŒpath”h]”hŒpath”…””}”(hj!  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj!  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j!  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j¼   sbŒc.security_path_mkdir”†”asbuh1hhjÒ   ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj/!  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÒ   ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj=!  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjÒ   ubjp  )”}”(hŒdir”h]”hŒdir”…””}”(hjJ!  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÒ   ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÎ   ubj‘  )”}”(hŒstruct dentry *dentry”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjc!  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj_!  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjp!  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj_!  ubh)”}”(hhh]”jp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hj!  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj~!  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jƒ!  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j+!  Œc.security_path_mkdir”†”asbuh1hhj_!  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjŸ!  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj_!  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj­!  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj_!  ubjp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hjº!  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj_!  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÎ   ubj‘  )”}”(hŒumode_t mode”h]”(h)”}”(hhh]”jp  )”}”(hŒumode_t”h]”hŒumode_t”…””}”(hjÖ!  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÓ!  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jØ!  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j+!  Œc.security_path_mkdir”†”asbuh1hhjÏ!  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjô!  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÏ!  ubjp  )”}”(hŒmode”h]”hŒmode”…””}”(hj"  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÏ!  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÎ   ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj•   h²hh³j§   h´Mœubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj‘   h²hh³j§   h´Mœubah}”(h]”jŒ   ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j§   h´MœhjŽ   h²hubj   )”}”(hhh]”hÌ)”}”(hŒ,Check if creating a new directory is allowed”h]”hŒ,Check if creating a new directory is allowed”…””}”(hj,"  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mœhj)"  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjŽ   h²hh³j§   h´Mœubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jD"  j#  jD"  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX  **Parameters**

``const struct path *dir``
  parent directory

``struct dentry *dentry``
  new directory

``umode_t mode``
  new directory mode

**Description**

Check permissions to create a new directory in the existing directory.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjN"  h]”hŒ
Parameters”…””}”(hjP"  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjL"  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M hjH"  ubjH  )”}”(hhh]”(jM  )”}”(hŒ,``const struct path *dir``
parent directory
”h]”(jS  )”}”(hŒ``const struct path *dir``”h]”hë)”}”(hjm"  h]”hŒconst struct path *dir”…””}”(hjo"  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjk"  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhjg"  ubjm  )”}”(hhh]”hÌ)”}”(hŒparent directory”h]”hŒparent directory”…””}”(hj†"  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j‚"  h´Mhjƒ"  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjg"  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j‚"  h´Mhjd"  ubjM  )”}”(hŒ(``struct dentry *dentry``
new directory
”h]”(jS  )”}”(hŒ``struct dentry *dentry``”h]”hë)”}”(hj¦"  h]”hŒstruct dentry *dentry”…””}”(hj¨"  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj¤"  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mžhj "  ubjm  )”}”(hhh]”hÌ)”}”(hŒnew directory”h]”hŒnew directory”…””}”(hj¿"  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j»"  h´Mžhj¼"  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj "  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j»"  h´Mžhjd"  ubjM  )”}”(hŒ$``umode_t mode``
new directory mode
”h]”(jS  )”}”(hŒ``umode_t mode``”h]”hë)”}”(hjß"  h]”hŒumode_t mode”…””}”(hjá"  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjÝ"  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MŸhjÙ"  ubjm  )”}”(hhh]”hÌ)”}”(hŒnew directory mode”h]”hŒnew directory mode”…””}”(hjø"  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jô"  h´MŸhjõ"  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÙ"  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jô"  h´MŸhjd"  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjH"  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj#  h]”hŒDescription”…””}”(hj#  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj#  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¡hjH"  ubhÌ)”}”(hŒFCheck permissions to create a new directory in the existing directory.”h]”hŒFCheck permissions to create a new directory in the existing directory.”…””}”(hj0#  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M hjH"  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjA#  h]”hŒReturn”…””}”(hjC#  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj?#  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¢hjH"  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hjW#  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M£hjH"  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ!security_path_unlink (C function)”Œc.security_path_unlink”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒHint security_path_unlink (const struct path *dir, struct dentry *dentry)”h]”jA  )”}”(hŒGint security_path_unlink(const struct path *dir, struct dentry *dentry)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj†#  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj‚#  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¿ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj•#  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj‚#  h²hh³j”#  h´M¿ubjj  )”}”(hŒsecurity_path_unlink”h]”jp  )”}”(hŒsecurity_path_unlink”h]”hŒsecurity_path_unlink”…””}”(hj§#  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj£#  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj‚#  h²hh³j”#  h´M¿ubj‹  )”}”(hŒ/(const struct path *dir, struct dentry *dentry)”h]”(j‘  )”}”(hŒconst struct path *dir”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hjÃ#  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj¿#  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÐ#  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¿#  ubjL  )”}”(hjO  h]”hŒstruct”…””}”(hjÞ#  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj¿#  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjë#  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¿#  ubh)”}”(hhh]”jp  )”}”(hŒpath”h]”hŒpath”…””}”(hjü#  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjù#  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jþ#  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j©#  sbŒc.security_path_unlink”†”asbuh1hhj¿#  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj$  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¿#  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj*$  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj¿#  ubjp  )”}”(hŒdir”h]”hŒdir”…””}”(hj7$  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¿#  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj»#  ubj‘  )”}”(hŒstruct dentry *dentry”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjP$  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjL$  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj]$  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjL$  ubh)”}”(hhh]”jp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hjn$  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjk$  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jp$  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j$  Œc.security_path_unlink”†”asbuh1hhjL$  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjŒ$  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjL$  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjš$  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjL$  ubjp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hj§$  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjL$  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj»#  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj‚#  h²hh³j”#  h´M¿ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj~#  h²hh³j”#  h´M¿ubah}”(h]”jy#  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j”#  h´M¿hj{#  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ(Check if removing a hard link is allowed”h]”hŒ(Check if removing a hard link is allowed”…””}”(hjÑ$  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¿hjÎ$  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj{#  h²hh³j”#  h´M¿ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jé$  j#  jé$  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒØ**Parameters**

``const struct path *dir``
  parent directory

``struct dentry *dentry``
  file

**Description**

Check the permission to remove a hard link to a file.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjó$  h]”hŒ
Parameters”…””}”(hjõ$  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjñ$  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÃhjí$  ubjH  )”}”(hhh]”(jM  )”}”(hŒ,``const struct path *dir``
parent directory
”h]”(jS  )”}”(hŒ``const struct path *dir``”h]”hë)”}”(hj%  h]”hŒconst struct path *dir”…””}”(hj%  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj%  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÀhj%  ubjm  )”}”(hhh]”hÌ)”}”(hŒparent directory”h]”hŒparent directory”…””}”(hj+%  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j'%  h´MÀhj(%  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj%  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j'%  h´MÀhj	%  ubjM  )”}”(hŒ``struct dentry *dentry``
file
”h]”(jS  )”}”(hŒ``struct dentry *dentry``”h]”hë)”}”(hjK%  h]”hŒstruct dentry *dentry”…””}”(hjM%  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjI%  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÁhjE%  ubjm  )”}”(hhh]”hÌ)”}”(hŒfile”h]”hŒfile”…””}”(hjd%  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j`%  h´MÁhja%  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjE%  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j`%  h´MÁhj	%  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjí$  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj†%  h]”hŒDescription”…””}”(hjˆ%  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj„%  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÃhjí$  ubhÌ)”}”(hŒ5Check the permission to remove a hard link to a file.”h]”hŒ5Check the permission to remove a hard link to a file.”…””}”(hjœ%  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÂhjí$  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj­%  h]”hŒReturn”…””}”(hj¯%  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj«%  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÄhjí$  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hjÃ%  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÅhjí$  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ!security_path_rename (C function)”Œc.security_path_rename”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ›int security_path_rename (const struct path *old_dir, struct dentry *old_dentry, const struct path *new_dir, struct dentry *new_dentry, unsigned int flags)”h]”jA  )”}”(hŒšint security_path_rename(const struct path *old_dir, struct dentry *old_dentry, const struct path *new_dir, struct dentry *new_dentry, unsigned int flags)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjò%  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjî%  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MôubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj&  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjî%  h²hh³j &  h´Môubjj  )”}”(hŒsecurity_path_rename”h]”jp  )”}”(hŒsecurity_path_rename”h]”hŒsecurity_path_rename”…””}”(hj&  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj&  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjî%  h²hh³j &  h´Môubj‹  )”}”(hŒ‚(const struct path *old_dir, struct dentry *old_dentry, const struct path *new_dir, struct dentry *new_dentry, unsigned int flags)”h]”(j‘  )”}”(hŒconst struct path *old_dir”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hj/&  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj+&  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj<&  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj+&  ubjL  )”}”(hjO  h]”hŒstruct”…””}”(hjJ&  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj+&  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjW&  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj+&  ubh)”}”(hhh]”jp  )”}”(hŒpath”h]”hŒpath”…””}”(hjh&  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hje&  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jj&  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j&  sbŒc.security_path_rename”†”asbuh1hhj+&  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjˆ&  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj+&  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj–&  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj+&  ubjp  )”}”(hŒold_dir”h]”hŒold_dir”…””}”(hj£&  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj+&  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj'&  ubj‘  )”}”(hŒstruct dentry *old_dentry”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj¼&  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj¸&  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÉ&  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¸&  ubh)”}”(hhh]”jp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hjÚ&  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj×&  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jÜ&  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j„&  Œc.security_path_rename”†”asbuh1hhj¸&  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjø&  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¸&  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj'  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj¸&  ubjp  )”}”(hŒ
old_dentry”h]”hŒ
old_dentry”…””}”(hj'  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¸&  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj'&  ubj‘  )”}”(hŒconst struct path *new_dir”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hj,'  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj('  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj9'  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj('  ubjL  )”}”(hjO  h]”hŒstruct”…””}”(hjG'  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj('  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjT'  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj('  ubh)”}”(hhh]”jp  )”}”(hŒpath”h]”hŒpath”…””}”(hje'  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjb'  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jg'  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j„&  Œc.security_path_rename”†”asbuh1hhj('  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjƒ'  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj('  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj‘'  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj('  ubjp  )”}”(hŒnew_dir”h]”hŒnew_dir”…””}”(hjž'  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj('  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj'&  ubj‘  )”}”(hŒstruct dentry *new_dentry”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj·'  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj³'  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÄ'  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj³'  ubh)”}”(hhh]”jp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hjÕ'  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÒ'  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j×'  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j„&  Œc.security_path_rename”†”asbuh1hhj³'  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjó'  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj³'  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj(  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj³'  ubjp  )”}”(hŒ
new_dentry”h]”hŒ
new_dentry”…””}”(hj(  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj³'  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj'&  ubj‘  )”}”(hŒunsigned int flags”h]”(jG  )”}”(hŒunsigned”h]”hŒunsigned”…””}”(hj'(  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj#(  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj5(  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj#(  ubjG  )”}”(hŒint”h]”hŒint”…””}”(hjC(  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj#(  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjQ(  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj#(  ubjp  )”}”(hŒflags”h]”hŒflags”…””}”(hj_(  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj#(  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj'&  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjî%  h²hh³j &  h´Môubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjê%  h²hh³j &  h´Môubah}”(h]”jå%  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j &  h´Môhjç%  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ#Check if renaming a file is allowed”h]”hŒ#Check if renaming a file is allowed”…””}”(hj‰(  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Môhj†(  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjç%  h²hh³j &  h´Môubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j¡(  j#  j¡(  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX‡  **Parameters**

``const struct path *old_dir``
  parent directory of the old file

``struct dentry *old_dentry``
  the old file

``const struct path *new_dir``
  parent directory of the new file

``struct dentry *new_dentry``
  the new file

``unsigned int flags``
  flags

**Description**

Check for permission to rename a file or directory.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj«(  h]”hŒ
Parameters”…””}”(hj­(  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj©(  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Møhj¥(  ubjH  )”}”(hhh]”(jM  )”}”(hŒ@``const struct path *old_dir``
parent directory of the old file
”h]”(jS  )”}”(hŒ``const struct path *old_dir``”h]”hë)”}”(hjÊ(  h]”hŒconst struct path *old_dir”…””}”(hjÌ(  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjÈ(  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MõhjÄ(  ubjm  )”}”(hhh]”hÌ)”}”(hŒ parent directory of the old file”h]”hŒ parent directory of the old file”…””}”(hjã(  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jß(  h´Mõhjà(  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÄ(  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jß(  h´MõhjÁ(  ubjM  )”}”(hŒ+``struct dentry *old_dentry``
the old file
”h]”(jS  )”}”(hŒ``struct dentry *old_dentry``”h]”hë)”}”(hj)  h]”hŒstruct dentry *old_dentry”…””}”(hj)  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj)  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Möhjý(  ubjm  )”}”(hhh]”hÌ)”}”(hŒthe old file”h]”hŒthe old file”…””}”(hj)  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j)  h´Möhj)  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjý(  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j)  h´MöhjÁ(  ubjM  )”}”(hŒ@``const struct path *new_dir``
parent directory of the new file
”h]”(jS  )”}”(hŒ``const struct path *new_dir``”h]”hë)”}”(hj<)  h]”hŒconst struct path *new_dir”…””}”(hj>)  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj:)  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M÷hj6)  ubjm  )”}”(hhh]”hÌ)”}”(hŒ parent directory of the new file”h]”hŒ parent directory of the new file”…””}”(hjU)  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jQ)  h´M÷hjR)  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj6)  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jQ)  h´M÷hjÁ(  ubjM  )”}”(hŒ+``struct dentry *new_dentry``
the new file
”h]”(jS  )”}”(hŒ``struct dentry *new_dentry``”h]”hë)”}”(hju)  h]”hŒstruct dentry *new_dentry”…””}”(hjw)  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjs)  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Møhjo)  ubjm  )”}”(hhh]”hÌ)”}”(hŒthe new file”h]”hŒthe new file”…””}”(hjŽ)  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jŠ)  h´Møhj‹)  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjo)  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jŠ)  h´MøhjÁ(  ubjM  )”}”(hŒ``unsigned int flags``
flags
”h]”(jS  )”}”(hŒ``unsigned int flags``”h]”hë)”}”(hj®)  h]”hŒunsigned int flags”…””}”(hj°)  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj¬)  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mùhj¨)  ubjm  )”}”(hhh]”hÌ)”}”(hŒflags”h]”hŒflags”…””}”(hjÇ)  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÃ)  h´MùhjÄ)  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj¨)  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÃ)  h´MùhjÁ(  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj¥(  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjé)  h]”hŒDescription”…””}”(hjë)  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjç)  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mûhj¥(  ubhÌ)”}”(hŒ3Check for permission to rename a file or directory.”h]”hŒ3Check for permission to rename a file or directory.”…””}”(hjÿ)  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Múhj¥(  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj*  h]”hŒReturn”…””}”(hj*  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj*  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mühj¥(  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hj&*  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mýhj¥(  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ"security_inode_create (C function)”Œc.security_inode_create”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒRint security_inode_create (struct inode *dir, struct dentry *dentry, umode_t mode)”h]”jA  )”}”(hŒQint security_inode_create(struct inode *dir, struct dentry *dentry, umode_t mode)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjU*  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjQ*  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MPubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjd*  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjQ*  h²hh³jc*  h´MPubjj  )”}”(hŒsecurity_inode_create”h]”jp  )”}”(hŒsecurity_inode_create”h]”hŒsecurity_inode_create”…””}”(hjv*  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjr*  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjQ*  h²hh³jc*  h´MPubj‹  )”}”(hŒ8(struct inode *dir, struct dentry *dentry, umode_t mode)”h]”(j‘  )”}”(hŒstruct inode *dir”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj’*  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjŽ*  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjŸ*  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjŽ*  ubh)”}”(hhh]”jp  )”}”(hŒinode”h]”hŒinode”…””}”(hj°*  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj­*  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j²*  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jx*  sbŒc.security_inode_create”†”asbuh1hhjŽ*  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÐ*  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjŽ*  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjÞ*  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjŽ*  ubjp  )”}”(hŒdir”h]”hŒdir”…””}”(hjë*  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjŽ*  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjŠ*  ubj‘  )”}”(hŒstruct dentry *dentry”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj+  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj +  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj+  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj +  ubh)”}”(hhh]”jp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hj"+  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj+  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j$+  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jÌ*  Œc.security_inode_create”†”asbuh1hhj +  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj@+  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj +  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjN+  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj +  ubjp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hj[+  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj +  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjŠ*  ubj‘  )”}”(hŒumode_t mode”h]”(h)”}”(hhh]”jp  )”}”(hŒumode_t”h]”hŒumode_t”…””}”(hjw+  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjt+  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jy+  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jÌ*  Œc.security_inode_create”†”asbuh1hhjp+  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj•+  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjp+  ubjp  )”}”(hŒmode”h]”hŒmode”…””}”(hj£+  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjp+  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjŠ*  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjQ*  h²hh³jc*  h´MPubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjM*  h²hh³jc*  h´MPubah}”(h]”jH*  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jc*  h´MPhjJ*  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ#Check if creating a file is allowed”h]”hŒ#Check if creating a file is allowed”…””}”(hjÍ+  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MPhjÊ+  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjJ*  h²hh³jc*  h´MPubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jå+  j#  jå+  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX  **Parameters**

``struct inode *dir``
  the parent directory

``struct dentry *dentry``
  the file being created

``umode_t mode``
  requested file mode

**Description**

Check permission to create a regular file.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjï+  h]”hŒ
Parameters”…””}”(hjñ+  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjí+  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MThjé+  ubjH  )”}”(hhh]”(jM  )”}”(hŒ+``struct inode *dir``
the parent directory
”h]”(jS  )”}”(hŒ``struct inode *dir``”h]”hë)”}”(hj,  h]”hŒstruct inode *dir”…””}”(hj,  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj,  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MQhj,  ubjm  )”}”(hhh]”hÌ)”}”(hŒthe parent directory”h]”hŒthe parent directory”…””}”(hj',  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j#,  h´MQhj$,  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj,  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j#,  h´MQhj,  ubjM  )”}”(hŒ1``struct dentry *dentry``
the file being created
”h]”(jS  )”}”(hŒ``struct dentry *dentry``”h]”hë)”}”(hjG,  h]”hŒstruct dentry *dentry”…””}”(hjI,  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjE,  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MRhjA,  ubjm  )”}”(hhh]”hÌ)”}”(hŒthe file being created”h]”hŒthe file being created”…””}”(hj`,  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j\,  h´MRhj],  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjA,  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j\,  h´MRhj,  ubjM  )”}”(hŒ%``umode_t mode``
requested file mode
”h]”(jS  )”}”(hŒ``umode_t mode``”h]”hë)”}”(hj€,  h]”hŒumode_t mode”…””}”(hj‚,  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj~,  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MShjz,  ubjm  )”}”(hhh]”hÌ)”}”(hŒrequested file mode”h]”hŒrequested file mode”…””}”(hj™,  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j•,  h´MShj–,  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjz,  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j•,  h´MShj,  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjé+  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj»,  h]”hŒDescription”…””}”(hj½,  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj¹,  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MUhjé+  ubhÌ)”}”(hŒ*Check permission to create a regular file.”h]”hŒ*Check permission to create a regular file.”…””}”(hjÑ,  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MThjé+  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjâ,  h]”hŒReturn”…””}”(hjä,  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjà,  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MVhjé+  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hjø,  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MWhjé+  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ!security_inode_mkdir (C function)”Œc.security_inode_mkdir”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒQint security_inode_mkdir (struct inode *dir, struct dentry *dentry, umode_t mode)”h]”jA  )”}”(hŒPint security_inode_mkdir(struct inode *dir, struct dentry *dentry, umode_t mode)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj'-  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj#-  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”•      h´M¦ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj6-  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj#-  h²hh³j5-  h´M¦ubjj  )”}”(hŒsecurity_inode_mkdir”h]”jp  )”}”(hŒsecurity_inode_mkdir”h]”hŒsecurity_inode_mkdir”…””}”(hjH-  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjD-  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj#-  h²hh³j5-  h´M¦ubj‹  )”}”(hŒ8(struct inode *dir, struct dentry *dentry, umode_t mode)”h]”(j‘  )”}”(hŒstruct inode *dir”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjd-  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj`-  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjq-  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj`-  ubh)”}”(hhh]”jp  )”}”(hŒinode”h]”hŒinode”…””}”(hj‚-  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj-  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j„-  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jJ-  sbŒc.security_inode_mkdir”†”asbuh1hhj`-  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¢-  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj`-  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj°-  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj`-  ubjp  )”}”(hŒdir”h]”hŒdir”…””}”(hj½-  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj`-  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj\-  ubj‘  )”}”(hŒstruct dentry *dentry”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjÖ-  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjÒ-  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjã-  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÒ-  ubh)”}”(hhh]”jp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hjô-  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjñ-  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jö-  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jž-  Œc.security_inode_mkdir”†”asbuh1hhjÒ-  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj.  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÒ-  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj .  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjÒ-  ubjp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hj-.  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÒ-  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj\-  ubj‘  )”}”(hŒumode_t mode”h]”(h)”}”(hhh]”jp  )”}”(hŒumode_t”h]”hŒumode_t”…””}”(hjI.  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjF.  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jK.  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jž-  Œc.security_inode_mkdir”†”asbuh1hhjB.  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjg.  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjB.  ubjp  )”}”(hŒmode”h]”hŒmode”…””}”(hju.  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjB.  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj\-  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj#-  h²hh³j5-  h´M¦ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj-  h²hh³j5-  h´M¦ubah}”(h]”j-  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j5-  h´M¦hj-  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ,Check if creating a new directory is allowed”h]”hŒ,Check if creating a new directory is allowed”…””}”(hjŸ.  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¦hjœ.  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj-  h²hh³j5-  h´M¦ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j·.  j#  j·.  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX<  **Parameters**

``struct inode *dir``
  parent directory

``struct dentry *dentry``
  new directory

``umode_t mode``
  new directory mode

**Description**

Check permissions to create a new directory in the existing directory
associated with inode structure **dir**.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjÁ.  h]”hŒ
Parameters”…””}”(hjÃ.  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj¿.  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mªhj».  ubjH  )”}”(hhh]”(jM  )”}”(hŒ'``struct inode *dir``
parent directory
”h]”(jS  )”}”(hŒ``struct inode *dir``”h]”hë)”}”(hjà.  h]”hŒstruct inode *dir”…””}”(hjâ.  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjÞ.  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M§hjÚ.  ubjm  )”}”(hhh]”hÌ)”}”(hŒparent directory”h]”hŒparent directory”…””}”(hjù.  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jõ.  h´M§hjö.  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÚ.  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jõ.  h´M§hj×.  ubjM  )”}”(hŒ(``struct dentry *dentry``
new directory
”h]”(jS  )”}”(hŒ``struct dentry *dentry``”h]”hë)”}”(hj/  h]”hŒstruct dentry *dentry”…””}”(hj/  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj/  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¨hj/  ubjm  )”}”(hhh]”hÌ)”}”(hŒnew directory”h]”hŒnew directory”…””}”(hj2/  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j./  h´M¨hj//  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj/  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j./  h´M¨hj×.  ubjM  )”}”(hŒ$``umode_t mode``
new directory mode
”h]”(jS  )”}”(hŒ``umode_t mode``”h]”hë)”}”(hjR/  h]”hŒumode_t mode”…””}”(hjT/  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjP/  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M©hjL/  ubjm  )”}”(hhh]”hÌ)”}”(hŒnew directory mode”h]”hŒnew directory mode”…””}”(hjk/  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jg/  h´M©hjh/  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjL/  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jg/  h´M©hj×.  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj».  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj/  h]”hŒDescription”…””}”(hj/  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj‹/  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M«hj».  ubhÌ)”}”(hŒnCheck permissions to create a new directory in the existing directory
associated with inode structure **dir**.”h]”(hŒfCheck permissions to create a new directory in the existing directory
associated with inode structure ”…””}”(hj£/  h²hh³Nh´Nubj2  )”}”(hŒ**dir**”h]”hŒdir”…””}”(hj«/  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj£/  ubhŒ.”…””}”(hj£/  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mªhj».  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjÆ/  h]”hŒReturn”…””}”(hjÈ/  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÄ/  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M­hj».  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hjÜ/  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M®hj».  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ#security_inode_setattr (C function)”Œc.security_inode_setattr”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ_int security_inode_setattr (struct mnt_idmap *idmap, struct dentry *dentry, struct iattr *attr)”h]”jA  )”}”(hŒ^int security_inode_setattr(struct mnt_idmap *idmap, struct dentry *dentry, struct iattr *attr)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj0  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj0  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M6ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj0  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj0  h²hh³j0  h´M6ubjj  )”}”(hŒsecurity_inode_setattr”h]”jp  )”}”(hŒsecurity_inode_setattr”h]”hŒsecurity_inode_setattr”…””}”(hj,0  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj(0  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj0  h²hh³j0  h´M6ubj‹  )”}”(hŒD(struct mnt_idmap *idmap, struct dentry *dentry, struct iattr *attr)”h]”(j‘  )”}”(hŒstruct mnt_idmap *idmap”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjH0  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjD0  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjU0  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjD0  ubh)”}”(hhh]”jp  )”}”(hŒ	mnt_idmap”h]”hŒ	mnt_idmap”…””}”(hjf0  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjc0  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jh0  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j.0  sbŒc.security_inode_setattr”†”asbuh1hhjD0  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj†0  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjD0  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj”0  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjD0  ubjp  )”}”(hŒidmap”h]”hŒidmap”…””}”(hj¡0  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjD0  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj@0  ubj‘  )”}”(hŒstruct dentry *dentry”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjº0  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj¶0  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÇ0  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¶0  ubh)”}”(hhh]”jp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hjØ0  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÕ0  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jÚ0  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j‚0  Œc.security_inode_setattr”†”asbuh1hhj¶0  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjö0  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¶0  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj1  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj¶0  ubjp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hj1  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¶0  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj@0  ubj‘  )”}”(hŒstruct iattr *attr”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj*1  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj&1  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj71  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj&1  ubh)”}”(hhh]”jp  )”}”(hŒiattr”h]”hŒiattr”…””}”(hjH1  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjE1  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jJ1  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j‚0  Œc.security_inode_setattr”†”asbuh1hhj&1  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjf1  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj&1  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjt1  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj&1  ubjp  )”}”(hŒattr”h]”hŒattr”…””}”(hj1  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj&1  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj@0  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj0  h²hh³j0  h´M6ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj0  h²hh³j0  h´M6ubah}”(h]”jþ/  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j0  h´M6hj 0  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ+Check if setting file attributes is allowed”h]”hŒ+Check if setting file attributes is allowed”…””}”(hj«1  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M6hj¨1  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj 0  h²hh³j0  h´M6ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jÃ1  j#  jÃ1  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hXË  **Parameters**

``struct mnt_idmap *idmap``
  idmap of the mount

``struct dentry *dentry``
  file

``struct iattr *attr``
  new attributes

**Description**

Check permission before setting file attributes.  Note that the kernel call
to notify_change is performed from several locations, whenever file
attributes change (such as when a file is truncated, chown/chmod operations,
transferring disk quotas, etc).

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjÍ1  h]”hŒ
Parameters”…””}”(hjÏ1  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjË1  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M:hjÇ1  ubjH  )”}”(hhh]”(jM  )”}”(hŒ/``struct mnt_idmap *idmap``
idmap of the mount
”h]”(jS  )”}”(hŒ``struct mnt_idmap *idmap``”h]”hë)”}”(hjì1  h]”hŒstruct mnt_idmap *idmap”…””}”(hjî1  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjê1  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M7hjæ1  ubjm  )”}”(hhh]”hÌ)”}”(hŒidmap of the mount”h]”hŒidmap of the mount”…””}”(hj2  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j2  h´M7hj2  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjæ1  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j2  h´M7hjã1  ubjM  )”}”(hŒ``struct dentry *dentry``
file
”h]”(jS  )”}”(hŒ``struct dentry *dentry``”h]”hë)”}”(hj%2  h]”hŒstruct dentry *dentry”…””}”(hj'2  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj#2  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M8hj2  ubjm  )”}”(hhh]”hÌ)”}”(hŒfile”h]”hŒfile”…””}”(hj>2  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j:2  h´M8hj;2  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj2  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j:2  h´M8hjã1  ubjM  )”}”(hŒ&``struct iattr *attr``
new attributes
”h]”(jS  )”}”(hŒ``struct iattr *attr``”h]”hë)”}”(hj^2  h]”hŒstruct iattr *attr”…””}”(hj`2  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj\2  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M9hjX2  ubjm  )”}”(hhh]”hÌ)”}”(hŒnew attributes”h]”hŒnew attributes”…””}”(hjw2  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³js2  h´M9hjt2  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjX2  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³js2  h´M9hjã1  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjÇ1  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj™2  h]”hŒDescription”…””}”(hj›2  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj—2  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M;hjÇ1  ubhÌ)”}”(hŒüCheck permission before setting file attributes.  Note that the kernel call
to notify_change is performed from several locations, whenever file
attributes change (such as when a file is truncated, chown/chmod operations,
transferring disk quotas, etc).”h]”hŒüCheck permission before setting file attributes.  Note that the kernel call
to notify_change is performed from several locations, whenever file
attributes change (such as when a file is truncated, chown/chmod operations,
transferring disk quotas, etc).”…””}”(hj¯2  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M:hjÇ1  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjÀ2  h]”hŒReturn”…””}”(hjÂ2  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj¾2  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M?hjÇ1  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hjÖ2  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M@hjÇ1  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ(security_inode_listsecurity (C function)”Œc.security_inode_listsecurity”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒWint security_inode_listsecurity (struct inode *inode, char *buffer, size_t buffer_size)”h]”jA  )”}”(hŒVint security_inode_listsecurity(struct inode *inode, char *buffer, size_t buffer_size)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj3  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj3  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÓubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj3  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj3  h²hh³j3  h´MÓubjj  )”}”(hŒsecurity_inode_listsecurity”h]”jp  )”}”(hŒsecurity_inode_listsecurity”h]”hŒsecurity_inode_listsecurity”…””}”(hj&3  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj"3  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj3  h²hh³j3  h´MÓubj‹  )”}”(hŒ7(struct inode *inode, char *buffer, size_t buffer_size)”h]”(j‘  )”}”(hŒstruct inode *inode”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjB3  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj>3  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjO3  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj>3  ubh)”}”(hhh]”jp  )”}”(hŒinode”h]”hŒinode”…””}”(hj`3  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj]3  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jb3  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j(3  sbŒc.security_inode_listsecurity”†”asbuh1hhj>3  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj€3  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj>3  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjŽ3  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj>3  ubjp  )”}”(hŒinode”h]”hŒinode”…””}”(hj›3  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj>3  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj:3  ubj‘  )”}”(hŒchar *buffer”h]”(jG  )”}”(hŒchar”h]”hŒchar”…””}”(hj´3  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj°3  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÂ3  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj°3  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjÐ3  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj°3  ubjp  )”}”(hŒbuffer”h]”hŒbuffer”…””}”(hjÝ3  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj°3  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj:3  ubj‘  )”}”(hŒsize_t buffer_size”h]”(h)”}”(hhh]”jp  )”}”(hŒsize_t”h]”hŒsize_t”…””}”(hjù3  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjö3  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jû3  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j|3  Œc.security_inode_listsecurity”†”asbuh1hhjò3  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj4  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjò3  ubjp  )”}”(hŒbuffer_size”h]”hŒbuffer_size”…””}”(hj%4  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjò3  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj:3  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj3  h²hh³j3  h´MÓubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjý2  h²hh³j3  h´MÓubah}”(h]”jø2  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j3  h´MÓhjú2  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ#List the xattr security label names”h]”hŒ#List the xattr security label names”…””}”(hjO4  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÓhjL4  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjú2  h²hh³j3  h´MÓubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jg4  j#  jg4  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX®  **Parameters**

``struct inode *inode``
  inode

``char *buffer``
  buffer

``size_t buffer_size``
  size of buffer

**Description**

Copy the extended attribute names for the security labels associated with
**inode** into **buffer**.  The maximum size of **buffer** is specified by
**buffer_size**.  **buffer** may be NULL to request the size of the buffer
required.

**Return**

Returns number of bytes used/required on success.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjq4  h]”hŒ
Parameters”…””}”(hjs4  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjo4  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M×hjk4  ubjH  )”}”(hhh]”(jM  )”}”(hŒ``struct inode *inode``
inode
”h]”(jS  )”}”(hŒ``struct inode *inode``”h]”hë)”}”(hj4  h]”hŒstruct inode *inode”…””}”(hj’4  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjŽ4  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÔhjŠ4  ubjm  )”}”(hhh]”hÌ)”}”(hŒinode”h]”hŒinode”…””}”(hj©4  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j¥4  h´MÔhj¦4  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjŠ4  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j¥4  h´MÔhj‡4  ubjM  )”}”(hŒ``char *buffer``
buffer
”h]”(jS  )”}”(hŒ``char *buffer``”h]”hë)”}”(hjÉ4  h]”hŒchar *buffer”…””}”(hjË4  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjÇ4  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÕhjÃ4  ubjm  )”}”(hhh]”hÌ)”}”(hŒbuffer”h]”hŒbuffer”…””}”(hjâ4  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÞ4  h´MÕhjß4  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÃ4  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÞ4  h´MÕhj‡4  ubjM  )”}”(hŒ&``size_t buffer_size``
size of buffer
”h]”(jS  )”}”(hŒ``size_t buffer_size``”h]”hë)”}”(hj5  h]”hŒsize_t buffer_size”…””}”(hj5  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj 5  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÖhjü4  ubjm  )”}”(hhh]”hÌ)”}”(hŒsize of buffer”h]”hŒsize of buffer”…””}”(hj5  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j5  h´MÖhj5  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjü4  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j5  h´MÖhj‡4  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjk4  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj=5  h]”hŒDescription”…””}”(hj?5  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj;5  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MØhjk4  ubhÌ)”}”(hŒéCopy the extended attribute names for the security labels associated with
**inode** into **buffer**.  The maximum size of **buffer** is specified by
**buffer_size**.  **buffer** may be NULL to request the size of the buffer
required.”h]”(hŒJCopy the extended attribute names for the security labels associated with
”…””}”(hjS5  h²hh³Nh´Nubj2  )”}”(hŒ	**inode**”h]”hŒinode”…””}”(hj[5  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjS5  ubhŒ into ”…””}”(hjS5  h²hh³Nh´Nubj2  )”}”(hŒ
**buffer**”h]”hŒbuffer”…””}”(hjm5  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjS5  ubhŒ.  The maximum size of ”…””}”(hjS5  h²hh³Nh´Nubj2  )”}”(hŒ
**buffer**”h]”hŒbuffer”…””}”(hj5  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjS5  ubhŒ is specified by
”…””}”(hjS5  h²hh³Nh´Nubj2  )”}”(hŒ**buffer_size**”h]”hŒbuffer_size”…””}”(hj‘5  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjS5  ubhŒ.  ”…””}”(hjS5  h²hh³Nh´Nubj2  )”}”(hŒ
**buffer**”h]”hŒbuffer”…””}”(hj£5  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjS5  ubhŒ8 may be NULL to request the size of the buffer
required.”…””}”(hjS5  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M×hjk4  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj¾5  h]”hŒReturn”…””}”(hjÀ5  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj¼5  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÜhjk4  ubhÌ)”}”(hŒ1Returns number of bytes used/required on success.”h]”hŒ1Returns number of bytes used/required on success.”…””}”(hjÔ5  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÝhjk4  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ#security_inode_copy_up (C function)”Œc.security_inode_copy_up”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒBint security_inode_copy_up (struct dentry *src, struct cred **new)”h]”jA  )”}”(hŒAint security_inode_copy_up(struct dentry *src, struct cred **new)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj6  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÿ5  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MõubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj6  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÿ5  h²hh³j6  h´Mõubjj  )”}”(hŒsecurity_inode_copy_up”h]”jp  )”}”(hŒsecurity_inode_copy_up”h]”hŒsecurity_inode_copy_up”…””}”(hj$6  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj 6  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjÿ5  h²hh³j6  h´Mõubj‹  )”}”(hŒ'(struct dentry *src, struct cred **new)”h]”(j‘  )”}”(hŒstruct dentry *src”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj@6  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj<6  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjM6  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj<6  ubh)”}”(hhh]”jp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hj^6  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj[6  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j`6  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j&6  sbŒc.security_inode_copy_up”†”asbuh1hhj<6  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj~6  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj<6  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjŒ6  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj<6  ubjp  )”}”(hŒsrc”h]”hŒsrc”…””}”(hj™6  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj<6  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj86  ubj‘  )”}”(hŒstruct cred **new”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj²6  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj®6  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¿6  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj®6  ubh)”}”(hhh]”jp  )”}”(hŒcred”h]”hŒcred”…””}”(hjÐ6  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÍ6  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jÒ6  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jz6  Œc.security_inode_copy_up”†”asbuh1hhj®6  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjî6  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj®6  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjü6  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj®6  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj	7  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj®6  ubjp  )”}”(hŒnew”h]”hŒnew”…””}”(hj7  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj®6  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj86  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjÿ5  h²hh³j6  h´Mõubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjû5  h²hh³j6  h´Mõubah}”(h]”jö5  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j6  h´Mõhjø5  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ,Create new creds for an overlayfs copy-up op”h]”hŒ,Create new creds for an overlayfs copy-up op”…””}”(hj@7  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mõhj=7  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjø5  h²hh³j6  h´Mõubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jX7  j#  jX7  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hXÝ  **Parameters**

``struct dentry *src``
  union dentry of copy-up file

``struct cred **new``
  newly created creds

**Description**

A file is about to be copied up from lower layer to upper layer of overlay
filesystem. Security module can prepare a set of new creds and modify as
need be and return new creds. Caller will switch to new creds temporarily to
create new file and release newly allocated creds.

**Return**

Returns 0 on success or a negative error code on error.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjb7  h]”hŒ
Parameters”…””}”(hjd7  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj`7  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mùhj\7  ubjH  )”}”(hhh]”(jM  )”}”(hŒ4``struct dentry *src``
union dentry of copy-up file
”h]”(jS  )”}”(hŒ``struct dentry *src``”h]”hë)”}”(hj7  h]”hŒstruct dentry *src”…””}”(hjƒ7  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj7  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Möhj{7  ubjm  )”}”(hhh]”hÌ)”}”(hŒunion dentry of copy-up file”h]”hŒunion dentry of copy-up file”…””}”(hjš7  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j–7  h´Möhj—7  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj{7  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j–7  h´Möhjx7  ubjM  )”}”(hŒ*``struct cred **new``
newly created creds
”h]”(jS  )”}”(hŒ``struct cred **new``”h]”hë)”}”(hjº7  h]”hŒstruct cred **new”…””}”(hj¼7  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj¸7  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M÷hj´7  ubjm  )”}”(hhh]”hÌ)”}”(hŒnewly created creds”h]”hŒnewly created creds”…””}”(hjÓ7  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÏ7  h´M÷hjÐ7  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj´7  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÏ7  h´M÷hjx7  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj\7  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjõ7  h]”hŒDescription”…””}”(hj÷7  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjó7  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mùhj\7  ubhÌ)”}”(hX  A file is about to be copied up from lower layer to upper layer of overlay
filesystem. Security module can prepare a set of new creds and modify as
need be and return new creds. Caller will switch to new creds temporarily to
create new file and release newly allocated creds.”h]”hX  A file is about to be copied up from lower layer to upper layer of overlay
filesystem. Security module can prepare a set of new creds and modify as
need be and return new creds. Caller will switch to new creds temporarily to
create new file and release newly allocated creds.”…””}”(hj8  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Møhj\7  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj8  h]”hŒReturn”…””}”(hj8  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj8  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mýhj\7  ubhÌ)”}”(hŒ7Returns 0 on success or a negative error code on error.”h]”hŒ7Returns 0 on success or a negative error code on error.”…””}”(hj28  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mþhj\7  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ)security_inode_copy_up_xattr (C function)”Œc.security_inode_copy_up_xattr”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒGint security_inode_copy_up_xattr (struct dentry *src, const char *name)”h]”jA  )”}”(hŒFint security_inode_copy_up_xattr(struct dentry *src, const char *name)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hja8  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj]8  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M	ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjp8  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj]8  h²hh³jo8  h´M	ubjj  )”}”(hŒsecurity_inode_copy_up_xattr”h]”jp  )”}”(hŒsecurity_inode_copy_up_xattr”h]”hŒsecurity_inode_copy_up_xattr”…””}”(hj‚8  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj~8  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj]8  h²hh³jo8  h´M	ubj‹  )”}”(hŒ&(struct dentry *src, const char *name)”h]”(j‘  )”}”(hŒstruct dentry *src”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjž8  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjš8  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj«8  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjš8  ubh)”}”(hhh]”jp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hj¼8  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¹8  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j¾8  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j„8  sbŒc.security_inode_copy_up_xattr”†”asbuh1hhjš8  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÜ8  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjš8  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjê8  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjš8  ubjp  )”}”(hŒsrc”h]”hŒsrc”…””}”(hj÷8  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjš8  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj–8  ubj‘  )”}”(hŒconst char *name”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hj9  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj9  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj9  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj9  ubjG  )”}”(hŒchar”h]”hŒchar”…””}”(hj+9  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj9  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj99  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj9  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjG9  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj9  ubjp  )”}”(hŒname”h]”hŒname”…””}”(hjT9  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj9  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj–8  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj]8  h²hh³jo8  h´M	ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjY8  h²hh³jo8  h´M	ubah}”(h]”jT8  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jo8  h´M	hjV8  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ(Filter xattrs in an overlayfs copy-up op”h]”hŒ(Filter xattrs in an overlayfs copy-up op”…””}”(hj~9  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M	hj{9  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjV8  h²hh³jo8  h´M	ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j–9  j#  j–9  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX  **Parameters**

``struct dentry *src``
  union dentry of copy-up file

``const char *name``
  xattr name

**Description**

Filter the xattrs being copied up when a unioned file is copied up from a
lower layer to the union/overlay layer.   The caller is responsible for
reading and writing the xattrs, this hook is merely a filter.

**Return**

Returns 0 to accept the xattr, -ECANCELED to discard the xattr,
-EOPNOTSUPP if the security module does not know about attribute,
or a negative error code to abort the copy up.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj 9  h]”hŒ
Parameters”…””}”(hj¢9  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjž9  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M	hjš9  ubjH  )”}”(hhh]”(jM  )”}”(hŒ4``struct dentry *src``
union dentry of copy-up file
”h]”(jS  )”}”(hŒ``struct dentry *src``”h]”hë)”}”(hj¿9  h]”hŒstruct dentry *src”…””}”(hjÁ9  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj½9  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M	hj¹9  ubjm  )”}”(hhh]”hÌ)”}”(hŒunion dentry of copy-up file”h]”hŒunion dentry of copy-up file”…””}”(hjØ9  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÔ9  h´M	hjÕ9  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj¹9  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÔ9  h´M	hj¶9  ubjM  )”}”(hŒ ``const char *name``
xattr name
”h]”(jS  )”}”(hŒ``const char *name``”h]”hë)”}”(hjø9  h]”hŒconst char *name”…””}”(hjú9  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjö9  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M		hjò9  ubjm  )”}”(hhh]”hÌ)”}”(hŒ
xattr name”h]”hŒ
xattr name”…””}”(hj:  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j:  h´M		hj:  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjò9  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j:  h´M		hj¶9  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjš9  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj3:  h]”hŒDescription”…””}”(hj5:  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj1:  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M	hjš9  ubhÌ)”}”(hŒÏFilter the xattrs being copied up when a unioned file is copied up from a
lower layer to the union/overlay layer.   The caller is responsible for
reading and writing the xattrs, this hook is merely a filter.”h]”hŒÏFilter the xattrs being copied up when a unioned file is copied up from a
lower layer to the union/overlay layer.   The caller is responsible for
reading and writing the xattrs, this hook is merely a filter.”…””}”(hjI:  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M
	hjš9  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjZ:  h]”hŒReturn”…””}”(hj\:  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjX:  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M	hjš9  ubhÌ)”}”(hŒ°Returns 0 to accept the xattr, -ECANCELED to discard the xattr,
-EOPNOTSUPP if the security module does not know about attribute,
or a negative error code to abort the copy up.”h]”hŒ°Returns 0 to accept the xattr, -ECANCELED to discard the xattr,
-EOPNOTSUPP if the security module does not know about attribute,
or a negative error code to abort the copy up.”…””}”(hjp:  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M	hjš9  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ(security_inode_setintegrity (C function)”Œc.security_inode_setintegrity”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒyint security_inode_setintegrity (const struct inode *inode, enum lsm_integrity_type type, const void *value, size_t size)”h]”jA  )”}”(hŒxint security_inode_setintegrity(const struct inode *inode, enum lsm_integrity_type type, const void *value, size_t size)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjŸ:  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj›:  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M 	ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj®:  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj›:  h²hh³j­:  h´M 	ubjj  )”}”(hŒsecurity_inode_setintegrity”h]”jp  )”}”(hŒsecurity_inode_setintegrity”h]”hŒsecurity_inode_setintegrity”…””}”(hjÀ:  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¼:  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj›:  h²hh³j­:  h´M 	ubj‹  )”}”(hŒY(const struct inode *inode, enum lsm_integrity_type type, const void *value, size_t size)”h]”(j‘  )”}”(hŒconst struct inode *inode”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hjÜ:  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjØ:  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjé:  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjØ:  ubjL  )”}”(hjO  h]”hŒstruct”…””}”(hj÷:  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjØ:  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj;  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjØ:  ubh)”}”(hhh]”jp  )”}”(hŒinode”h]”hŒinode”…””}”(hj;  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj;  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j;  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jÂ:  sbŒc.security_inode_setintegrity”†”asbuh1hhjØ:  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj5;  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjØ:  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjC;  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjØ:  ubjp  )”}”(hŒinode”h]”hŒinode”…””}”(hjP;  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjØ:  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÔ:  ubj‘  )”}”(hŒenum lsm_integrity_type type”h]”(jL  )”}”(hŒenum”h]”hŒenum”…””}”(hji;  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hje;  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjw;  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hje;  ubh)”}”(hhh]”jp  )”}”(hŒlsm_integrity_type”h]”hŒlsm_integrity_type”…””}”(hjˆ;  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj…;  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jŠ;  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j1;  Œc.security_inode_setintegrity”†”asbuh1hhje;  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¦;  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hje;  ubjp  )”}”(hŒtype”h]”hŒtype”…””}”(hj´;  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hje;  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÔ:  ubj‘  )”}”(hŒconst void *value”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hjÍ;  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjÉ;  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÚ;  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÉ;  ubjG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjè;  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÉ;  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjö;  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÉ;  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj<  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjÉ;  ubjp  )”}”(hŒvalue”h]”hŒvalue”…””}”(hj<  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÉ;  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÔ:  ubj‘  )”}”(hŒsize_t size”h]”(h)”}”(hhh]”jp  )”}”(hŒsize_t”h]”hŒsize_t”…””}”(hj-<  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj*<  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j/<  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j1;  Œc.security_inode_setintegrity”†”asbuh1hhj&<  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjK<  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj&<  ubjp  )”}”(hŒsize”h]”hŒsize”…””}”(hjY<  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj&<  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÔ:  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj›:  h²hh³j­:  h´M 	ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj—:  h²hh³j­:  h´M 	ubah}”(h]”j’:  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j­:  h´M 	hj”:  h²hubj   )”}”(hhh]”hÌ)”}”(hŒSet the inode's integrity data”h]”hŒ Set the inodeâ€™s integrity data”…””}”(hjƒ<  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M 	hj€<  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj”:  h²hh³j­:  h´M 	ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j›<  j#  j›<  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX»  **Parameters**

``const struct inode *inode``
  inode

``enum lsm_integrity_type type``
  type of integrity, e.g. hash digest, signature, etc

``const void *value``
  the integrity value

``size_t size``
  size of the integrity value

**Description**

Register a verified integrity measurement of a inode with LSMs.
LSMs should free the previously saved data if **value** is NULL.

**Return**

Returns 0 on success, negative values on failure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj¥<  h]”hŒ
Parameters”…””}”(hj§<  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj£<  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M$	hjŸ<  ubjH  )”}”(hhh]”(jM  )”}”(hŒ$``const struct inode *inode``
inode
”h]”(jS  )”}”(hŒ``const struct inode *inode``”h]”hë)”}”(hjÄ<  h]”hŒconst struct inode *inode”…””}”(hjÆ<  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjÂ<  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M!	hj¾<  ubjm  )”}”(hhh]”hÌ)”}”(hŒinode”h]”hŒinode”…””}”(hjÝ<  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÙ<  h´M!	hjÚ<  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj¾<  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÙ<  h´M!	hj»<  ubjM  )”}”(hŒU``enum lsm_integrity_type type``
type of integrity, e.g. hash digest, signature, etc
”h]”(jS  )”}”(hŒ ``enum lsm_integrity_type type``”h]”hë)”}”(hjý<  h]”hŒenum lsm_integrity_type type”…””}”(hjÿ<  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjû<  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M"	hj÷<  ubjm  )”}”(hhh]”hÌ)”}”(hŒ3type of integrity, e.g. hash digest, signature, etc”h]”hŒ3type of integrity, e.g. hash digest, signature, etc”…””}”(hj=  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j=  h´M"	hj=  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj÷<  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j=  h´M"	hj»<  ubjM  )”}”(hŒ*``const void *value``
the integrity value
”h]”(jS  )”}”(hŒ``const void *value``”h]”hë)”}”(hj6=  h]”hŒconst void *value”…””}”(hj8=  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj4=  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M#	hj0=  ubjm  )”}”(hhh]”hÌ)”}”(hŒthe integrity value”h]”hŒthe integrity value”…””}”(hjO=  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jK=  h´M#	hjL=  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj0=  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jK=  h´M#	hj»<  ubjM  )”}”(hŒ,``size_t size``
size of the integrity value
”h]”(jS  )”}”(hŒ``size_t size``”h]”hë)”}”(hjo=  h]”hŒsize_t size”…””}”(hjq=  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjm=  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M$	hji=  ubjm  )”}”(hhh]”hÌ)”}”(hŒsize of the integrity value”h]”hŒsize of the integrity value”…””}”(hjˆ=  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j„=  h´M$	hj…=  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hji=  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j„=  h´M$	hj»<  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjŸ<  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjª=  h]”hŒDescription”…””}”(hj¬=  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj¨=  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M&	hjŸ<  ubhÌ)”}”(hŒ€Register a verified integrity measurement of a inode with LSMs.
LSMs should free the previously saved data if **value** is NULL.”h]”(hŒnRegister a verified integrity measurement of a inode with LSMs.
LSMs should free the previously saved data if ”…””}”(hjÀ=  h²hh³Nh´Nubj2  )”}”(hŒ	**value**”h]”hŒvalue”…””}”(hjÈ=  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÀ=  ubhŒ	 is NULL.”…””}”(hjÀ=  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M%	hjŸ<  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjã=  h]”hŒReturn”…””}”(hjå=  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjá=  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M(	hjŸ<  ubhÌ)”}”(hŒ1Returns 0 on success, negative values on failure.”h]”hŒ1Returns 0 on success, negative values on failure.”…””}”(hjù=  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M)	hjŸ<  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ security_file_ioctl (C function)”Œc.security_file_ioctl”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒPint security_file_ioctl (struct file *file, unsigned int cmd, unsigned long arg)”h]”jA  )”}”(hŒOint security_file_ioctl(struct file *file, unsigned int cmd, unsigned long arg)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj(>  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj$>  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÂ	ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj7>  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj$>  h²hh³j6>  h´MÂ	ubjj  )”}”(hŒsecurity_file_ioctl”h]”jp  )”}”(hŒsecurity_file_ioctl”h]”hŒsecurity_file_ioctl”…””}”(hjI>  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjE>  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj$>  h²hh³j6>  h´MÂ	ubj‹  )”}”(hŒ8(struct file *file, unsigned int cmd, unsigned long arg)”h]”(j‘  )”}”(hŒstruct file *file”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hje>  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hja>  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjr>  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hja>  ubh)”}”(hhh]”jp  )”}”(hŒfile”h]”hŒfile”…””}”(hjƒ>  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj€>  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j…>  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jK>  sbŒc.security_file_ioctl”†”asbuh1hhja>  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj£>  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hja>  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj±>  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hja>  ubjp  )”}”(hŒfile”h]”hŒfile”…””}”(hj¾>  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hja>  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj]>  ubj‘  )”}”(hŒunsigned int cmd”h]”(jG  )”}”(hŒunsigned”h]”hŒunsigned”…””}”(hj×>  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÓ>  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjå>  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÓ>  ubjG  )”}”(hŒint”h]”hŒint”…””}”(hjó>  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÓ>  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj?  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÓ>  ubjp  )”}”(hŒcmd”h]”hŒcmd”…””}”(hj?  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÓ>  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj]>  ubj‘  )”}”(hŒunsigned long arg”h]”(jG  )”}”(hŒunsigned”h]”hŒunsigned”…””}”(hj(?  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj$?  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj6?  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj$?  ubjG  )”}”(hŒlong”h]”hŒlong”…””}”(hjD?  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj$?  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjR?  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj$?  ubjp  )”}”(hŒarg”h]”hŒarg”…””}”(hj`?  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj$?  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj]>  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj$>  h²hh³j6>  h´MÂ	ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj >  h²hh³j6>  h´MÂ	ubah}”(h]”j>  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j6>  h´MÂ	hj>  h²hubj   )”}”(hhh]”hÌ)”}”(hŒCheck if an ioctl is allowed”h]”hŒCheck if an ioctl is allowed”…””}”(hjŠ?  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÂ	hj‡?  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj>  h²hh³j6>  h´MÂ	ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j¢?  j#  j¢?  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hXÉ  **Parameters**

``struct file *file``
  associated file

``unsigned int cmd``
  ioctl cmd

``unsigned long arg``
  ioctl arguments

**Description**

Check permission for an ioctl operation on **file**.  Note that **arg** sometimes
represents a user space pointer; in other cases, it may be a simple integer
value.  When **arg** represents a user space pointer, it should never be used
by the security module.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj¬?  h]”hŒ
Parameters”…””}”(hj®?  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjª?  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÆ	hj¦?  ubjH  )”}”(hhh]”(jM  )”}”(hŒ&``struct file *file``
associated file
”h]”(jS  )”}”(hŒ``struct file *file``”h]”hë)”}”(hjË?  h]”hŒstruct file *file”…””}”(hjÍ?  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjÉ?  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÃ	hjÅ?  ubjm  )”}”(hhh]”hÌ)”}”(hŒassociated file”h]”hŒassociated file”…””}”(hjä?  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jà?  h´MÃ	hjá?  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÅ?  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jà?  h´MÃ	hjÂ?  ubjM  )”}”(hŒ``unsigned int cmd``
ioctl cmd
”h]”(jS  )”}”(hŒ``unsigned int cmd``”h]”hë)”}”(hj@  h]”hŒunsigned int cmd”…””}”(hj@  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj@  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÄ	hjþ?  ubjm  )”}”(hhh]”hÌ)”}”(hŒ	ioctl cmd”h]”hŒ	ioctl cmd”…””}”(hj@  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j@  h´MÄ	hj@  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjþ?  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j@  h´MÄ	hjÂ?  ubjM  )”}”(hŒ&``unsigned long arg``
ioctl arguments
”h]”(jS  )”}”(hŒ``unsigned long arg``”h]”hë)”}”(hj=@  h]”hŒunsigned long arg”…””}”(hj?@  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj;@  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÅ	hj7@  ubjm  )”}”(hhh]”hÌ)”}”(hŒioctl arguments”h]”hŒioctl arguments”…””}”(hjV@  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jR@  h´MÅ	hjS@  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj7@  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jR@  h´MÅ	hjÂ?  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj¦?  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjx@  h]”hŒDescription”…””}”(hjz@  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjv@  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÇ	hj¦?  ubhÌ)”}”(hX  Check permission for an ioctl operation on **file**.  Note that **arg** sometimes
represents a user space pointer; in other cases, it may be a simple integer
value.  When **arg** represents a user space pointer, it should never be used
by the security module.”h]”(hŒ+Check permission for an ioctl operation on ”…””}”(hjŽ@  h²hh³Nh´Nubj2  )”}”(hŒ**file**”h]”hŒfile”…””}”(hj–@  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjŽ@  ubhŒ.  Note that ”…””}”(hjŽ@  h²hh³Nh´Nubj2  )”}”(hŒ**arg**”h]”hŒarg”…””}”(hj¨@  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjŽ@  ubhŒd sometimes
represents a user space pointer; in other cases, it may be a simple integer
value.  When ”…””}”(hjŽ@  h²hh³Nh´Nubj2  )”}”(hŒ**arg**”h]”hŒarg”…””}”(hjº@  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjŽ@  ubhŒQ represents a user space pointer, it should never be used
by the security module.”…””}”(hjŽ@  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÆ	hj¦?  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjÕ@  h]”hŒReturn”…””}”(hj×@  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÓ@  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MË	hj¦?  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hjë@  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÌ	hj¦?  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ'security_file_ioctl_compat (C function)”Œc.security_file_ioctl_compat”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒWint security_file_ioctl_compat (struct file *file, unsigned int cmd, unsigned long arg)”h]”jA  )”}”(hŒVint security_file_ioctl_compat(struct file *file, unsigned int cmd, unsigned long arg)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjA  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjA  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÕ	ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj)A  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjA  h²hh³j(A  h´MÕ	ubjj  )”}”(hŒsecurity_file_ioctl_compat”h]”jp  )”}”(hŒsecurity_file_ioctl_compat”h]”hŒsecurity_file_ioctl_compat”…””}”(hj;A  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj7A  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjA  h²hh³j(A  h´MÕ	ubj‹  )”}”(hŒ8(struct file *file, unsigned int cmd, unsigned long arg)”h]”(j‘  )”}”(hŒstruct file *file”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjWA  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjSA  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjdA  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjSA  ubh)”}”(hhh]”jp  )”}”(hŒfile”h]”hŒfile”…””}”(hjuA  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjrA  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jwA  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j=A  sbŒc.security_file_ioctl_compat”†”asbuh1hhjSA  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj•A  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjSA  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj£A  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjSA  ubjp  )”}”(hŒfile”h]”hŒfile”…””}”(hj°A  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjSA  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjOA  ubj‘  )”}”(hŒunsigned int cmd”h]”(jG  )”}”(hŒunsigned”h]”hŒunsigned”…””}”(hjÉA  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÅA  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj×A  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÅA  ubjG  )”}”(hŒint”h]”hŒint”…””}”(hjåA  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÅA  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjóA  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÅA  ubjp  )”}”(hŒcmd”h]”hŒcmd”…””}”(hjB  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÅA  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjOA  ubj‘  )”}”(hŒunsigned long arg”h]”(jG  )”}”(hŒunsigned”h]”hŒunsigned”…””}”(hjB  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjB  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj(B  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjB  ubjG  )”}”(hŒlong”h]”hŒlong”…””}”(hj6B  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjB  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjDB  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjB  ubjp  )”}”(hŒarg”h]”hŒarg”…””}”(hjRB  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjB  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjOA  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjA  h²hh³j(A  h´MÕ	ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjA  h²hh³j(A  h´MÕ	ubah}”(h]”jA  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j(A  h´MÕ	hjA  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ+Check if an ioctl is allowed in compat mode”h]”hŒ+Check if an ioctl is allowed in compat mode”…””}”(hj|B  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÕ	hjyB  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjA  h²hh³j(A  h´MÕ	ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j”B  j#  j”B  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX0  **Parameters**

``struct file *file``
  associated file

``unsigned int cmd``
  ioctl cmd

``unsigned long arg``
  ioctl arguments

**Description**

Compat version of security_file_ioctl() that correctly handles 32-bit
processes running on 64-bit kernels.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjžB  h]”hŒ
Parameters”…””}”(hj B  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjœB  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÙ	hj˜B  ubjH  )”}”(hhh]”(jM  )”}”(hŒ&``struct file *file``
associated file
”h]”(jS  )”}”(hŒ``struct file *file``”h]”hë)”}”(hj½B  h]”hŒstruct file *file”…””}”(hj¿B  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj»B  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÖ	hj·B  ubjm  )”}”(hhh]”hÌ)”}”(hŒassociated file”h]”hŒassociated file”…””}”(hjÖB  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÒB  h´MÖ	hjÓB  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj·B  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÒB  h´MÖ	hj´B  ubjM  )”}”(hŒ``unsigned int cmd``
ioctl cmd
”h]”(jS  )”}”(hŒ``unsigned int cmd``”h]”hë)”}”(hjöB  h]”hŒunsigned int cmd”…””}”(hjøB  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjôB  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M×	hjðB  ubjm  )”}”(hhh]”hÌ)”}”(hŒ	ioctl cmd”h]”hŒ	ioctl cmd”…””}”(hjC  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jC  h´M×	hjC  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjðB  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jC  h´M×	hj´B  ubjM  )”}”(hŒ&``unsigned long arg``
ioctl arguments
”h]”(jS  )”}”(hŒ``unsigned long arg``”h]”hë)”}”(hj/C  h]”hŒunsigned long arg”…””}”(hj1C  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj-C  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MØ	hj)C  ubjm  )”}”(hhh]”hÌ)”}”(hŒioctl arguments”h]”hŒioctl arguments”…””}”(hjHC  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jDC  h´MØ	hjEC  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj)C  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jDC  h´MØ	hj´B  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj˜B  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjjC  h]”hŒDescription”…””}”(hjlC  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjhC  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÚ	hj˜B  ubhÌ)”}”(hŒjCompat version of security_file_ioctl() that correctly handles 32-bit
processes running on 64-bit kernels.”h]”hŒjCompat version of security_file_ioctl() that correctly handles 32-bit
processes running on 64-bit kernels.”…””}”(hj€C  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”•>      h´MÙ	hj˜B  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj‘C  h]”hŒReturn”…””}”(hj“C  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjC  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÜ	hj˜B  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hj§C  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÝ	hj˜B  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ'security_mmap_backing_file (C function)”Œc.security_mmap_backing_file”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒnint security_mmap_backing_file (struct vm_area_struct *vma, struct file *backing_file, struct file *user_file)”h]”jA  )”}”(hŒmint security_mmap_backing_file(struct vm_area_struct *vma, struct file *backing_file, struct file *user_file)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjÖC  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÒC  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M
ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjåC  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÒC  h²hh³jäC  h´M
ubjj  )”}”(hŒsecurity_mmap_backing_file”h]”jp  )”}”(hŒsecurity_mmap_backing_file”h]”hŒsecurity_mmap_backing_file”…””}”(hj÷C  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjóC  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjÒC  h²hh³jäC  h´M
ubj‹  )”}”(hŒO(struct vm_area_struct *vma, struct file *backing_file, struct file *user_file)”h]”(j‘  )”}”(hŒstruct vm_area_struct *vma”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjD  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjD  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj D  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjD  ubh)”}”(hhh]”jp  )”}”(hŒvm_area_struct”h]”hŒvm_area_struct”…””}”(hj1D  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj.D  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j3D  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jùC  sbŒc.security_mmap_backing_file”†”asbuh1hhjD  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjQD  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjD  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj_D  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjD  ubjp  )”}”(hŒvma”h]”hŒvma”…””}”(hjlD  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjD  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjD  ubj‘  )”}”(hŒstruct file *backing_file”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj…D  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjD  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj’D  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjD  ubh)”}”(hhh]”jp  )”}”(hŒfile”h]”hŒfile”…””}”(hj£D  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj D  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j¥D  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jMD  Œc.security_mmap_backing_file”†”asbuh1hhjD  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÁD  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjD  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjÏD  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjD  ubjp  )”}”(hŒbacking_file”h]”hŒbacking_file”…””}”(hjÜD  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjD  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjD  ubj‘  )”}”(hŒstruct file *user_file”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjõD  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjñD  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjE  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjñD  ubh)”}”(hhh]”jp  )”}”(hŒfile”h]”hŒfile”…””}”(hjE  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjE  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jE  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jMD  Œc.security_mmap_backing_file”†”asbuh1hhjñD  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj1E  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjñD  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj?E  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjñD  ubjp  )”}”(hŒ	user_file”h]”hŒ	user_file”…””}”(hjLE  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjñD  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjD  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjÒC  h²hh³jäC  h´M
ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjÎC  h²hh³jäC  h´M
ubah}”(h]”jÉC  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jäC  h´M
hjËC  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ+Check if mmap'ing a backing file is allowed”h]”hŒ-Check if mmapâ€™ing a backing file is allowed”…””}”(hjvE  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M
hjsE  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjËC  h²hh³jäC  h´M
ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jŽE  j#  jŽE  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hXb  **Parameters**

``struct vm_area_struct *vma``
  the vm_area_struct for the mmap'd region

``struct file *backing_file``
  the backing file being mmap'd

``struct file *user_file``
  the user file being mmap'd

**Description**

Check permissions for a mmap operation on a stacked filesystem.  This hook
is called after the security_mmap_file() and is responsible for authorizing
the mmap on **backing_file**.  It is important to note that the mmap operation
on **user_file** has already been authorized and the **vma->vm_file** has been
set to **backing_file**.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj˜E  h]”hŒ
Parameters”…””}”(hjšE  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj–E  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M
hj’E  ubjH  )”}”(hhh]”(jM  )”}”(hŒH``struct vm_area_struct *vma``
the vm_area_struct for the mmap'd region
”h]”(jS  )”}”(hŒ``struct vm_area_struct *vma``”h]”hë)”}”(hj·E  h]”hŒstruct vm_area_struct *vma”…””}”(hj¹E  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjµE  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M
hj±E  ubjm  )”}”(hhh]”hÌ)”}”(hŒ(the vm_area_struct for the mmap'd region”h]”hŒ*the vm_area_struct for the mmapâ€™d region”…””}”(hjÐE  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÌE  h´M
hjÍE  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj±E  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÌE  h´M
hj®E  ubjM  )”}”(hŒ<``struct file *backing_file``
the backing file being mmap'd
”h]”(jS  )”}”(hŒ``struct file *backing_file``”h]”hë)”}”(hjðE  h]”hŒstruct file *backing_file”…””}”(hjòE  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjîE  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M
hjêE  ubjm  )”}”(hhh]”hÌ)”}”(hŒthe backing file being mmap'd”h]”hŒthe backing file being mmapâ€™d”…””}”(hj	F  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jF  h´M
hjF  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjêE  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jF  h´M
hj®E  ubjM  )”}”(hŒ6``struct file *user_file``
the user file being mmap'd
”h]”(jS  )”}”(hŒ``struct file *user_file``”h]”hë)”}”(hj)F  h]”hŒstruct file *user_file”…””}”(hj+F  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj'F  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M
hj#F  ubjm  )”}”(hhh]”hÌ)”}”(hŒthe user file being mmap'd”h]”hŒthe user file being mmapâ€™d”…””}”(hjBF  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j>F  h´M
hj?F  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj#F  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j>F  h´M
hj®E  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj’E  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjdF  h]”hŒDescription”…””}”(hjfF  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjbF  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M
hj’E  ubhÌ)”}”(hXM  Check permissions for a mmap operation on a stacked filesystem.  This hook
is called after the security_mmap_file() and is responsible for authorizing
the mmap on **backing_file**.  It is important to note that the mmap operation
on **user_file** has already been authorized and the **vma->vm_file** has been
set to **backing_file**.”h]”(hŒ£Check permissions for a mmap operation on a stacked filesystem.  This hook
is called after the security_mmap_file() and is responsible for authorizing
the mmap on ”…””}”(hjzF  h²hh³Nh´Nubj2  )”}”(hŒ**backing_file**”h]”hŒbacking_file”…””}”(hj‚F  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjzF  ubhŒ6.  It is important to note that the mmap operation
on ”…””}”(hjzF  h²hh³Nh´Nubj2  )”}”(hŒ**user_file**”h]”hŒ	user_file”…””}”(hj”F  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjzF  ubhŒ% has already been authorized and the ”…””}”(hjzF  h²hh³Nh´Nubj2  )”}”(hŒ**vma->vm_file**”h]”hŒvma->vm_file”…””}”(hj¦F  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjzF  ubhŒ has been
set to ”…””}”(hjzF  h²hh³Nh´Nubj2  )”}”(hŒ**backing_file**”h]”hŒbacking_file”…””}”(hj¸F  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjzF  ubhŒ.”…””}”(hjzF  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M
hj’E  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjÓF  h]”hŒReturn”…””}”(hjÕF  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÑF  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M$
hj’E  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hjéF  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M%
hj’E  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ$security_file_post_open (C function)”Œc.security_file_post_open”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ9int security_file_post_open (struct file *file, int mask)”h]”jA  )”}”(hŒ8int security_file_post_open(struct file *file, int mask)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjG  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjG  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M·
ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj'G  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjG  h²hh³j&G  h´M·
ubjj  )”}”(hŒsecurity_file_post_open”h]”jp  )”}”(hŒsecurity_file_post_open”h]”hŒsecurity_file_post_open”…””}”(hj9G  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj5G  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjG  h²hh³j&G  h´M·
ubj‹  )”}”(hŒ(struct file *file, int mask)”h]”(j‘  )”}”(hŒstruct file *file”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjUG  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjQG  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjbG  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjQG  ubh)”}”(hhh]”jp  )”}”(hŒfile”h]”hŒfile”…””}”(hjsG  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjpG  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”juG  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j;G  sbŒc.security_file_post_open”†”asbuh1hhjQG  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj“G  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjQG  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj¡G  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjQG  ubjp  )”}”(hŒfile”h]”hŒfile”…””}”(hj®G  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjQG  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjMG  ubj‘  )”}”(hŒint mask”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjÇG  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÃG  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÕG  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÃG  ubjp  )”}”(hŒmask”h]”hŒmask”…””}”(hjãG  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÃG  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjMG  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjG  h²hh³j&G  h´M·
ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjG  h²hh³j&G  h´M·
ubah}”(h]”jG  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j&G  h´M·
hjG  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ(Evaluate a file after it has been opened”h]”hŒ(Evaluate a file after it has been opened”…””}”(hjH  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M·
hj
H  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjG  h²hh³j&G  h´M·
ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j%H  j#  j%H  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX8  **Parameters**

``struct file *file``
  the file

``int mask``
  access mask

**Description**

Evaluate an opened file and the access mask requested with open(). The hook
is useful for LSMs that require the file content to be available in order to
make decisions.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj/H  h]”hŒ
Parameters”…””}”(hj1H  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj-H  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M»
hj)H  ubjH  )”}”(hhh]”(jM  )”}”(hŒ``struct file *file``
the file
”h]”(jS  )”}”(hŒ``struct file *file``”h]”hë)”}”(hjNH  h]”hŒstruct file *file”…””}”(hjPH  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjLH  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¸
hjHH  ubjm  )”}”(hhh]”hÌ)”}”(hŒthe file”h]”hŒthe file”…””}”(hjgH  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jcH  h´M¸
hjdH  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjHH  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jcH  h´M¸
hjEH  ubjM  )”}”(hŒ``int mask``
access mask
”h]”(jS  )”}”(hŒ``int mask``”h]”hë)”}”(hj‡H  h]”hŒint mask”…””}”(hj‰H  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj…H  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¹
hjH  ubjm  )”}”(hhh]”hÌ)”}”(hŒaccess mask”h]”hŒaccess mask”…””}”(hj H  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jœH  h´M¹
hjH  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjH  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jœH  h´M¹
hjEH  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj)H  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjÂH  h]”hŒDescription”…””}”(hjÄH  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÀH  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M»
hj)H  ubhÌ)”}”(hŒ¨Evaluate an opened file and the access mask requested with open(). The hook
is useful for LSMs that require the file content to be available in order to
make decisions.”h]”hŒ¨Evaluate an opened file and the access mask requested with open(). The hook
is useful for LSMs that require the file content to be available in order to
make decisions.”…””}”(hjØH  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mº
hj)H  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjéH  h]”hŒReturn”…””}”(hjëH  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjçH  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¾
hj)H  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hjÿH  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¿
hj)H  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ#security_cred_getsecid (C function)”Œc.security_cred_getsecid”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ>void security_cred_getsecid (const struct cred *c, u32 *secid)”h]”jA  )”}”(hŒ=void security_cred_getsecid(const struct cred *c, u32 *secid)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hj.I  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj*I  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MJubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj=I  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj*I  h²hh³j<I  h´MJubjj  )”}”(hŒsecurity_cred_getsecid”h]”jp  )”}”(hŒsecurity_cred_getsecid”h]”hŒsecurity_cred_getsecid”…””}”(hjOI  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjKI  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj*I  h²hh³j<I  h´MJubj‹  )”}”(hŒ"(const struct cred *c, u32 *secid)”h]”(j‘  )”}”(hŒconst struct cred *c”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hjkI  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjgI  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjxI  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjgI  ubjL  )”}”(hjO  h]”hŒstruct”…””}”(hj†I  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjgI  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj“I  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjgI  ubh)”}”(hhh]”jp  )”}”(hŒcred”h]”hŒcred”…””}”(hj¤I  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¡I  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j¦I  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jQI  sbŒc.security_cred_getsecid”†”asbuh1hhjgI  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÄI  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjgI  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjÒI  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjgI  ubjp  )”}”(hj  h]”hŒc”…””}”(hjßI  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjgI  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjcI  ubj‘  )”}”(hŒ
u32 *secid”h]”(h)”}”(hhh]”jp  )”}”(hŒu32”h]”hŒu32”…””}”(hjúI  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj÷I  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jüI  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jÀI  Œc.security_cred_getsecid”†”asbuh1hhjóI  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjJ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjóI  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj&J  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjóI  ubjp  )”}”(hŒsecid”h]”hŒsecid”…””}”(hj3J  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjóI  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjcI  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj*I  h²hh³j<I  h´MJubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj&I  h²hh³j<I  h´MJubah}”(h]”j!I  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j<I  h´MJhj#I  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ'Get the secid from a set of credentials”h]”hŒ'Get the secid from a set of credentials”…””}”(hj]J  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MJhjZJ  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj#I  h²hh³j<I  h´MJubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  juJ  j#  juJ  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒØ**Parameters**

``const struct cred *c``
  credentials

``u32 *secid``
  secid value

**Description**

Retrieve the security identifier of the cred structure **c**.  In case of
failure, **secid** will be set to zero.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjJ  h]”hŒ
Parameters”…””}”(hjJ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj}J  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MNhjyJ  ubjH  )”}”(hhh]”(jM  )”}”(hŒ%``const struct cred *c``
credentials
”h]”(jS  )”}”(hŒ``const struct cred *c``”h]”hë)”}”(hjžJ  h]”hŒconst struct cred *c”…””}”(hj J  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjœJ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MKhj˜J  ubjm  )”}”(hhh]”hÌ)”}”(hŒcredentials”h]”hŒcredentials”…””}”(hj·J  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j³J  h´MKhj´J  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj˜J  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j³J  h´MKhj•J  ubjM  )”}”(hŒ``u32 *secid``
secid value
”h]”(jS  )”}”(hŒ``u32 *secid``”h]”hë)”}”(hj×J  h]”hŒ
u32 *secid”…””}”(hjÙJ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjÕJ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MLhjÑJ  ubjm  )”}”(hhh]”hÌ)”}”(hŒsecid value”h]”hŒsecid value”…””}”(hjðJ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jìJ  h´MLhjíJ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÑJ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jìJ  h´MLhj•J  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjyJ  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjK  h]”hŒDescription”…””}”(hjK  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjK  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MNhjyJ  ubhÌ)”}”(hŒqRetrieve the security identifier of the cred structure **c**.  In case of
failure, **secid** will be set to zero.”h]”(hŒ7Retrieve the security identifier of the cred structure ”…””}”(hj(K  h²hh³Nh´Nubj2  )”}”(hŒ**c**”h]”hŒc”…””}”(hj0K  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj(K  ubhŒ.  In case of
failure, ”…””}”(hj(K  h²hh³Nh´Nubj2  )”}”(hŒ	**secid**”h]”hŒsecid”…””}”(hjBK  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj(K  ubhŒ will be set to zero.”…””}”(hj(K  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MMhjyJ  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ%security_cred_getlsmprop (C function)”Œc.security_cred_getlsmprop”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒKvoid security_cred_getlsmprop (const struct cred *c, struct lsm_prop *prop)”h]”jA  )”}”(hŒJvoid security_cred_getlsmprop(const struct cred *c, struct lsm_prop *prop)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hj{K  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjwK  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MYubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjŠK  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjwK  h²hh³j‰K  h´MYubjj  )”}”(hŒsecurity_cred_getlsmprop”h]”jp  )”}”(hŒsecurity_cred_getlsmprop”h]”hŒsecurity_cred_getlsmprop”…””}”(hjœK  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj˜K  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjwK  h²hh³j‰K  h´MYubj‹  )”}”(hŒ-(const struct cred *c, struct lsm_prop *prop)”h]”(j‘  )”}”(hŒconst struct cred *c”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hj¸K  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj´K  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÅK  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj´K  ubjL  )”}”(hjO  h]”hŒstruct”…””}”(hjÓK  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj´K  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjàK  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj´K  ubh)”}”(hhh]”jp  )”}”(hŒcred”h]”hŒcred”…””}”(hjñK  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjîK  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jóK  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jžK  sbŒc.security_cred_getlsmprop”†”asbuh1hhj´K  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjL  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj´K  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjL  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj´K  ubjp  )”}”(hj  h]”hŒc”…””}”(hj,L  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj´K  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj°K  ubj‘  )”}”(hŒstruct lsm_prop *prop”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjDL  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj@L  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjQL  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj@L  ubh)”}”(hhh]”jp  )”}”(hŒlsm_prop”h]”hŒlsm_prop”…””}”(hjbL  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj_L  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jdL  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jL  Œc.security_cred_getlsmprop”†”asbuh1hhj@L  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj€L  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj@L  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjŽL  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj@L  ubjp  )”}”(hŒprop”h]”hŒprop”…””}”(hj›L  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj@L  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj°K  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjwK  h²hh³j‰K  h´MYubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjsK  h²hh³j‰K  h´MYubah}”(h]”jnK  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j‰K  h´MYhjpK  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ*Get the LSM data from a set of credentials”h]”hŒ*Get the LSM data from a set of credentials”…””}”(hjÅL  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MYhjÂL  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjpK  h²hh³j‰K  h´MYubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jÝL  j#  jÝL  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒé**Parameters**

``const struct cred *c``
  credentials

``struct lsm_prop *prop``
  destination for the LSM data

**Description**

Retrieve the security data of the cred structure **c**.  In case of
failure, **prop** will be cleared.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjçL  h]”hŒ
Parameters”…””}”(hjéL  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjåL  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M]hjáL  ubjH  )”}”(hhh]”(jM  )”}”(hŒ%``const struct cred *c``
credentials
”h]”(jS  )”}”(hŒ``const struct cred *c``”h]”hë)”}”(hjM  h]”hŒconst struct cred *c”…””}”(hjM  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjM  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MZhj M  ubjm  )”}”(hhh]”hÌ)”}”(hŒcredentials”h]”hŒcredentials”…””}”(hjM  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jM  h´MZhjM  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj M  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jM  h´MZhjýL  ubjM  )”}”(hŒ7``struct lsm_prop *prop``
destination for the LSM data
”h]”(jS  )”}”(hŒ``struct lsm_prop *prop``”h]”hë)”}”(hj?M  h]”hŒstruct lsm_prop *prop”…””}”(hjAM  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj=M  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M[hj9M  ubjm  )”}”(hhh]”hÌ)”}”(hŒdestination for the LSM data”h]”hŒdestination for the LSM data”…””}”(hjXM  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jTM  h´M[hjUM  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj9M  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jTM  h´M[hjýL  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjáL  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjzM  h]”hŒDescription”…””}”(hj|M  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjxM  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M]hjáL  ubhÌ)”}”(hŒfRetrieve the security data of the cred structure **c**.  In case of
failure, **prop** will be cleared.”h]”(hŒ1Retrieve the security data of the cred structure ”…””}”(hjM  h²hh³Nh´Nubj2  )”}”(hŒ**c**”h]”hŒc”…””}”(hj˜M  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjM  ubhŒ.  In case of
failure, ”…””}”(hjM  h²hh³Nh´Nubj2  )”}”(hŒ**prop**”h]”hŒprop”…””}”(hjªM  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjM  ubhŒ will be cleared.”…””}”(hjM  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M\hjáL  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ&security_kernel_read_file (C function)”Œc.security_kernel_read_file”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ]int security_kernel_read_file (struct file *file, enum kernel_read_file_id id, bool contents)”h]”jA  )”}”(hŒ\int security_kernel_read_file(struct file *file, enum kernel_read_file_id id, bool contents)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjãM  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjßM  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M•ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjòM  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjßM  h²hh³jñM  h´M•ubjj  )”}”(hŒsecurity_kernel_read_file”h]”jp  )”}”(hŒsecurity_kernel_read_file”h]”hŒsecurity_kernel_read_file”…””}”(hjN  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj N  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjßM  h²hh³jñM  h´M•ubj‹  )”}”(hŒ?(struct file *file, enum kernel_read_file_id id, bool contents)”h]”(j‘  )”}”(hŒstruct file *file”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj N  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjN  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj-N  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjN  ubh)”}”(hhh]”jp  )”}”(hŒfile”h]”hŒfile”…””}”(hj>N  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj;N  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j@N  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jN  sbŒc.security_kernel_read_file”†”asbuh1hhjN  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj^N  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjN  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjlN  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjN  ubjp  )”}”(hŒfile”h]”hŒfile”…””}”(hjyN  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjN  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjN  ubj‘  )”}”(hŒenum kernel_read_file_id id”h]”(jL  )”}”(hjk;  h]”hŒenum”…””}”(hj’N  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjŽN  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjŸN  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjŽN  ubh)”}”(hhh]”jp  )”}”(hŒkernel_read_file_id”h]”hŒkernel_read_file_id”…””}”(hj°N  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj­N  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j²N  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jZN  Œc.security_kernel_read_file”†”asbuh1hhjŽN  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÎN  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjŽN  ubjp  )”}”(hŒid”h]”hŒid”…””}”(hjÜN  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjŽN  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjN  ubj‘  )”}”(hŒbool contents”h]”(jG  )”}”(hŒbool”h]”hŒbool”…””}”(hjõN  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjñN  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjO  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjñN  ubjp  )”}”(hŒcontents”h]”hŒcontents”…””}”(hjO  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjñN  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjN  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjßM  h²hh³jñM  h´M•ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjÛM  h²hh³jñM  h´M•ubah}”(h]”jÖM  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jñM  h´M•hjØM  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ"Read a file specified by userspace”h]”hŒ"Read a file specified by userspace”…””}”(hj;O  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M•hj8O  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjØM  h²hh³jñM  h´M•ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jSO  j#  jSO  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX  **Parameters**

``struct file *file``
  file

``enum kernel_read_file_id id``
  file identifier

``bool contents``
  trust if security_kernel_post_read_file() will be called

**Description**

Read a file specified by userspace.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj]O  h]”hŒ
Parameters”…””}”(hj_O  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj[O  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M™hjWO  ubjH  )”}”(hhh]”(jM  )”}”(hŒ``struct file *file``
file
”h]”(jS  )”}”(hŒ``struct file *file``”h]”hë)”}”(hj|O  h]”hŒstruct file *file”…””}”(hj~O  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjzO  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M–hjvO  ubjm  )”}”(hhh]”hÌ)”}”(hŒfile”h]”hŒfile”…””}”(hj•O  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j‘O  h´M–hj’O  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjvO  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j‘O  h´M–hjsO  ubjM  )”}”(hŒ0``enum kernel_read_file_id id``
file identifier
”h]”(jS  )”}”(hŒ``enum kernel_read_file_id id``”h]”hë)”}”(hjµO  h]”hŒenum kernel_read_file_id id”…””}”(hj·O  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj³O  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M—hj¯O  ubjm  )”}”(hhh]”hÌ)”}”(hŒfile identifier”h]”hŒfile identifier”…””}”(hjÎO  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÊO  h´M—hjËO  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj¯O  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÊO  h´M—hjsO  ubjM  )”}”(hŒK``bool contents``
trust if security_kernel_post_read_file() will be called
”h]”(jS  )”}”(hŒ``bool contents``”h]”hë)”}”(hjîO  h]”hŒbool contents”…””}”(hjðO  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjìO  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M˜hjèO  ubjm  )”}”(hhh]”hÌ)”}”(hŒ8trust if security_kernel_post_read_file() will be called”h]”hŒ8trust if security_kernel_post_read_file() will be called”…””}”(hjP  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jP  h´M˜hjP  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjèO  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jP  h´M˜hjsO  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjWO  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj)P  h]”hŒDescription”…””}”(hj+P  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj'P  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MšhjWO  ubhÌ)”}”(hŒ#Read a file specified by userspace.”h]”hŒ#Read a file specified by userspace.”…””}”(hj?P  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M™hjWO  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjPP  h]”hŒReturn”…””}”(hjRP  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjNP  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M›hjWO  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hjfP  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MœhjWO  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ+security_kernel_post_read_file (C function)”Œ c.security_kernel_post_read_file”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒkint security_kernel_post_read_file (struct file *file, char *buf, loff_t size, enum kernel_read_file_id id)”h]”jA  )”}”(hŒjint security_kernel_post_read_file(struct file *file, char *buf, loff_t size, enum kernel_read_file_id id)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj•P  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj‘P  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¦ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¤P  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj‘P  h²hh³j£P  h´M¦ubjj  )”}”(hŒsecurity_kernel_post_read_file”h]”jp  )”}”(hŒsecurity_kernel_post_read_file”h]”hŒsecurity_kernel_post_read_file”…””}”(hj¶P  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj²P  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj‘P  h²hh³j£P  h´M¦ubj‹  )”}”(hŒH(struct file *file, char *buf, loff_t size, enum kernel_read_file_id id)”h]”(j‘  )”}”(hŒstruct file *file”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjÒP  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjÎP  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjßP  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÎP  ubh)”}”(hhh]”jp  )”}”(hŒfile”h]”hŒfile”…””}”(hjðP  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjíP  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jòP  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j¸P  sbŒ c.security_kernel_post_read_file”†”asbuh1hhjÎP  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjQ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÎP  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjQ  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjÎP  ubjp  )”}”(hŒfile”h]”hŒfile”…””}”(hj+Q  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÎP  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÊP  ubj‘  )”}”(hŒ	char *buf”h]”(jG  )”}”(hŒchar”h]”hŒchar”…””}”(hjDQ  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj@Q  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjRQ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj@Q  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj`Q  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj@Q  ubjp  )”}”(hŒbuf”h]”hŒbuf”…””}”(hjmQ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj@Q  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÊP  ubj‘  )”}”(hŒloff_t size”h]”(h)”}”(hhh]”jp  )”}”(hŒloff_t”h]”hŒloff_t”…””}”(hj‰Q  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj†Q  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j‹Q  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jQ  Œ c.security_kernel_post_read_file”†”asbuh1hhj‚Q  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj§Q  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj‚Q  ubjp  )”}”(hŒsize”h]”hŒsize”…””}”(hjµQ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj‚Q  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÊP  ubj‘  )”}”(hŒenum kernel_read_file_id id”h]”(jL  )”}”(hjk;  h]”hŒenum”…””}”(hjÎQ  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjÊQ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÛQ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÊQ  ubh)”}”(hhh]”jp  )”}”(hŒkernel_read_file_id”h]”hŒkernel_read_file_id”…””}”(hjìQ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjéQ  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jîQ  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jQ  Œ c.security_kernel_post_read_file”†”asbuh1hhjÊQ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj
R  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÊQ  ubjp  )”}”(hŒid”h]”hŒid”…””}”(hjR  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÊQ  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÊP  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj‘P  h²hh³j£P  h´M¦ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjP  h²hh³j£P  h´M¦ubah}”(h]”jˆP  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j£P  h´M¦hjŠP  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ"Read a file specified by userspace”h]”hŒ"Read a file specified by userspace”…””}”(hjBR  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¦hj?R  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjŠP  h²hh³j£P  h´M¦ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jZR  j#  jZR  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX¾  **Parameters**

``struct file *file``
  file

``char *buf``
  file contents

``loff_t size``
  size of file contents

``enum kernel_read_file_id id``
  file identifier

**Description**

Read a file specified by userspace.  This must be paired with a prior call
to security_kernel_read_file() call that indicated this hook would also be
called, see security_kernel_read_file() for more information.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjdR  h]”hŒ
Parameters”…””}”(hjfR  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjbR  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mªhj^R  ubjH  )”}”(hhh]”(jM  )”}”(hŒ``struct file *file``
file
”h]”(jS  )”}”(hŒ``struct file *file``”h]”hë)”}”(hjƒR  h]”hŒstruct file *file”…””}”(hj…R  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjR  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M§hj}R  ubjm  )”}”(hhh]”hÌ)”}”(hŒfile”h]”hŒfile”…””}”(hjœR  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j˜R  h´M§hj™R  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj}R  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j˜R  h´M§hjzR  ubjM  )”}”(hŒ``char *buf``
file contents
”h]”(jS  )”}”(hŒ``char *buf``”h]”hë)”}”(hj¼R  h]”hŒ	char *buf”…””}”(hj¾R  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjºR  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¨hj¶R  ubjm  )”}”(hhh]”hÌ)”}”(hŒfile contents”h]”hŒfile contents”…””}”(hjÕR  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÑR  h´M¨hjÒR  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj¶R  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÑR  h´M¨hjzR  ubjM  )”}”(hŒ&``loff_t size``
size of file contents
”h]”(jS  )”}”(hŒ``loff_t size``”h]”hë)”}”(hjõR  h]”hŒloff_t size”…””}”(hj÷R  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjóR  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M©hjïR  ubjm  )”}”(hhh]”hÌ)”}”(hŒsize of file contents”h]”hŒsize of file contents”…””}”(hjS  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j
S  h´M©hjS  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjïR  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j
S  h´M©hjzR  ubjM  )”}”(hŒ0``enum kernel_read_file_id id``
file identifier
”h]”(jS  )”}”(hŒ``enum kernel_read_file_id id``”h]”hë)”}”(hj.S  h]”hŒenum kernel_read_file_id id”…””}”(hj0S  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj,S  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mªhj(S  ubjm  )”}”(hhh]”hÌ)”}”(hŒfile identifier”h]”hŒfile identifier”…””}”(hjGS  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jCS  h´MªhjDS  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj(S  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jCS  h´MªhjzR  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj^R  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjiS  h]”hŒDescription”…””}”(hjkS  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjgS  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¬hj^R  ubhÌ)”}”(hŒÓRead a file specified by userspace.  This must be paired with a prior call
to security_kernel_read_file() call that indicated this hook would also be
called, see security_kernel_read_file() for more information.”h]”hŒÓRead a file specified by userspace.  This must be paired with a prior call
to security_kernel_read_file() call that indicated this hook would also be
called, see security_kernel_read_file() for more information.”…””}”(hjS  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M«hj^R  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjS  h]”hŒReturn”…””}”(hj’S  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjŽS  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¯hj^R  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hj¦S  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M°hj^R  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ&security_kernel_load_data (C function)”Œc.security_kernel_load_data”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒJint security_kernel_load_data (enum kernel_load_data_id id, bool contents)”h]”jA  )”}”(hŒIint security_kernel_load_data(enum kernel_load_data_id id, bool contents)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjÕS  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÑS  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MºubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjäS  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÑS  h²hh³jãS  h´Mºubjj  )”}”(hŒsecurity_kernel_load_data”h]”jp  )”}”(hŒsecurity_kernel_load_data”h]”hŒsecurity_kernel_load_data”…””}”(hjöS  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjòS  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjÑS  h²hh³jãS  h´Mºubj‹  )”}”(hŒ,(enum kernel_load_data_id id, bool contents)”h]”(j‘  )”}”(hŒenum kernel_load_data_id id”h]”(jL  )”}”(hjk;  h]”hŒenum”…””}”(hjT  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjT  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjT  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjT  ubh)”}”(hhh]”jp  )”}”(hŒkernel_load_data_id”h]”hŒkernel_load_data_id”…””}”(hj0T  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj-T  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j2T  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jøS  sbŒc.security_kernel_load_data”†”asbuh1hhjT  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjPT  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjT  ubjp  )”}”(hŒid”h]”hŒid”…””}”(hj^T  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjT  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj
T  ubj‘  )”}”(hŒbool contents”h]”(jG  )”}”(hj÷N  h]”hŒbool”…””}”(hjwT  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjsT  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj„T  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjsT  ubjp  )”}”(hŒcontents”h]”hŒcontents”…””}”(hj’T  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjsT  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj
T  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjÑS  h²hh³jãS  h´Mºubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjÍS  h²hh³jãS  h´Mºubah}”(h]”jÈS  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jãS  h´MºhjÊS  h²hubj   )”}”(hhh]”hÌ)”}”(hŒLoad data provided by userspace”h]”hŒLoad data provided by userspace”…””}”(hj¼T  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mºhj¹T  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjÊS  h²hh³jãS  h´Mºubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jÔT  j#  jÔT  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒò**Parameters**

``enum kernel_load_data_id id``
  data identifier

``bool contents``
  true if security_kernel_post_load_data() will be called

**Description**

Load data provided by userspace.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjÞT  h]”hŒ
Parameters”…””}”(hjàT  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÜT  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¾hjØT  ubjH  )”}”(hhh]”(jM  )”}”(hŒ0``enum kernel_load_data_id id``
data identifier
”h]”(jS  )”}”(hŒ``enum kernel_load_data_id id``”h]”hë)”}”(hjýT  h]”hŒenum kernel_load_data_id id”…””}”(hjÿT  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjûT  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M»hj÷T  ubjm  )”}”(hhh]”hÌ)”}”(hŒdata identifier”h]”hŒdata identifier”…””}”(hjU  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jU  h´M»hjU  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj÷T  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jU  h´M»hjôT  ubjM  )”}”(hŒJ``bool contents``
true if security_kernel_post_load_data() will be called
”h]”(jS  )”}”(hŒ``bool contents``”h]”hë)”}”(hj6U  h]”hŒbool contents”…””}”(hj8U  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj4U  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¼hj0U  ubjm  )”}”(hhh]”hÌ)”}”(hŒ7true if security_kernel_post_load_data() will be called”h]”hŒ7true if security_kernel_post_load_data() will be called”…””}”(hjOU  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jKU  h´M¼hjLU  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj0U  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jKU  h´M¼hjôT  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjØT  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjqU  h]”hŒDescription”…””}”(hjsU  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjoU  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¾hjØT  ubhÌ)”}”(hŒ Load data provided by userspace.”h]”hŒ Load data provided by userspace.”…””}”(hj‡U  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M½hjØT  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj˜U  h]”hŒReturn”…””}”(hjšU  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj–U  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¿hjØT  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hj®U  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÀhjØT  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ+security_kernel_post_load_data (C function)”Œ c.security_kernel_post_load_data”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒkint security_kernel_post_load_data (char *buf, loff_t size, enum kernel_load_data_id id, char *description)”h]”jA  )”}”(hŒjint security_kernel_post_load_data(char *buf, loff_t size, enum kernel_load_data_id id, char *description)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjÝU  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÙU  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÉubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjìU  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÙU  h²hh³jëU  h´MÉubjj  )”}”(hŒsecurity_kernel_post_load_data”h]”jp  )”}”(hŒsecurity_kernel_post_load_data”h]”hŒsecurity_kernel_post_load_data”…””}”(hjþU  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjúU  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjÙU  h²hh³jëU  h´MÉubj‹  )”}”(hŒH(char *buf, loff_t size, enum kernel_load_data_id id, char *description)”h]”(j‘  )”}”(hŒ	char *buf”h]”(jG  )”}”(hŒchar”h]”hŒchar”…””}”(hjV  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjV  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj(V  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjV  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj6V  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjV  ubjp  )”}”(hŒbuf”h]”hŒbuf”…””}”(hjCV  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjV  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjV  ubj‘  )”}”(hŒloff_t size”h]”(h)”}”(hhh]”jp  )”}”(hŒloff_t”h]”hŒloff_t”…””}”(hj_V  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj\V  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jaV  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j V  sbŒ c.security_kernel_post_load_data”†”asbuh1hhjXV  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjV  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjXV  ubjp  )”}”(hŒsize”h]”hŒsize”…””}”(hjV  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjXV  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjV  ubj‘  )”}”(hŒenum kernel_load_data_id id”h]”(jL  )”}”(hjk;  h]”hŒenum”…””}”(hj¦V  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj¢V  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj³V  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¢V  ubh)”}”(hhh]”jp  )”}”(hŒkernel_load_data_id”h]”hŒkernel_load_data_id”…””}”(hjÄV  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÁV  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jÆV  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j{V  Œ c.security_kernel_post_load_data”†”asbuh1hhj¢V  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjâV  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¢V  ubjp  )”}”(hŒid”h]”hŒid”…””}”(hjðV  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¢V  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjV  ubj‘  )”}”(hŒchar *description”h]”(jG  )”}”(hŒchar”h]”hŒchar”…””}”(hj	W  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjW  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjW  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjW  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj%W  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjW  ubjp  )”}”(hŒdescription”h]”hŒdescription”…””}”(hj2W  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjW  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjV  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjÙU  h²hh³jëU  h´MÉubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjÕU  h²hh³jëU  h´MÉubah}”(h]”jÐU  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jëU  h´MÉhjÒU  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ*Load userspace data from a non-file source”h]”hŒ*Load userspace data from a non-file source”…””}”(hj\W  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÉhjYW  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjÒU  h²hh³jëU  h´MÉubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jtW  j#  jtW  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hXò  **Parameters**

``char *buf``
  data

``loff_t size``
  size of data

``enum kernel_load_data_id id``
  data identifier

``char *description``
  text description of data, specific to the id value

**Description**

Load data provided by a non-file source (usually userspace buffer).  This
must be paired with a prior security_kernel_load_data() call that indicated
this hook would also be called, see security_kernel_load_data() for more
information.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj~W  h]”hŒ
Parameters”…””}”(hj€W  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj|W  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÍhjxW  ubjH  )”}”(hhh]”(jM  )”}”(hŒ``char *buf``
data
”h]”(jS  )”}”(hŒ``char *buf``”h]”hë)”}”(hjW  h]”hŒ	char *buf”…””}”(hjŸW  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj›W  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÊhj—W  ubjm  )”}”(hhh]”hÌ)”}”(hŒdata”h]”hŒdata”…””}”(hj¶W  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j²W  h´MÊhj³W  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj—W  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j²W  h´MÊhj”W  ubjM  )”}”(hŒ``loff_t size``
size of data
”h]”(jS  )”}”(hŒ``loff_t size``”h]”hë)”}”(hjÖW  h]”hŒloff_t size”…””}”(hjØW  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjÔW  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MËhjÐW  ubjm  )”}”(hhh]”hÌ)”}”(hŒsize of data”h]”hŒsize of data”…””}”(hjïW  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jëW  h´MËhjìW  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÐW  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jëW  h´MËhj”W  ubjM  )”}”(hŒ0``enum kernel_load_data_id id``
data identifier
”h]”(jS  )”}”(hŒ``enum kernel_load_data_id id``”h]”hë)”}”(hjX  h]”hŒenum kernel_load_data_id id”…””}”(hjX  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjX  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÌhj	X  ubjm  )”}”(hhh]”hÌ)”}”(hŒdata identifier”h]”hŒdata identifier”…””}”(hj(X  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j$X  h´MÌhj%X  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj	X  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j$X  h´MÌhj”W  ubjM  )”}”(hŒI``char *description``
text description of data, specific to the id value
”h]”(jS  )”}”(hŒ``char *description``”h]”hë)”}”(hjHX  h]”hŒchar *description”…””}”(hjJX  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjFX  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÍhjBX  ubjm  )”}”(hhh]”hÌ)”}”(hŒ2text description of data, specific to the id value”h]”hŒ2text description of data, specific to the id value”…””}”(hjaX  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j]X  h´MÍhj^X  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjBX  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j]X  h´MÍhj”W  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjxW  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjƒX  h]”hŒDescription”…””}”(hj…X  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjX  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÏhjxW  ubhÌ)”}”(hŒëLoad data provided by a non-file source (usually userspace buffer).  This
must be paired with a prior security_kernel_load_data() call that indicated
this hook would also be called, see security_kernel_load_data() for more
information.”h]”hŒëLoad data provided by a non-file source (usually userspace buffer).  This
must be paired with a prior security_kernel_load_data() call that indicated
this hook would also be called, see security_kernel_load_data() for more
information.”…””}”(hj™X  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÎhjxW  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjªX  h]”hŒReturn”…””}”(hj¬X  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj¨X  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÓhjxW  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hjÀX  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÔhjxW  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ-security_current_getlsmprop_subj (C function)”Œ"c.security_current_getlsmprop_subj”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ=void security_current_getlsmprop_subj (struct lsm_prop *prop)”h]”jA  )”}”(hŒ<void security_current_getlsmprop_subj(struct lsm_prop *prop)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjïX  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjëX  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MBubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjþX  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjëX  h²hh³jýX  h´MBubjj  )”}”(hŒ security_current_getlsmprop_subj”h]”jp  )”}”(hŒ security_current_getlsmprop_subj”h]”hŒ security_current_getlsmprop_subj”…””}”(hjY  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjY  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjëX  h²hh³jýX  h´MBubj‹  )”}”(hŒ(struct lsm_prop *prop)”h]”j‘  )”}”(hŒstruct lsm_prop *prop”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj,Y  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj(Y  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj9Y  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj(Y  ubh)”}”(hhh]”jp  )”}”(hŒlsm_prop”h]”hŒlsm_prop”…””}”(hjJY  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjGY  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jLY  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jY  sbŒ"c.security_current_getlsmprop_subj”†”asbuh1hhj(Y  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjjY  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj(Y  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjxY  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj(Y  ubjp  )”}”(hŒprop”h]”hŒprop”…””}”(hj…Y  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj(Y  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj$Y  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjëX  h²hh³jýX  h´MBubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjçX  h²hh³jýX  h´MBubah}”(h]”jâX  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jýX  h´MBhjäX  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ"Current task's subjective LSM data”h]”hŒ$Current taskâ€™s subjective LSM data”…””}”(hj¯Y  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MBhj¬Y  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjäX  h²hh³jýX  h´MBubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jÇY  j#  jÇY  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒ±**Parameters**

``struct lsm_prop *prop``
  lsm specific information

**Description**

Retrieve the subjective security identifier of the current task and return
it in **prop**.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjÑY  h]”hŒ
Parameters”…””}”(hjÓY  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÏY  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”•N      h´MFhjËY  ubjH  )”}”(hhh]”jM  )”}”(hŒ3``struct lsm_prop *prop``
lsm specific information
”h]”(jS  )”}”(hŒ``struct lsm_prop *prop``”h]”hë)”}”(hjðY  h]”hŒstruct lsm_prop *prop”…””}”(hjòY  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjîY  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MChjêY  ubjm  )”}”(hhh]”hÌ)”}”(hŒlsm specific information”h]”hŒlsm specific information”…””}”(hj	Z  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jZ  h´MChjZ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjêY  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jZ  h´MChjçY  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjËY  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj+Z  h]”hŒDescription”…””}”(hj-Z  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj)Z  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MEhjËY  ubhÌ)”}”(hŒZRetrieve the subjective security identifier of the current task and return
it in **prop**.”h]”(hŒQRetrieve the subjective security identifier of the current task and return
it in ”…””}”(hjAZ  h²hh³Nh´Nubj2  )”}”(hŒ**prop**”h]”hŒprop”…””}”(hjIZ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjAZ  ubhŒ.”…””}”(hjAZ  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MDhjËY  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ)security_task_getlsmprop_obj (C function)”Œc.security_task_getlsmprop_obj”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒPvoid security_task_getlsmprop_obj (struct task_struct *p, struct lsm_prop *prop)”h]”jA  )”}”(hŒOvoid security_task_getlsmprop_obj(struct task_struct *p, struct lsm_prop *prop)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hj‚Z  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj~Z  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MPubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj‘Z  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj~Z  h²hh³jZ  h´MPubjj  )”}”(hŒsecurity_task_getlsmprop_obj”h]”jp  )”}”(hŒsecurity_task_getlsmprop_obj”h]”hŒsecurity_task_getlsmprop_obj”…””}”(hj£Z  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjŸZ  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj~Z  h²hh³jZ  h´MPubj‹  )”}”(hŒ.(struct task_struct *p, struct lsm_prop *prop)”h]”(j‘  )”}”(hŒstruct task_struct *p”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj¿Z  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj»Z  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÌZ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj»Z  ubh)”}”(hhh]”jp  )”}”(hŒtask_struct”h]”hŒtask_struct”…””}”(hjÝZ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÚZ  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jßZ  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j¥Z  sbŒc.security_task_getlsmprop_obj”†”asbuh1hhj»Z  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjýZ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj»Z  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj[  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj»Z  ubjp  )”}”(hj¿  h]”hŒp”…””}”(hj[  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj»Z  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj·Z  ubj‘  )”}”(hŒstruct lsm_prop *prop”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj0[  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj,[  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj=[  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj,[  ubh)”}”(hhh]”jp  )”}”(hŒlsm_prop”h]”hŒlsm_prop”…””}”(hjN[  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjK[  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jP[  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jùZ  Œc.security_task_getlsmprop_obj”†”asbuh1hhj,[  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjl[  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj,[  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjz[  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj,[  ubjp  )”}”(hŒprop”h]”hŒprop”…””}”(hj‡[  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj,[  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj·Z  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj~Z  h²hh³jZ  h´MPubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjzZ  h²hh³jZ  h´MPubah}”(h]”juZ  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jZ  h´MPhjwZ  h²hubj   )”}”(hhh]”hÌ)”}”(hŒGet a task's objective LSM data”h]”hŒ!Get a taskâ€™s objective LSM data”…””}”(hj±[  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MPhj®[  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjwZ  h²hh³jZ  h´MPubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jÉ[  j#  jÉ[  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒá**Parameters**

``struct task_struct *p``
  target task

``struct lsm_prop *prop``
  lsm specific information

**Description**

Retrieve the objective security identifier of the task_struct in **p** and
return it in **prop**.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjÓ[  h]”hŒ
Parameters”…””}”(hjÕ[  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÑ[  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MThjÍ[  ubjH  )”}”(hhh]”(jM  )”}”(hŒ&``struct task_struct *p``
target task
”h]”(jS  )”}”(hŒ``struct task_struct *p``”h]”hë)”}”(hjò[  h]”hŒstruct task_struct *p”…””}”(hjô[  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjð[  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MQhjì[  ubjm  )”}”(hhh]”hÌ)”}”(hŒtarget task”h]”hŒtarget task”…””}”(hj\  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j\  h´MQhj\  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjì[  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j\  h´MQhjé[  ubjM  )”}”(hŒ3``struct lsm_prop *prop``
lsm specific information
”h]”(jS  )”}”(hŒ``struct lsm_prop *prop``”h]”hë)”}”(hj+\  h]”hŒstruct lsm_prop *prop”…””}”(hj-\  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj)\  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MRhj%\  ubjm  )”}”(hhh]”hÌ)”}”(hŒlsm specific information”h]”hŒlsm specific information”…””}”(hjD\  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j@\  h´MRhjA\  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj%\  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j@\  h´MRhjé[  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjÍ[  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjf\  h]”hŒDescription”…””}”(hjh\  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjd\  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MThjÍ[  ubhÌ)”}”(hŒaRetrieve the objective security identifier of the task_struct in **p** and
return it in **prop**.”h]”(hŒARetrieve the objective security identifier of the task_struct in ”…””}”(hj|\  h²hh³Nh´Nubj2  )”}”(hŒ**p**”h]”hŒp”…””}”(hj„\  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj|\  ubhŒ and
return it in ”…””}”(hj|\  h²hh³Nh´Nubj2  )”}”(hŒ**prop**”h]”hŒprop”…””}”(hj–\  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj|\  ubhŒ.”…””}”(hj|\  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MShjÍ[  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ#security_d_instantiate (C function)”Œc.security_d_instantiate”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒHvoid security_d_instantiate (struct dentry *dentry, struct inode *inode)”h]”jA  )”}”(hŒGvoid security_d_instantiate(struct dentry *dentry, struct inode *inode)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjÏ\  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjË\  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MnubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÞ\  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjË\  h²hh³jÝ\  h´Mnubjj  )”}”(hŒsecurity_d_instantiate”h]”jp  )”}”(hŒsecurity_d_instantiate”h]”hŒsecurity_d_instantiate”…””}”(hjð\  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjì\  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjË\  h²hh³jÝ\  h´Mnubj‹  )”}”(hŒ,(struct dentry *dentry, struct inode *inode)”h]”(j‘  )”}”(hŒstruct dentry *dentry”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj]  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj]  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj]  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj]  ubh)”}”(hhh]”jp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hj*]  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj']  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j,]  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jò\  sbŒc.security_d_instantiate”†”asbuh1hhj]  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjJ]  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj]  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjX]  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj]  ubjp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hje]  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj]  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj]  ubj‘  )”}”(hŒstruct inode *inode”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj~]  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjz]  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj‹]  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjz]  ubh)”}”(hhh]”jp  )”}”(hŒinode”h]”hŒinode”…””}”(hjœ]  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj™]  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jž]  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jF]  Œc.security_d_instantiate”†”asbuh1hhjz]  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjº]  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjz]  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjÈ]  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjz]  ubjp  )”}”(hŒinode”h]”hŒinode”…””}”(hjÕ]  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjz]  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj]  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjË\  h²hh³jÝ\  h´Mnubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjÇ\  h²hh³jÝ\  h´Mnubah}”(h]”jÂ\  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jÝ\  h´MnhjÄ\  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ/Populate an inode's LSM state based on a dentry”h]”hŒ1Populate an inodeâ€™s LSM state based on a dentry”…””}”(hjÿ]  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mnhjü]  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjÄ\  h²hh³jÝ\  h´Mnubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j^  j#  j^  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒ©**Parameters**

``struct dentry *dentry``
  dentry

``struct inode *inode``
  inode

**Description**

Fill in **inode** security information for a **dentry** if allowed.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj!^  h]”hŒ
Parameters”…””}”(hj#^  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj^  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mrhj^  ubjH  )”}”(hhh]”(jM  )”}”(hŒ!``struct dentry *dentry``
dentry
”h]”(jS  )”}”(hŒ``struct dentry *dentry``”h]”hë)”}”(hj@^  h]”hŒstruct dentry *dentry”…””}”(hjB^  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj>^  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mohj:^  ubjm  )”}”(hhh]”hÌ)”}”(hŒdentry”h]”hŒdentry”…””}”(hjY^  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jU^  h´MohjV^  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj:^  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jU^  h´Mohj7^  ubjM  )”}”(hŒ``struct inode *inode``
inode
”h]”(jS  )”}”(hŒ``struct inode *inode``”h]”hë)”}”(hjy^  h]”hŒstruct inode *inode”…””}”(hj{^  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjw^  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mphjs^  ubjm  )”}”(hhh]”hÌ)”}”(hŒinode”h]”hŒinode”…””}”(hj’^  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jŽ^  h´Mphj^  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjs^  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jŽ^  h´Mphj7^  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj^  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj´^  h]”hŒDescription”…””}”(hj¶^  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj²^  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mrhj^  ubhÌ)”}”(hŒCFill in **inode** security information for a **dentry** if allowed.”h]”(hŒFill in ”…””}”(hjÊ^  h²hh³Nh´Nubj2  )”}”(hŒ	**inode**”h]”hŒinode”…””}”(hjÒ^  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÊ^  ubhŒ security information for a ”…””}”(hjÊ^  h²hh³Nh´Nubj2  )”}”(hŒ
**dentry**”h]”hŒdentry”…””}”(hjä^  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÊ^  ubhŒ if allowed.”…””}”(hjÊ^  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mqhj^  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ security_ismaclabel (C function)”Œc.security_ismaclabel”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ*int security_ismaclabel (const char *name)”h]”jA  )”}”(hŒ)int security_ismaclabel(const char *name)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj_  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj_  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MAubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj,_  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj_  h²hh³j+_  h´MAubjj  )”}”(hŒsecurity_ismaclabel”h]”jp  )”}”(hŒsecurity_ismaclabel”h]”hŒsecurity_ismaclabel”…””}”(hj>_  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj:_  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj_  h²hh³j+_  h´MAubj‹  )”}”(hŒ(const char *name)”h]”j‘  )”}”(hŒconst char *name”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hjZ_  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjV_  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjg_  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjV_  ubjG  )”}”(hŒchar”h]”hŒchar”…””}”(hju_  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjV_  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjƒ_  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjV_  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj‘_  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjV_  ubjp  )”}”(hŒname”h]”hŒname”…””}”(hjž_  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjV_  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjR_  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj_  h²hh³j+_  h´MAubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj_  h²hh³j+_  h´MAubah}”(h]”j_  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j+_  h´MAhj_  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ+Check if the named attribute is a MAC label”h]”hŒ+Check if the named attribute is a MAC label”…””}”(hjÈ_  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MAhjÅ_  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj_  h²hh³j+_  h´MAubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jà_  j#  jà_  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒê**Parameters**

``const char *name``
  full extended attribute name

**Description**

Check if the extended attribute specified by **name** represents a MAC label.

**Return**

Returns 1 if name is a MAC attribute otherwise returns 0.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjê_  h]”hŒ
Parameters”…””}”(hjì_  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjè_  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MEhjä_  ubjH  )”}”(hhh]”jM  )”}”(hŒ2``const char *name``
full extended attribute name
”h]”(jS  )”}”(hŒ``const char *name``”h]”hë)”}”(hj	`  h]”hŒconst char *name”…””}”(hj`  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj`  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MBhj`  ubjm  )”}”(hhh]”hÌ)”}”(hŒfull extended attribute name”h]”hŒfull extended attribute name”…””}”(hj"`  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j`  h´MBhj`  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj`  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j`  h´MBhj `  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjä_  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjD`  h]”hŒDescription”…””}”(hjF`  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjB`  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MDhjä_  ubhÌ)”}”(hŒMCheck if the extended attribute specified by **name** represents a MAC label.”h]”(hŒ-Check if the extended attribute specified by ”…””}”(hjZ`  h²hh³Nh´Nubj2  )”}”(hŒ**name**”h]”hŒname”…””}”(hjb`  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjZ`  ubhŒ represents a MAC label.”…””}”(hjZ`  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MChjä_  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj}`  h]”hŒReturn”…””}”(hj`  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj{`  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MEhjä_  ubhÌ)”}”(hŒ9Returns 1 if name is a MAC attribute otherwise returns 0.”h]”hŒ9Returns 1 if name is a MAC attribute otherwise returns 0.”…””}”(hj“`  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MFhjä_  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ%security_secid_to_secctx (C function)”Œc.security_secid_to_secctx”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ@int security_secid_to_secctx (u32 secid, struct lsm_context *cp)”h]”jA  )”}”(hŒ?int security_secid_to_secctx(u32 secid, struct lsm_context *cp)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjÂ`  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj¾`  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MOubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÑ`  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¾`  h²hh³jÐ`  h´MOubjj  )”}”(hŒsecurity_secid_to_secctx”h]”jp  )”}”(hŒsecurity_secid_to_secctx”h]”hŒsecurity_secid_to_secctx”…””}”(hjã`  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjß`  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj¾`  h²hh³jÐ`  h´MOubj‹  )”}”(hŒ#(u32 secid, struct lsm_context *cp)”h]”(j‘  )”}”(hŒ	u32 secid”h]”(h)”}”(hhh]”jp  )”}”(hŒu32”h]”hŒu32”…””}”(hja  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÿ`  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”ja  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jå`  sbŒc.security_secid_to_secctx”†”asbuh1hhjû`  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj"a  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjû`  ubjp  )”}”(hŒsecid”h]”hŒsecid”…””}”(hj0a  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjû`  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj÷`  ubj‘  )”}”(hŒstruct lsm_context *cp”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjIa  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjEa  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjVa  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjEa  ubh)”}”(hhh]”jp  )”}”(hŒlsm_context”h]”hŒlsm_context”…””}”(hjga  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjda  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jia  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”ja  Œc.security_secid_to_secctx”†”asbuh1hhjEa  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj…a  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjEa  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj“a  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjEa  ubjp  )”}”(hŒcp”h]”hŒcp”…””}”(hj a  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjEa  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj÷`  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj¾`  h²hh³jÐ`  h´MOubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjº`  h²hh³jÐ`  h´MOubah}”(h]”jµ`  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jÐ`  h´MOhj·`  h²hubj   )”}”(hhh]”hÌ)”}”(hŒConvert a secid to a secctx”h]”hŒConvert a secid to a secctx”…””}”(hjÊa  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MOhjÇa  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj·`  h²hh³jÐ`  h´MOubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jâa  j#  jâa  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hXµ  **Parameters**

``u32 secid``
  secid

``struct lsm_context *cp``
  the LSM context

**Description**

Convert secid to security context.  If **cp** is NULL the length of the
result will be returned, but no data will be returned.  This
does mean that the length could change between calls to check the length and
the next call which actually allocates and returns the data.

**Return**

Return length of data on success, error on failure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjìa  h]”hŒ
Parameters”…””}”(hjîa  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjêa  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MShjæa  ubjH  )”}”(hhh]”(jM  )”}”(hŒ``u32 secid``
secid
”h]”(jS  )”}”(hŒ``u32 secid``”h]”hë)”}”(hjb  h]”hŒ	u32 secid”…””}”(hjb  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj	b  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MPhjb  ubjm  )”}”(hhh]”hÌ)”}”(hŒsecid”h]”hŒsecid”…””}”(hj$b  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j b  h´MPhj!b  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjb  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j b  h´MPhjb  ubjM  )”}”(hŒ+``struct lsm_context *cp``
the LSM context
”h]”(jS  )”}”(hŒ``struct lsm_context *cp``”h]”hë)”}”(hjDb  h]”hŒstruct lsm_context *cp”…””}”(hjFb  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjBb  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MQhj>b  ubjm  )”}”(hhh]”hÌ)”}”(hŒthe LSM context”h]”hŒthe LSM context”…””}”(hj]b  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jYb  h´MQhjZb  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj>b  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jYb  h´MQhjb  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjæa  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjb  h]”hŒDescription”…””}”(hjb  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj}b  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MShjæa  ubhÌ)”}”(hX  Convert secid to security context.  If **cp** is NULL the length of the
result will be returned, but no data will be returned.  This
does mean that the length could change between calls to check the length and
the next call which actually allocates and returns the data.”h]”(hŒ'Convert secid to security context.  If ”…””}”(hj•b  h²hh³Nh´Nubj2  )”}”(hŒ**cp**”h]”hŒcp”…””}”(hjb  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj•b  ubhŒá is NULL the length of the
result will be returned, but no data will be returned.  This
does mean that the length could change between calls to check the length and
the next call which actually allocates and returns the data.”…””}”(hj•b  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MRhjæa  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj¸b  h]”hŒReturn”…””}”(hjºb  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj¶b  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MWhjæa  ubhÌ)”}”(hŒ3Return length of data on success, error on failure.”h]”hŒ3Return length of data on success, error on failure.”…””}”(hjÎb  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MXhjæa  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ'security_lsmprop_to_secctx (C function)”Œc.security_lsmprop_to_secctx”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒYint security_lsmprop_to_secctx (struct lsm_prop *prop, struct lsm_context *cp, int lsmid)”h]”jA  )”}”(hŒXint security_lsmprop_to_secctx(struct lsm_prop *prop, struct lsm_context *cp, int lsmid)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjýb  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjùb  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MaubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjc  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjùb  h²hh³jc  h´Maubjj  )”}”(hŒsecurity_lsmprop_to_secctx”h]”jp  )”}”(hŒsecurity_lsmprop_to_secctx”h]”hŒsecurity_lsmprop_to_secctx”…””}”(hjc  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjc  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjùb  h²hh³jc  h´Maubj‹  )”}”(hŒ:(struct lsm_prop *prop, struct lsm_context *cp, int lsmid)”h]”(j‘  )”}”(hŒstruct lsm_prop *prop”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj:c  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj6c  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjGc  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj6c  ubh)”}”(hhh]”jp  )”}”(hŒlsm_prop”h]”hŒlsm_prop”…””}”(hjXc  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjUc  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jZc  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j c  sbŒc.security_lsmprop_to_secctx”†”asbuh1hhj6c  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjxc  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj6c  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj†c  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj6c  ubjp  )”}”(hŒprop”h]”hŒprop”…””}”(hj“c  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj6c  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj2c  ubj‘  )”}”(hŒstruct lsm_context *cp”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj¬c  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj¨c  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¹c  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¨c  ubh)”}”(hhh]”jp  )”}”(hŒlsm_context”h]”hŒlsm_context”…””}”(hjÊc  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÇc  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jÌc  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jtc  Œc.security_lsmprop_to_secctx”†”asbuh1hhj¨c  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjèc  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¨c  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjöc  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj¨c  ubjp  )”}”(hŒcp”h]”hŒcp”…””}”(hjd  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¨c  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj2c  ubj‘  )”}”(hŒ	int lsmid”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjd  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjd  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj*d  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjd  ubjp  )”}”(hŒlsmid”h]”hŒlsmid”…””}”(hj8d  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjd  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj2c  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjùb  h²hh³jc  h´Maubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjõb  h²hh³jc  h´Maubah}”(h]”jðb  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jc  h´Mahjòb  h²hubj   )”}”(hhh]”hÌ)”}”(hŒConvert a lsm_prop to a secctx”h]”hŒConvert a lsm_prop to a secctx”…””}”(hjbd  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mahj_d  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjòb  h²hh³jc  h´Maubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jzd  j#  jzd  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hXÍ  **Parameters**

``struct lsm_prop *prop``
  lsm specific information

``struct lsm_context *cp``
  the LSM context

``int lsmid``
  which security module to report

**Description**

Convert a **prop** entry to security context.  If **cp** is NULL the
length of the result will be returned. This does mean that the
length could change between calls to check the length and the
next call which actually allocates and returns the **cp**.

**lsmid** identifies which LSM should supply the context.
A value of LSM_ID_UNDEF indicates that the first LSM suppling
the hook should be used. This is used in cases where the
ID of the supplying LSM is unambiguous.

**Return**

Return length of data on success, error on failure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj„d  h]”hŒ
Parameters”…””}”(hj†d  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj‚d  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mehj~d  ubjH  )”}”(hhh]”(jM  )”}”(hŒ3``struct lsm_prop *prop``
lsm specific information
”h]”(jS  )”}”(hŒ``struct lsm_prop *prop``”h]”hë)”}”(hj£d  h]”hŒstruct lsm_prop *prop”…””}”(hj¥d  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj¡d  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mbhjd  ubjm  )”}”(hhh]”hÌ)”}”(hŒlsm specific information”h]”hŒlsm specific information”…””}”(hj¼d  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j¸d  h´Mbhj¹d  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjd  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j¸d  h´Mbhjšd  ubjM  )”}”(hŒ+``struct lsm_context *cp``
the LSM context
”h]”(jS  )”}”(hŒ``struct lsm_context *cp``”h]”hë)”}”(hjÜd  h]”hŒstruct lsm_context *cp”…””}”(hjÞd  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjÚd  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MchjÖd  ubjm  )”}”(hhh]”hÌ)”}”(hŒthe LSM context”h]”hŒthe LSM context”…””}”(hjõd  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jñd  h´Mchjòd  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÖd  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jñd  h´Mchjšd  ubjM  )”}”(hŒ.``int lsmid``
which security module to report
”h]”(jS  )”}”(hŒ``int lsmid``”h]”hë)”}”(hje  h]”hŒ	int lsmid”…””}”(hje  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhje  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mdhje  ubjm  )”}”(hhh]”hÌ)”}”(hŒwhich security module to report”h]”hŒwhich security module to report”…””}”(hj.e  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j*e  h´Mdhj+e  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hje  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j*e  h´Mdhjšd  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj~d  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjPe  h]”hŒDescription”…””}”(hjRe  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjNe  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mfhj~d  ubhÌ)”}”(hŒüConvert a **prop** entry to security context.  If **cp** is NULL the
length of the result will be returned. This does mean that the
length could change between calls to check the length and the
next call which actually allocates and returns the **cp**.”h]”(hŒ
Convert a ”…””}”(hjfe  h²hh³Nh´Nubj2  )”}”(hŒ**prop**”h]”hŒprop”…””}”(hjne  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjfe  ubhŒ  entry to security context.  If ”…””}”(hjfe  h²hh³Nh´Nubj2  )”}”(hŒ**cp**”h]”hŒcp”…””}”(hj€e  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjfe  ubhŒ½ is NULL the
length of the result will be returned. This does mean that the
length could change between calls to check the length and the
next call which actually allocates and returns the ”…””}”(hjfe  h²hh³Nh´Nubj2  )”}”(hŒ**cp**”h]”hŒcp”…””}”(hj’e  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjfe  ubhŒ.”…””}”(hjfe  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mehj~d  ubhÌ)”}”(hŒØ**lsmid** identifies which LSM should supply the context.
A value of LSM_ID_UNDEF indicates that the first LSM suppling
the hook should be used. This is used in cases where the
ID of the supplying LSM is unambiguous.”h]”(j2  )”}”(hŒ	**lsmid**”h]”hŒlsmid”…””}”(hj¯e  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj«e  ubhŒÏ identifies which LSM should supply the context.
A value of LSM_ID_UNDEF indicates that the first LSM suppling
the hook should be used. This is used in cases where the
ID of the supplying LSM is unambiguous.”…””}”(hj«e  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mjhj~d  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjÊe  h]”hŒReturn”…””}”(hjÌe  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÈe  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mohj~d  ubhÌ)”}”(hŒ3Return length of data on success, error on failure.”h]”hŒ3Return length of data on success, error on failure.”…””}”(hjàe  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mphj~d  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ%security_secctx_to_secid (C function)”Œc.security_secctx_to_secid”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒJint security_secctx_to_secid (const char *secdata, u32 seclen, u32 *secid)”h]”jA  )”}”(hŒIint security_secctx_to_secid(const char *secdata, u32 seclen, u32 *secid)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjf  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjf  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjf  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjf  h²hh³jf  h´Mubjj  )”}”(hŒsecurity_secctx_to_secid”h]”jp  )”}”(hŒsecurity_secctx_to_secid”h]”hŒsecurity_secctx_to_secid”…””}”(hj0f  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj,f  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjf  h²hh³jf  h´Mubj‹  )”}”(hŒ-(const char *secdata, u32 seclen, u32 *secid)”h]”(j‘  )”}”(hŒconst char *secdata”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hjLf  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjHf  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjYf  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjHf  ubjG  )”}”(hŒchar”h]”hŒchar”…””}”(hjgf  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjHf  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjuf  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjHf  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjƒf  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjHf  ubjp  )”}”(hŒsecdata”h]”hŒsecdata”…””}”(hjf  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjHf  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjDf  ubj‘  )”}”(hŒ
u32 seclen”h]”(h)”}”(hhh]”jp  )”}”(hŒu32”h]”hŒu32”…””}”(hj¬f  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj©f  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j®f  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j2f  sbŒc.security_secctx_to_secid”†”asbuh1hhj¥f  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÌf  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¥f  ubjp  )”}”(hŒseclen”h]”hŒseclen”…””}”(hjÚf  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¥f  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjDf  ubj‘  )”}”(hŒ
u32 *secid”h]”(h)”}”(hhh]”jp  )”}”(hŒu32”h]”hŒu32”…””}”(hjöf  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjóf  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jøf  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jÈf  Œc.security_secctx_to_secid”†”asbuh1hhjïf  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjg  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjïf  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj"g  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjïf  ubjp  )”}”(hŒsecid”h]”hŒsecid”…””}”(hj/g  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjïf  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjDf  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjf  h²hh³jf  h´Mubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjf  h²hh³jf  h´Mubah}”(h]”jf  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jf  h´Mhjf  h²hubj   )”}”(hhh]”hÌ)”}”(hŒConvert a secctx to a secid”h]”hŒConvert a secctx to a secid”…””}”(hjYg  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MhjVg  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjf  h²hh³jf  h´Mubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jqg  j#  jqg  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒÕ**Parameters**

``const char *secdata``
  secctx

``u32 seclen``
  length of secctx

``u32 *secid``
  secid

**Description**

Convert security context to secid.

**Return**

Returns 0 on success, error on failure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj{g  h]”hŒ
Parameters”…””}”(hj}g  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjyg  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M…hjug  ubjH  )”}”(hhh]”(jM  )”}”(hŒ``const char *secdata``
secctx
”h]”(jS  )”}”(hŒ``const char *secdata``”h]”hë)”}”(hjšg  h]”hŒconst char *secdata”…””}”(hjœg  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj˜g  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M‚hj”g  ubjm  )”}”(hhh]”hÌ)”}”(hŒsecctx”h]”hŒsecctx”…””}”(hj³g  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j¯g  h´M‚hj°g  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj”g  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j¯g  h´M‚hj‘g  ubjM  )”}”(hŒ ``u32 seclen``
length of secctx
”h]”(jS  )”}”(hŒ``u32 seclen``”h]”hë)”}”(hjÓg  h]”hŒ
u32 seclen”…””}”(hjÕg  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjÑg  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MƒhjÍg  ubjm  )”}”(hhh]”hÌ)”}”(hŒlength of secctx”h]”hŒlength of secctx”…””}”(hjìg  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jèg  h´Mƒhjég  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÍg  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jèg  h´Mƒhj‘g  ubjM  )”}”(hŒ``u32 *secid``
secid
”h]”(jS  )”}”(hŒ``u32 *secid``”h]”hë)”}”(hjh  h]”hŒ
u32 *secid”…””}”(hjh  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj
h  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M„hjh  ubjm  )”}”(hhh]”hÌ)”}”(hŒsecid”h]”hŒsecid”…””}”(hj%h  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j!h  h´M„hj"h  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjh  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j!h  h´M„hj‘g  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjug  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjGh  h]”hŒDescription”…””}”(hjIh  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjEh  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M†hjug  ubhÌ)”}”(hŒ"Convert security context to secid.”h]”hŒ"Convert security context to secid.”…””}”(hj]h  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M…hjug  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjnh  h]”hŒReturn”…””}”(hjph  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjlh  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M‡hjug  ubhÌ)”}”(hŒ'Returns 0 on success, error on failure.”h]”hŒ'Returns 0 on success, error on failure.”…””}”(hj„h  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mˆhjug  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ$security_release_secctx (C function)”Œc.security_release_secctx”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ5void security_release_secctx (struct lsm_context *cp)”h]”jA  )”}”(hŒ4void security_release_secctx(struct lsm_context *cp)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hj³h  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj¯h  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M’ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÂh  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¯h  h²hh³jÁh  h´M’ubjj  )”}”(hŒsecurity_release_secctx”h]”jp  )”}”(hŒsecurity_release_secctx”h]”hŒsecurity_release_secctx”…””}”(hjÔh  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÐh  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj¯h  h²hh³jÁh  h´M’ubj‹  )”}”(hŒ(struct lsm_context *cp)”h]”j‘  )”}”(hŒstruct lsm_context *cp”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjðh  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjìh  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjýh  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjìh  ubh)”}”(hhh]”jp  )”}”(hŒlsm_context”h]”hŒlsm_context”…””}”(hji  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hji  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”ji  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jÖh  sbŒc.security_release_secctx”†”asbuh1hhjìh  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj.i  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjìh  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj<i  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjìh  ubjp  )”}”(hŒcp”h]”hŒcp”…””}”(hjIi  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjìh  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjèh  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj¯h  h²hh³jÁh  h´M’ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj«h  h²hh³jÁh  h´M’ubah}”(h]”j¦h  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jÁh  h´M’hj¨h  h²hubj   )”}”(hhh]”hÌ)”}”(hŒFree a secctx buffer”h]”hŒFree a secctx buffer”…””}”(hjsi  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M’hjpi  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj¨h  h²hh³jÁh  h´M’ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j‹i  j#  j‹i  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒq**Parameters**

``struct lsm_context *cp``
  the security context

**Description**

Release the security context.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj•i  h]”hŒ
Parameters”…””}”(hj—i  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj“i  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M–hji  ubjH  )”}”(hhh]”jM  )”}”(hŒ0``struct lsm_context *cp``
the security context
”h]”(jS  )”}”(hŒ``struct lsm_context *cp``”h]”hë)”}”(hj´i  h]”hŒstruct lsm_context *cp”…””}”(hj¶i  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj²i  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M“hj®i  ubjm  )”}”(hhh]”hÌ)”}”(hŒthe security context”h]”hŒthe security context”…””}”(hjÍi  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÉi  h´M“hjÊi  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj®i  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÉi  h´M“hj«i  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hji  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjïi  h]”hŒDescription”…””}”(hjñi  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjíi  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M•hji  ubhÌ)”}”(hŒRelease the security context.”h]”hŒRelease the security context.”…””}”(hjj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M”hji  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ-security_inode_invalidate_secctx (C function)”Œ"c.security_inode_invalidate_secctx”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ;void security_inode_invalidate_secctx (struct inode *inode)”h]”jA  )”}”(hŒ:void security_inode_invalidate_secctx(struct inode *inode)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hj4j  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj0j  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MŸubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjCj  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj0j  h²hh³jBj  h´MŸubjj  )”}”(hŒ security_inode_invalidate_secctx”h]”jp  )”}”(hŒ security_inode_invalidate_secctx”h]”hŒ security_inode_invalidate_secctx”…””}”(hjUj  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjQj  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj0j  h²hh³jBj  h´MŸubj‹  )”}”(hŒ(struct inode *inode)”h]”j‘  )”}”(hŒstruct inode *inode”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjqj  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjmj  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj~j  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjmj  ubh)”}”(hhh]”jp  )”}”(hŒinode”h]”hŒinode”…””}”(hjj  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjŒj  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j‘j  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jWj  sbŒ"c.security_inode_invalidate_secctx”†”asbuh1hhjmj  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¯j  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjmj  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj½j  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjmj  ubjp  )”}”(hŒinode”h]”hŒinode”…””}”(hjÊj  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjmj  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjij  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj0j  h²hh³jBj  h´MŸubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj,j  h²hh³jBj  h´MŸubah}”(h]”j'j  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jBj  h´MŸhj)j  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ$Invalidate an inode's security label”h]”hŒ&Invalidate an inodeâ€™s security label”…””}”(hjôj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MŸhjñj  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj)j  h²hh³jBj  h´MŸubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jk  j#  jk  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒ–**Parameters**

``struct inode *inode``
  inode

**Description**

Notify the security module that it must revalidate the security context of
an inode.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjk  h]”hŒ
Parameters”…””}”(hjk  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjk  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M£hjk  ubjH  )”}”(hhh]”jM  )”}”(hŒ``struct inode *inode``
inode
”h]”(jS  )”}”(hŒ``struct inode *inode``”h]”hë)”}”(hj5k  h]”hŒstruct inode *inode”…””}”(hj7k  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj3k  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M hj/k  ubjm  )”}”(hhh]”hÌ)”}”(hŒinode”h]”hŒinode”…””}”(hjNk  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jJk  h´M hjKk  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj/k  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jJk  h´M hj,k  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjk  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjpk  h]”hŒDescription”…””}”(hjrk  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjnk  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¢hjk  ubhÌ)”}”(hŒTNotify the security module that it must revalidate the security context of
an inode.”h]”hŒTNotify the security module that it must revalidate the security context of
an inode.”…””}”(hj†k  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¡hjk  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ(security_inode_notifysecctx (C function)”Œc.security_inode_notifysecctx”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒLint security_inode_notifysecctx (struct inode *inode, void *ctx, u32 ctxlen)”h]”jA  )”}”(hŒKint security_inode_notifysecctx(struct inode *inode, void *ctx, u32 ctxlen)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjµk  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj±k  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¬ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÄk  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj±k  h²hh³jÃk  h´M¬ubjj  )”}”(hŒsecurity_inode_notifysecctx”h]”jp  )”}”(hŒsecurity_inode_notifysecctx”h]”hŒsecurity_inode_notifysecctx”…””}”(hjÖk  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÒk  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj±k  h²hh³jÃk  h´M¬ubj‹  )”}”(hŒ,(struct inode *inode, void *ctx, u32 ctxlen)”h]”(j‘  )”}”(hŒstruct inode *inode”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjòk  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjîk  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÿk  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjîk  ubh)”}”(hhh]”jp  )”}”(hŒinode”h]”hŒinode”…””}”(hjl  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjl  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jl  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jØk  sbŒc.security_inode_notifysecctx”†”asbuh1hhjîk  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj0l  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjîk  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj>l  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjîk  ubjp  )”}”(hŒinode”h]”hŒinode”…””}”(hjKl  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjîk  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjêk  ubj‘  )”}”(hŒ	void *ctx”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjdl  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj`l  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjrl  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj`l  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj€l  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj`l  ubjp  )”}”(hŒctx”h]”hŒctx”…””}”(hjl  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj`l  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjêk  ubj‘  )”}”(hŒ
u32 ctxlen”h]”(h)”}”(hhh]”jp  )”}”(hŒu32”h]”hŒu32”…””}”(hj©l  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¦l  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j«l  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j,l  Œc.security_inode_notifysecctx”†”asbuh1hhj¢l  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÇl  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¢l  ubjp  )”}”(hŒctxlen”h]”hŒctxlen”…””}”(hjÕl  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¢l  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjêk  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj±k  h²hh³jÃk  h´M¬ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj­k  h²hh³jÃk  h´M¬ubah}”(h]”j¨k  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jÃk  h´M¬hjªk  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ+Notify the LSM of an inode's security label”h]”hŒ-Notify the LSM of an inodeâ€™s security label”…””}”(hjÿl  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¬hjül  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjªk  h²hh³jÃk  h´M¬ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jm  j#  jm  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hXV  **Parameters**

``struct inode *inode``
  inode

``void *ctx``
  secctx

``u32 ctxlen``
  length of secctx

**Description**

Notify the security module of what the security context of an inode should
be.  Initializes the incore security context managed by the security module
for this inode.  Example usage: NFS client invokes this hook to initialize
the security context in its incore inode to the value provided by the server
for the file when the server returned the file's attributes to the client.
Must be called with inode->i_mutex locked.

**Return**

Returns 0 on success, error on failure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj!m  h]”hŒ
Parameters”…””}”(hj#m  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjm  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M°hjm  ubjH  )”}”(hhh]”(jM  )”}”(hŒ``struct inode *inode``
inode
”h]”(jS  )”}”(hŒ``struct inode *inode``”h]”hë)”}”(hj@m  h]”hŒstruct inode *inode”…””}”(hjBm  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj>m  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M­hj:m  ubjm  )”}”(hhh]”hÌ)”}”(hŒinode”h]”hŒinode”…””}”(hjYm  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jUm  h´M­hjVm  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj:m  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jUm  h´M­hj7m  ubjM  )”}”(hŒ``void *ctx``
secctx
”h]”(jS  )”}”(hŒ``void *ctx``”h]”hë)”}”(hjym  h]”hŒ	void *ctx”…””}”(hj{m  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjwm  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M®hjsm  ubjm  )”}”(hhh]”hÌ)”}”(hŒsecctx”h]”hŒsecctx”…””}”(hj’m  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jŽm  h´M®hjm  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjsm  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jŽm  h´M®hj7m  ubjM  )”}”(hŒ ``u32 ctxlen``
length of secctx
”h]”(jS  )”}”(hŒ``u32 ctxlen``”h]”hë)”}”(hj²m  h]”hŒ
u32 ctxlen”…””}”(hj´m  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj°m  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¯hj¬m  ubjm  )”}”(hhh]”hÌ)”}”(hŒlength of secctx”h]”hŒlength of secctx”…””}”(hjËm  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÇm  h´M¯hjÈm  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj¬m  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÇm  h´M¯hj7m  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjm  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjím  h]”hŒDescription”…””}”(hjïm  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjëm  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M±hjm  ubhÌ)”}”(hX¤  Notify the security module of what the security context of an inode should
be.  Initializes the incore security context managed by the security module
for this inode.  Example usage: NFS client invokes this hook to initialize
the security context in its incore inode to the value provided by the server
for the file when the server returned the file's attributes to the client.
Must be called with inode->i_mutex locked.”h]”hX¦  Notify the security module of what the security context of an inode should
be.  Initializes the incore security context managed by the security module
for this inode.  Example usage: NFS client invokes this hook to initialize
the security context in its incore inode to the value provided by the server
for the file when the server returned the fileâ€™s attributes to the client.
Must be called with inode->i_mutex locked.”…””}”(hjn  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M°hjm  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjn  h]”hŒReturn”…””}”(hjn  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjn  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M·hjm  ubhÌ)”}”(hŒ'Returns 0 on success, error on failure.”h]”hŒ'Returns 0 on success, error on failure.”…””}”(hj*n  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¸hjm  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ%security_inode_setsecctx (C function)”Œc.security_inode_setsecctx”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒKint security_inode_setsecctx (struct dentry *dentry, void *ctx, u32 ctxlen)”h]”jA  )”}”(hŒJint security_inode_setsecctx(struct dentry *dentry, void *ctx, u32 ctxlen)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjYn  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjUn  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÁubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjhn  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjUn  h²hh³jgn  h´MÁubjj  )”}”(hŒsecurity_inode_setsecctx”h]”jp  )”}”(hŒsecurity_inode_setsecctx”h]”hŒsecurity_inode_setsecctx”…””}”(hjzn  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjvn  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjUn  h²hh³jgn  h´MÁubj‹  )”}”(hŒ.(struct dentry *dentry, void *ctx, u32 ctxlen)”h]”(j‘  )”}”(hŒstruct dentry *dentry”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj–n  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj’n  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj£n  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj’n  ubh)”}”(hhh]”jp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hj´n  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj±n  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j¶n  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j|n  sbŒc.security_inode_setsecctx”†”asbuh1hhj’n  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÔn  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj’n  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjân  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj’n  ubjp  )”}”(hŒdentry”h]”hŒdentry”…””}”(hjïn  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj’n  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjŽn  ubj‘  )”}”(hŒ	void *ctx”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjo  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjo  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjo  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjo  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj$o  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjo  ubjp  )”}”(hŒctx”h]”hŒctx”…””}”(hj1o  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjo  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjŽn  ubj‘  )”}”(hŒ
u32 ctxlen”h]”(h)”}”(hhh]”jp  )”}”(hŒu32”h]”hŒu32”…””}”(hjMo  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjJo  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jOo  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jÐn  Œc.security_inode_setsecctx”†”asbuh1hhjFo  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjko  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjFo  ubjp  )”}”(hŒctxlen”h]”hŒctxlen”…””}”(hjyo  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjFo  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjŽn  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjUn  h²hh³jgn  h´MÁubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjQn  h²hh³jgn  h´MÁubah}”(h]”jLn  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jgn  h´MÁhjNn  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ%Change the security label of an inode”h]”hŒ%Change the security label of an inode”…””}”(hj£o  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÁhj o  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjNn  h²hh³jgn  h´MÁubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j»o  j#  j»o  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX{  **Parameters**

``struct dentry *dentry``
  inode

``void *ctx``
  secctx

``u32 ctxlen``
  length of secctx

**Description**

Change the security context of an inode.  Updates the incore security
context managed by the security module and invokes the fs code as needed
(via __vfs_setxattr_noperm) to update any backing xattrs that represent the
context.  Example usage: NFS server invokes this hook to change the security
context in its incore inode and on the backing filesystem to a value
provided by the client on a SETATTR operation.  Must be called with
inode->i_mutex locked.

**Return**

Returns 0 on success, error on failure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjÅo  h]”hŒ
Parameters”…””}”(hjÇo  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÃo  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÅhj¿o  ubjH  )”}”(hhh]”(jM  )”}”(hŒ ``struct dentry *dentry``
inode
”h]”(jS  )”}”(hŒ``struct dentry *dentry``”h]”hë)”}”(hjäo  h]”hŒstruct dentry *dentry”…””}”(hjæo  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjâo  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”•       h´MÂhjÞo  ubjm  )”}”(hhh]”hÌ)”}”(hŒinode”h]”hŒinode”…””}”(hjýo  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jùo  h´MÂhjúo  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÞo  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jùo  h´MÂhjÛo  ubjM  )”}”(hŒ``void *ctx``
secctx
”h]”(jS  )”}”(hŒ``void *ctx``”h]”hë)”}”(hjp  h]”hŒ	void *ctx”…””}”(hjp  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjp  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÃhjp  ubjm  )”}”(hhh]”hÌ)”}”(hŒsecctx”h]”hŒsecctx”…””}”(hj6p  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j2p  h´MÃhj3p  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjp  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j2p  h´MÃhjÛo  ubjM  )”}”(hŒ ``u32 ctxlen``
length of secctx
”h]”(jS  )”}”(hŒ``u32 ctxlen``”h]”hë)”}”(hjVp  h]”hŒ
u32 ctxlen”…””}”(hjXp  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjTp  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÄhjPp  ubjm  )”}”(hhh]”hÌ)”}”(hŒlength of secctx”h]”hŒlength of secctx”…””}”(hjop  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jkp  h´MÄhjlp  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjPp  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jkp  h´MÄhjÛo  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj¿o  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj‘p  h]”hŒDescription”…””}”(hj“p  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjp  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÆhj¿o  ubhÌ)”}”(hXÇ  Change the security context of an inode.  Updates the incore security
context managed by the security module and invokes the fs code as needed
(via __vfs_setxattr_noperm) to update any backing xattrs that represent the
context.  Example usage: NFS server invokes this hook to change the security
context in its incore inode and on the backing filesystem to a value
provided by the client on a SETATTR operation.  Must be called with
inode->i_mutex locked.”h]”hXÇ  Change the security context of an inode.  Updates the incore security
context managed by the security module and invokes the fs code as needed
(via __vfs_setxattr_noperm) to update any backing xattrs that represent the
context.  Example usage: NFS server invokes this hook to change the security
context in its incore inode and on the backing filesystem to a value
provided by the client on a SETATTR operation.  Must be called with
inode->i_mutex locked.”…””}”(hj§p  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÅhj¿o  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj¸p  h]”hŒReturn”…””}”(hjºp  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj¶p  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÍhj¿o  ubhÌ)”}”(hŒ'Returns 0 on success, error on failure.”h]”hŒ'Returns 0 on success, error on failure.”…””}”(hjÎp  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÎhj¿o  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ%security_inode_getsecctx (C function)”Œc.security_inode_getsecctx”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒJint security_inode_getsecctx (struct inode *inode, struct lsm_context *cp)”h]”jA  )”}”(hŒIint security_inode_getsecctx(struct inode *inode, struct lsm_context *cp)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjýp  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjùp  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M×ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjq  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjùp  h²hh³jq  h´M×ubjj  )”}”(hŒsecurity_inode_getsecctx”h]”jp  )”}”(hŒsecurity_inode_getsecctx”h]”hŒsecurity_inode_getsecctx”…””}”(hjq  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjq  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjùp  h²hh³jq  h´M×ubj‹  )”}”(hŒ-(struct inode *inode, struct lsm_context *cp)”h]”(j‘  )”}”(hŒstruct inode *inode”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj:q  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj6q  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjGq  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj6q  ubh)”}”(hhh]”jp  )”}”(hŒinode”h]”hŒinode”…””}”(hjXq  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjUq  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jZq  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j q  sbŒc.security_inode_getsecctx”†”asbuh1hhj6q  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjxq  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj6q  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj†q  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj6q  ubjp  )”}”(hŒinode”h]”hŒinode”…””}”(hj“q  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj6q  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj2q  ubj‘  )”}”(hŒstruct lsm_context *cp”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj¬q  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj¨q  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¹q  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¨q  ubh)”}”(hhh]”jp  )”}”(hŒlsm_context”h]”hŒlsm_context”…””}”(hjÊq  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÇq  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jÌq  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jtq  Œc.security_inode_getsecctx”†”asbuh1hhj¨q  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjèq  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¨q  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjöq  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj¨q  ubjp  )”}”(hŒcp”h]”hŒcp”…””}”(hjr  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¨q  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj2q  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjùp  h²hh³jq  h´M×ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjõp  h²hh³jq  h´M×ubah}”(h]”jðp  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jq  h´M×hjòp  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ"Get the security label of an inode”h]”hŒ"Get the security label of an inode”…””}”(hj-r  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M×hj*r  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjòp  h²hh³jq  h´M×ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jEr  j#  jEr  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX  **Parameters**

``struct inode *inode``
  inode

``struct lsm_context *cp``
  security context

**Description**

On success, returns 0 and fills out **cp** with the security context
for the given **inode**.

**Return**

Returns 0 on success, error on failure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjOr  h]”hŒ
Parameters”…””}”(hjQr  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjMr  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÛhjIr  ubjH  )”}”(hhh]”(jM  )”}”(hŒ``struct inode *inode``
inode
”h]”(jS  )”}”(hŒ``struct inode *inode``”h]”hë)”}”(hjnr  h]”hŒstruct inode *inode”…””}”(hjpr  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjlr  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MØhjhr  ubjm  )”}”(hhh]”hÌ)”}”(hŒinode”h]”hŒinode”…””}”(hj‡r  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jƒr  h´MØhj„r  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjhr  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jƒr  h´MØhjer  ubjM  )”}”(hŒ,``struct lsm_context *cp``
security context
”h]”(jS  )”}”(hŒ``struct lsm_context *cp``”h]”hë)”}”(hj§r  h]”hŒstruct lsm_context *cp”…””}”(hj©r  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj¥r  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÙhj¡r  ubjm  )”}”(hhh]”hÌ)”}”(hŒsecurity context”h]”hŒsecurity context”…””}”(hjÀr  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j¼r  h´MÙhj½r  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj¡r  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j¼r  h´MÙhjer  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjIr  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjâr  h]”hŒDescription”…””}”(hjär  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjàr  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÛhjIr  ubhÌ)”}”(hŒ]On success, returns 0 and fills out **cp** with the security context
for the given **inode**.”h]”(hŒ$On success, returns 0 and fills out ”…””}”(hjør  h²hh³Nh´Nubj2  )”}”(hŒ**cp**”h]”hŒcp”…””}”(hj s  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjør  ubhŒ) with the security context
for the given ”…””}”(hjør  h²hh³Nh´Nubj2  )”}”(hŒ	**inode**”h]”hŒinode”…””}”(hjs  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjør  ubhŒ.”…””}”(hjør  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÚhjIr  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj-s  h]”hŒReturn”…””}”(hj/s  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj+s  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÝhjIr  ubhÌ)”}”(hŒ'Returns 0 on success, error on failure.”h]”hŒ'Returns 0 on success, error on failure.”…””}”(hjCs  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÞhjIr  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ)security_unix_stream_connect (C function)”Œc.security_unix_stream_connect”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ\int security_unix_stream_connect (struct sock *sock, struct sock *other, struct sock *newsk)”h]”jA  )”}”(hŒ[int security_unix_stream_connect(struct sock *sock, struct sock *other, struct sock *newsk)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjrs  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjns  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjs  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjns  h²hh³j€s  h´Mubjj  )”}”(hŒsecurity_unix_stream_connect”h]”jp  )”}”(hŒsecurity_unix_stream_connect”h]”hŒsecurity_unix_stream_connect”…””}”(hj“s  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjs  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjns  h²hh³j€s  h´Mubj‹  )”}”(hŒ;(struct sock *sock, struct sock *other, struct sock *newsk)”h]”(j‘  )”}”(hŒstruct sock *sock”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj¯s  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj«s  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¼s  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj«s  ubh)”}”(hhh]”jp  )”}”(hŒsock”h]”hŒsock”…””}”(hjÍs  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÊs  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jÏs  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j•s  sbŒc.security_unix_stream_connect”†”asbuh1hhj«s  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjís  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj«s  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjûs  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj«s  ubjp  )”}”(hŒsock”h]”hŒsock”…””}”(hjt  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj«s  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj§s  ubj‘  )”}”(hŒstruct sock *other”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj!t  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjt  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj.t  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjt  ubh)”}”(hhh]”jp  )”}”(hŒsock”h]”hŒsock”…””}”(hj?t  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj<t  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jAt  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jés  Œc.security_unix_stream_connect”†”asbuh1hhjt  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj]t  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjt  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjkt  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjt  ubjp  )”}”(hŒother”h]”hŒother”…””}”(hjxt  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjt  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj§s  ubj‘  )”}”(hŒstruct sock *newsk”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj‘t  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjt  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjžt  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjt  ubh)”}”(hhh]”jp  )”}”(hŒsock”h]”hŒsock”…””}”(hj¯t  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¬t  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j±t  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jés  Œc.security_unix_stream_connect”†”asbuh1hhjt  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÍt  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjt  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjÛt  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjt  ubjp  )”}”(hŒnewsk”h]”hŒnewsk”…””}”(hjèt  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjt  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj§s  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjns  h²hh³j€s  h´Mubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjjs  h²hh³j€s  h´Mubah}”(h]”jes  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j€s  h´Mhjgs  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ$Check if a AF_UNIX stream is allowed”h]”hŒ$Check if a AF_UNIX stream is allowed”…””}”(hju  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhju  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjgs  h²hh³j€s  h´Mubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j*u  j#  j*u  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hXÃ  **Parameters**

``struct sock *sock``
  originating sock

``struct sock *other``
  peer sock

``struct sock *newsk``
  new sock

**Description**

Check permissions before establishing a Unix domain stream connection
between **sock** and **other**.

The **unix_stream_connect** and **unix_may_send** hooks were necessary because
Linux provides an alternative to the conventional file name space for Unix
domain sockets.  Whereas binding and connecting to sockets in the file name
space is mediated by the typical file permissions (and caught by the mknod
and permission hooks in inode_security_ops), binding and connecting to
sockets in the abstract name space is completely unmediated.  Sufficient
control of Unix domain sockets in the abstract name space isn't possible
using only the socket layer hooks, since we need to know the actual target
socket, which is not looked up until we are inside the af_unix code.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj4u  h]”hŒ
Parameters”…””}”(hj6u  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj2u  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M"hj.u  ubjH  )”}”(hhh]”(jM  )”}”(hŒ'``struct sock *sock``
originating sock
”h]”(jS  )”}”(hŒ``struct sock *sock``”h]”hë)”}”(hjSu  h]”hŒstruct sock *sock”…””}”(hjUu  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjQu  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MhjMu  ubjm  )”}”(hhh]”hÌ)”}”(hŒoriginating sock”h]”hŒoriginating sock”…””}”(hjlu  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jhu  h´Mhjiu  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjMu  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jhu  h´MhjJu  ubjM  )”}”(hŒ!``struct sock *other``
peer sock
”h]”(jS  )”}”(hŒ``struct sock *other``”h]”hë)”}”(hjŒu  h]”hŒstruct sock *other”…””}”(hjŽu  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjŠu  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M hj†u  ubjm  )”}”(hhh]”hÌ)”}”(hŒ	peer sock”h]”hŒ	peer sock”…””}”(hj¥u  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j¡u  h´M hj¢u  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj†u  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j¡u  h´M hjJu  ubjM  )”}”(hŒ ``struct sock *newsk``
new sock
”h]”(jS  )”}”(hŒ``struct sock *newsk``”h]”hë)”}”(hjÅu  h]”hŒstruct sock *newsk”…””}”(hjÇu  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjÃu  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M!hj¿u  ubjm  )”}”(hhh]”hÌ)”}”(hŒnew sock”h]”hŒnew sock”…””}”(hjÞu  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÚu  h´M!hjÛu  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj¿u  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÚu  h´M!hjJu  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj.u  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj v  h]”hŒDescription”…””}”(hjv  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjþu  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M#hj.u  ubhÌ)”}”(hŒeCheck permissions before establishing a Unix domain stream connection
between **sock** and **other**.”h]”(hŒNCheck permissions before establishing a Unix domain stream connection
between ”…””}”(hjv  h²hh³Nh´Nubj2  )”}”(hŒ**sock**”h]”hŒsock”…””}”(hjv  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjv  ubhŒ and ”…””}”(hjv  h²hh³Nh´Nubj2  )”}”(hŒ	**other**”h]”hŒother”…””}”(hj0v  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjv  ubhŒ.”…””}”(hjv  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M"hj.u  ubhÌ)”}”(hX™  The **unix_stream_connect** and **unix_may_send** hooks were necessary because
Linux provides an alternative to the conventional file name space for Unix
domain sockets.  Whereas binding and connecting to sockets in the file name
space is mediated by the typical file permissions (and caught by the mknod
and permission hooks in inode_security_ops), binding and connecting to
sockets in the abstract name space is completely unmediated.  Sufficient
control of Unix domain sockets in the abstract name space isn't possible
using only the socket layer hooks, since we need to know the actual target
socket, which is not looked up until we are inside the af_unix code.”h]”(hŒThe ”…””}”(hjIv  h²hh³Nh´Nubj2  )”}”(hŒ**unix_stream_connect**”h]”hŒunix_stream_connect”…””}”(hjQv  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjIv  ubhŒ and ”…””}”(hjIv  h²hh³Nh´Nubj2  )”}”(hŒ**unix_may_send**”h]”hŒunix_may_send”…””}”(hjcv  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjIv  ubhXj   hooks were necessary because
Linux provides an alternative to the conventional file name space for Unix
domain sockets.  Whereas binding and connecting to sockets in the file name
space is mediated by the typical file permissions (and caught by the mknod
and permission hooks in inode_security_ops), binding and connecting to
sockets in the abstract name space is completely unmediated.  Sufficient
control of Unix domain sockets in the abstract name space isnâ€™t possible
using only the socket layer hooks, since we need to know the actual target
socket, which is not looked up until we are inside the af_unix code.”…””}”(hjIv  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M%hj.u  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj~v  h]”hŒReturn”…””}”(hj€v  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj|v  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M/hj.u  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hj”v  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M0hj.u  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ#security_unix_may_send (C function)”Œc.security_unix_may_send”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒFint security_unix_may_send (struct socket *sock, struct socket *other)”h]”jA  )”}”(hŒEint security_unix_may_send(struct socket *sock, struct socket *other)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjÃv  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj¿v  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M:ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÒv  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¿v  h²hh³jÑv  h´M:ubjj  )”}”(hŒsecurity_unix_may_send”h]”jp  )”}”(hŒsecurity_unix_may_send”h]”hŒsecurity_unix_may_send”…””}”(hjäv  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjàv  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj¿v  h²hh³jÑv  h´M:ubj‹  )”}”(hŒ+(struct socket *sock, struct socket *other)”h]”(j‘  )”}”(hŒstruct socket *sock”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj w  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjüv  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjw  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjüv  ubh)”}”(hhh]”jp  )”}”(hŒsocket”h]”hŒsocket”…””}”(hjw  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjw  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j w  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jæv  sbŒc.security_unix_may_send”†”asbuh1hhjüv  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj>w  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjüv  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjLw  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjüv  ubjp  )”}”(hŒsock”h]”hŒsock”…””}”(hjYw  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjüv  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjøv  ubj‘  )”}”(hŒstruct socket *other”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjrw  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjnw  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjw  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjnw  ubh)”}”(hhh]”jp  )”}”(hŒsocket”h]”hŒsocket”…””}”(hjw  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjw  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j’w  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j:w  Œc.security_unix_may_send”†”asbuh1hhjnw  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj®w  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjnw  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj¼w  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjnw  ubjp  )”}”(hŒother”h]”hŒother”…””}”(hjÉw  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjnw  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjøv  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj¿v  h²hh³jÑv  h´M:ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj»v  h²hh³jÑv  h´M:ubah}”(h]”j¶v  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jÑv  h´M:hj¸v  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ*Check if AF_UNIX socket can send datagrams”h]”hŒ*Check if AF_UNIX socket can send datagrams”…””}”(hjów  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M:hjðw  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj¸v  h²hh³jÑv  h´M:ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jx  j#  jx  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX“  **Parameters**

``struct socket *sock``
  originating sock

``struct socket *other``
  peer sock

**Description**

Check permissions before connecting or sending datagrams from **sock** to
**other**.

The **unix_stream_connect** and **unix_may_send** hooks were necessary because
Linux provides an alternative to the conventional file name space for Unix
domain sockets.  Whereas binding and connecting to sockets in the file name
space is mediated by the typical file permissions (and caught by the mknod
and permission hooks in inode_security_ops), binding and connecting to
sockets in the abstract name space is completely unmediated.  Sufficient
control of Unix domain sockets in the abstract name space isn't possible
using only the socket layer hooks, since we need to know the actual target
socket, which is not looked up until we are inside the af_unix code.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjx  h]”hŒ
Parameters”…””}”(hjx  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjx  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M>hjx  ubjH  )”}”(hhh]”(jM  )”}”(hŒ)``struct socket *sock``
originating sock
”h]”(jS  )”}”(hŒ``struct socket *sock``”h]”hë)”}”(hj4x  h]”hŒstruct socket *sock”…””}”(hj6x  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj2x  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M;hj.x  ubjm  )”}”(hhh]”hÌ)”}”(hŒoriginating sock”h]”hŒoriginating sock”…””}”(hjMx  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jIx  h´M;hjJx  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj.x  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jIx  h´M;hj+x  ubjM  )”}”(hŒ#``struct socket *other``
peer sock
”h]”(jS  )”}”(hŒ``struct socket *other``”h]”hë)”}”(hjmx  h]”hŒstruct socket *other”…””}”(hjox  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjkx  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M<hjgx  ubjm  )”}”(hhh]”hÌ)”}”(hŒ	peer sock”h]”hŒ	peer sock”…””}”(hj†x  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j‚x  h´M<hjƒx  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjgx  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j‚x  h´M<hj+x  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjx  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj¨x  h]”hŒDescription”…””}”(hjªx  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj¦x  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M>hjx  ubhÌ)”}”(hŒTCheck permissions before connecting or sending datagrams from **sock** to
**other**.”h]”(hŒ>Check permissions before connecting or sending datagrams from ”…””}”(hj¾x  h²hh³Nh´Nubj2  )”}”(hŒ**sock**”h]”hŒsock”…””}”(hjÆx  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj¾x  ubhŒ to
”…””}”(hj¾x  h²hh³Nh´Nubj2  )”}”(hŒ	**other**”h]”hŒother”…””}”(hjØx  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj¾x  ubhŒ.”…””}”(hj¾x  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M=hjx  ubhÌ)”}”(hX™  The **unix_stream_connect** and **unix_may_send** hooks were necessary because
Linux provides an alternative to the conventional file name space for Unix
domain sockets.  Whereas binding and connecting to sockets in the file name
space is mediated by the typical file permissions (and caught by the mknod
and permission hooks in inode_security_ops), binding and connecting to
sockets in the abstract name space is completely unmediated.  Sufficient
control of Unix domain sockets in the abstract name space isn't possible
using only the socket layer hooks, since we need to know the actual target
socket, which is not looked up until we are inside the af_unix code.”h]”(hŒThe ”…””}”(hjñx  h²hh³Nh´Nubj2  )”}”(hŒ**unix_stream_connect**”h]”hŒunix_stream_connect”…””}”(hjùx  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjñx  ubhŒ and ”…””}”(hjñx  h²hh³Nh´Nubj2  )”}”(hŒ**unix_may_send**”h]”hŒunix_may_send”…””}”(hjy  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjñx  ubhXj   hooks were necessary because
Linux provides an alternative to the conventional file name space for Unix
domain sockets.  Whereas binding and connecting to sockets in the file name
space is mediated by the typical file permissions (and caught by the mknod
and permission hooks in inode_security_ops), binding and connecting to
sockets in the abstract name space is completely unmediated.  Sufficient
control of Unix domain sockets in the abstract name space isnâ€™t possible
using only the socket layer hooks, since we need to know the actual target
socket, which is not looked up until we are inside the af_unix code.”…””}”(hjñx  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M@hjx  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj&y  h]”hŒReturn”…””}”(hj(y  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj$y  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MJhjx  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hj<y  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MKhjx  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ'security_socket_socketpair (C function)”Œc.security_socket_socketpair”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒKint security_socket_socketpair (struct socket *socka, struct socket *sockb)”h]”jA  )”}”(hŒJint security_socket_socketpair(struct socket *socka, struct socket *sockb)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjky  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjgy  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M}ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjzy  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjgy  h²hh³jyy  h´M}ubjj  )”}”(hŒsecurity_socket_socketpair”h]”jp  )”}”(hŒsecurity_socket_socketpair”h]”hŒsecurity_socket_socketpair”…””}”(hjŒy  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjˆy  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjgy  h²hh³jyy  h´M}ubj‹  )”}”(hŒ,(struct socket *socka, struct socket *sockb)”h]”(j‘  )”}”(hŒstruct socket *socka”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj¨y  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj¤y  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjµy  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¤y  ubh)”}”(hhh]”jp  )”}”(hŒsocket”h]”hŒsocket”…””}”(hjÆy  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÃy  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jÈy  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jŽy  sbŒc.security_socket_socketpair”†”asbuh1hhj¤y  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjæy  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¤y  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjôy  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj¤y  ubjp  )”}”(hŒsocka”h]”hŒsocka”…””}”(hjz  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¤y  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj y  ubj‘  )”}”(hŒstruct socket *sockb”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjz  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjz  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj'z  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjz  ubh)”}”(hhh]”jp  )”}”(hŒsocket”h]”hŒsocket”…””}”(hj8z  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj5z  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j:z  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jây  Œc.security_socket_socketpair”†”asbuh1hhjz  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjVz  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjz  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjdz  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjz  ubjp  )”}”(hŒsockb”h]”hŒsockb”…””}”(hjqz  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjz  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj y  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjgy  h²hh³jyy  h´M}ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjcy  h²hh³jyy  h´M}ubah}”(h]”j^y  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jyy  h´M}hj`y  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ)Check if creating a socketpair is allowed”h]”hŒ)Check if creating a socketpair is allowed”…””}”(hj›z  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M}hj˜z  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj`y  h²hh³jyy  h´M}ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j³z  j#  j³z  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX  **Parameters**

``struct socket *socka``
  first socket

``struct socket *sockb``
  second socket

**Description**

Check permissions before creating a fresh pair of sockets.

**Return**

Returns 0 if permission is granted and the connection was
established.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj½z  h]”hŒ
Parameters”…””}”(hj¿z  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj»z  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj·z  ubjH  )”}”(hhh]”(jM  )”}”(hŒ&``struct socket *socka``
first socket
”h]”(jS  )”}”(hŒ``struct socket *socka``”h]”hë)”}”(hjÜz  h]”hŒstruct socket *socka”…””}”(hjÞz  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjÚz  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M~hjÖz  ubjm  )”}”(hhh]”hÌ)”}”(hŒfirst socket”h]”hŒfirst socket”…””}”(hjõz  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jñz  h´M~hjòz  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÖz  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jñz  h´M~hjÓz  ubjM  )”}”(hŒ'``struct socket *sockb``
second socket
”h]”(jS  )”}”(hŒ``struct socket *sockb``”h]”hë)”}”(hj{  h]”hŒstruct socket *sockb”…””}”(hj{  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj{  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj{  ubjm  )”}”(hhh]”hÌ)”}”(hŒsecond socket”h]”hŒsecond socket”…””}”(hj.{  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j*{  h´Mhj+{  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj{  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j*{  h´MhjÓz  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj·z  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjP{  h]”hŒDescription”…””}”(hjR{  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjN{  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj·z  ubhÌ)”}”(hŒ:Check permissions before creating a fresh pair of sockets.”h]”hŒ:Check permissions before creating a fresh pair of sockets.”…””}”(hjf{  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M€hj·z  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjw{  h]”hŒReturn”…””}”(hjy{  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hju{  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M‚hj·z  ubhÌ)”}”(hŒFReturns 0 if permission is granted and the connection was
established.”h]”hŒFReturns 0 if permission is granted and the connection was
established.”…””}”(hj{  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mƒhj·z  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ"security_sock_rcv_skb (C function)”Œc.security_sock_rcv_skb”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ@int security_sock_rcv_skb (struct sock *sk, struct sk_buff *skb)”h]”jA  )”}”(hŒ?int security_sock_rcv_skb(struct sock *sk, struct sk_buff *skb)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj¼{  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj¸{  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M7ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjË{  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¸{  h²hh³jÊ{  h´M7ubjj  )”}”(hŒsecurity_sock_rcv_skb”h]”jp  )”}”(hŒsecurity_sock_rcv_skb”h]”hŒsecurity_sock_rcv_skb”…””}”(hjÝ{  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÙ{  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj¸{  h²hh³jÊ{  h´M7ubj‹  )”}”(hŒ&(struct sock *sk, struct sk_buff *skb)”h]”(j‘  )”}”(hŒstruct sock *sk”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjù{  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjõ{  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj|  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjõ{  ubh)”}”(hhh]”jp  )”}”(hŒsock”h]”hŒsock”…””}”(hj|  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj|  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j|  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jß{  sbŒc.security_sock_rcv_skb”†”asbuh1hhjõ{  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj7|  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjõ{  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjE|  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjõ{  ubjp  )”}”(hŒsk”h]”hŒsk”…””}”(hjR|  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjõ{  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjñ{  ubj‘  )”}”(hŒstruct sk_buff *skb”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjk|  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjg|  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjx|  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjg|  ubh)”}”(hhh]”jp  )”}”(hŒsk_buff”h]”hŒsk_buff”…””}”(hj‰|  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj†|  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j‹|  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j3|  Œc.security_sock_rcv_skb”†”asbuh1hhjg|  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj§|  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjg|  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjµ|  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjg|  ubjp  )”}”(hŒskb”h]”hŒskb”…””}”(hjÂ|  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjg|  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjñ{  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj¸{  h²hh³jÊ{  h´M7ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj´{  h²hh³jÊ{  h´M7ubah}”(h]”j¯{  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jÊ{  h´M7hj±{  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ.Check if an incoming network packet is allowed”h]”hŒ.Check if an incoming network packet is allowed”…””}”(hjì|  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M7hjé|  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj±{  h²hh³jÊ{  h´M7ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j}  j#  j}  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hXÃ  **Parameters**

``struct sock *sk``
  destination sock

``struct sk_buff *skb``
  incoming packet

**Description**

Check permissions on incoming network packets.  This hook is distinct from
Netfilter's IP input hooks since it is the first time that the incoming
sk_buff **skb** has been associated with a particular socket, **sk**.  Must not
sleep inside this hook because some callers hold spinlocks.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj}  h]”hŒ
Parameters”…””}”(hj}  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj}  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M;hj}  ubjH  )”}”(hhh]”(jM  )”}”(hŒ%``struct sock *sk``
destination sock
”h]”(jS  )”}”(hŒ``struct sock *sk``”h]”hë)”}”(hj-}  h]”hŒstruct sock *sk”…””}”(hj/}  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj+}  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M8hj'}  ubjm  )”}”(hhh]”hÌ)”}”(hŒdestination sock”h]”hŒdestination sock”…””}”(hjF}  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jB}  h´M8hjC}  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj'}  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jB}  h´M8hj$}  ubjM  )”}”(hŒ(``struct sk_buff *skb``
incoming packet
”h]”(jS  )”}”(hŒ``struct sk_buff *skb``”h]”hë)”}”(hjf}  h]”hŒstruct sk_buff *skb”…””}”(hjh}  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjd}  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M9hj`}  ubjm  )”}”(hhh]”hÌ)”}”(hŒincoming packet”h]”hŒincoming packet”…””}”(hj}  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j{}  h´M9hj|}  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj`}  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j{}  h´M9hj$}  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj}  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj¡}  h]”hŒDescription”…””}”(hj£}  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjŸ}  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M;hj}  ubhÌ)”}”(hX  Check permissions on incoming network packets.  This hook is distinct from
Netfilter's IP input hooks since it is the first time that the incoming
sk_buff **skb** has been associated with a particular socket, **sk**.  Must not
sleep inside this hook because some callers hold spinlocks.”h]”(hŒCheck permissions on incoming network packets.  This hook is distinct from
Netfilterâ€™s IP input hooks since it is the first time that the incoming
sk_buff ”…””}”(hj·}  h²hh³Nh´Nubj2  )”}”(hŒ**skb**”h]”hŒskb”…””}”(hj¿}  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj·}  ubhŒ/ has been associated with a particular socket, ”…””}”(hj·}  h²hh³Nh´Nubj2  )”}”(hŒ**sk**”h]”hŒsk”…””}”(hjÑ}  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj·}  ubhŒG.  Must not
sleep inside this hook because some callers hold spinlocks.”…””}”(hj·}  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M:hj}  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjì}  h]”hŒReturn”…””}”(hjî}  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjê}  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M?hj}  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hj~  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M@hj}  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ-security_socket_getpeersec_dgram (C function)”Œ"c.security_socket_getpeersec_dgram”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ[int security_socket_getpeersec_dgram (struct socket *sock, struct sk_buff *skb, u32 *secid)”h]”jA  )”}”(hŒZint security_socket_getpeersec_dgram(struct socket *sock, struct sk_buff *skb, u32 *secid)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj1~  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj-~  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M_ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj@~  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj-~  h²hh³j?~  h´M_ubjj  )”}”(hŒ security_socket_getpeersec_dgram”h]”jp  )”}”(hŒ security_socket_getpeersec_dgram”h]”hŒ security_socket_getpeersec_dgram”…””}”(hjR~  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjN~  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj-~  h²hh³j?~  h´M_ubj‹  )”}”(hŒ6(struct socket *sock, struct sk_buff *skb, u32 *secid)”h]”(j‘  )”}”(hŒstruct socket *sock”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjn~  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjj~  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj{~  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjj~  ubh)”}”(hhh]”jp  )”}”(hŒsocket”h]”hŒsocket”…””}”(hjŒ~  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj‰~  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jŽ~  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jT~  sbŒ"c.security_socket_getpeersec_dgram”†”asbuh1hhjj~  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¬~  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjj~  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjº~  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjj~  ubjp  )”}”(hŒsock”h]”hŒsock”…””}”(hjÇ~  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjj~  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjf~  ubj‘  )”}”(hŒstruct sk_buff *skb”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjà~  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjÜ~  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjí~  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÜ~  ubh)”}”(hhh]”jp  )”}”(hŒsk_buff”h]”hŒsk_buff”…””}”(hjþ~  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjû~  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j   Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j¨~  Œ"c.security_socket_getpeersec_dgram”†”asbuh1hhjÜ~  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÜ~  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj*  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjÜ~  ubjp  )”}”(hŒskb”h]”hŒskb”…””}”(hj7  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÜ~  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjf~  ubj‘  )”}”(hŒ
u32 *secid”h]”(h)”}”(hhh]”jp  )”}”(hŒu32”h]”hŒu32”…””}”(hjS  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjP  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jU  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j¨~  Œ"c.security_socket_getpeersec_dgram”†”asbuh1hhjL  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjq  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjL  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjL  ubjp  )”}”(hŒsecid”h]”hŒsecid”…””}”(hjŒ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjL  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjf~  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj-~  h²hh³j?~  h´M_ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj)~  h²hh³j?~  h´M_ubah}”(h]”j$~  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j?~  h´M_hj&~  h²hubj   )”}”(hhh]”hÌ)”}”(hŒGet the remote peer label”h]”hŒGet the remote peer label”…””}”(hj¶  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M_hj³  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj&~  h²hh³j?~  h´M_ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jÎ  j#  jÎ  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX0  **Parameters**

``struct socket *sock``
  socket

``struct sk_buff *skb``
  datagram packet

``u32 *secid``
  remote peer label secid

**Description**

This hook allows the security module to provide peer socket security state
for udp sockets on a per-packet basis to userspace via getsockopt
SO_GETPEERSEC. The application must first have indicated the IP_PASSSEC
option via getsockopt. It can then retrieve the security state returned by
this hook for a packet via the SCM_SECURITY ancillary message type.

**Return**

Returns 0 on success, error on failure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjØ  h]”hŒ
Parameters”…””}”(hjÚ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÖ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MchjÒ  ubjH  )”}”(hhh]”(jM  )”}”(hŒ``struct socket *sock``
socket
”h]”(jS  )”}”(hŒ``struct socket *sock``”h]”hë)”}”(hj÷  h]”hŒstruct socket *sock”…””}”(hjù  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjõ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M`hjñ  ubjm  )”}”(hhh]”hÌ)”}”(hŒsocket”h]”hŒsocket”…””}”(hj€  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j€  h´M`hj€  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjñ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j€  h´M`hjî  ubjM  )”}”(hŒ(``struct sk_buff *skb``
datagram packet
”h]”(jS  )”}”(hŒ``struct sk_buff *skb``”h]”hë)”}”(hj0€  h]”hŒstruct sk_buff *skb”…””}”(hj2€  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj.€  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mahj*€  ubjm  )”}”(hhh]”hÌ)”}”(hŒdatagram packet”h]”hŒdatagram packet”…””}”(hjI€  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jE€  h´MahjF€  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj*€  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jE€  h´Mahjî  ubjM  )”}”(hŒ'``u32 *secid``
remote peer label secid
”h]”(jS  )”}”(hŒ``u32 *secid``”h]”hë)”}”(hji€  h]”hŒ
u32 *secid”…””}”(hjk€  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjg€  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mbhjc€  ubjm  )”}”(hhh]”hÌ)”}”(hŒremote peer label secid”h]”hŒremote peer label secid”…””}”(hj‚€  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j~€  h´Mbhj€  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjc€  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j~€  h´Mbhjî  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjÒ  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj¤€  h]”hŒDescription”…””}”(hj¦€  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj¢€  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MdhjÒ  ubhÌ)”}”(hXc  This hook allows the security module to provide peer socket security state
for udp sockets on a per-packet basis to userspace via getsockopt
SO_GETPEERSEC. The application must first have indicated the IP_PASSSEC
option via getsockopt. It can then retrieve the security state returned by
this hook for a packet via the SCM_SECURITY ancillary message type.”h]”hXc  This hook allows the security module to provide peer socket security state
for udp sockets on a per-packet basis to userspace via getsockopt
SO_GETPEERSEC. The application must first have indicated the IP_PASSSEC
option via getsockopt. It can then retrieve the security state returned by
this hook for a packet via the SCM_SECURITY ancillary message type.”…””}”(hjº€  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MchjÒ  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjË€  h]”hŒReturn”…””}”(hjÍ€  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÉ€  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MihjÒ  ubhÌ)”}”(hŒ'Returns 0 on success, error on failure.”h]”hŒ'Returns 0 on success, error on failure.”…””}”(hjá€  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MjhjÒ  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œsecurity_sk_clone (C function)”Œc.security_sk_clone”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒBvoid security_sk_clone (const struct sock *sk, struct sock *newsk)”h]”jA  )”}”(hŒAvoid security_sk_clone(const struct sock *sk, struct sock *newsk)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¦ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj  h²hh³j  h´M¦ubjj  )”}”(hŒsecurity_sk_clone”h]”jp  )”}”(hŒsecurity_sk_clone”h]”hŒsecurity_sk_clone”…””}”(hj1  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj-  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj  h²hh³j  h´M¦ubj‹  )”}”(hŒ+(const struct sock *sk, struct sock *newsk)”h]”(j‘  )”}”(hŒconst struct sock *sk”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hjM  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjI  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjZ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjI  ubjL  )”}”(hjO  h]”hŒstruct”…””}”(hjh  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjI  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hju  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjI  ubh)”}”(hhh]”jp  )”}”(hŒsock”h]”hŒsock”…””}”(hj†  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjƒ  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jˆ  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j3  sbŒc.security_sk_clone”†”asbuh1hhjI  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¦  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjI  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj´  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjI  ubjp  )”}”(hŒsk”h]”hŒsk”…””}”(hjÁ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjI  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjE  ubj‘  )”}”(hŒstruct sock *newsk”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjÚ  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjÖ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjç  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÖ  ubh)”}”(hhh]”jp  )”}”(hŒsock”h]”hŒsock”…””}”(hjø  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjõ  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jú  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j¢  Œc.security_sk_clone”†”asbuh1hhjÖ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj‚  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÖ  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj$‚  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjÖ  ubjp  )”}”(hŒnewsk”h]”hŒnewsk”…””}”(hj1‚  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÖ  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjE  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj  h²hh³j  h´M¦ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj  h²hh³j  h´M¦ubah}”(h]”j  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j  h´M¦hj  h²hubj   )”}”(hhh]”hÌ)”}”(hŒClone a sock's LSM state”h]”hŒClone a sockâ€™s LSM state”…””}”(hj[‚  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¦hjX‚  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj  h²hh³j  h´M¦ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  js‚  j#  js‚  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒ**Parameters**

``const struct sock *sk``
  original sock

``struct sock *newsk``
  target sock

**Description**

Clone/copy security structure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj}‚  h]”hŒ
Parameters”…””}”(hj‚  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj{‚  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mªhjw‚  ubjH  )”}”(hhh]”(jM  )”}”(hŒ(``const struct sock *sk``
original sock
”h]”(jS  )”}”(hŒ``const struct sock *sk``”h]”hë)”}”(hjœ‚  h]”hŒconst struct sock *sk”…””}”(hjž‚  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjš‚  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M§hj–‚  ubjm  )”}”(hhh]”hÌ)”}”(hŒoriginal sock”h]”hŒoriginal sock”…””}”(hjµ‚  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j±‚  h´M§hj²‚  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj–‚  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j±‚  h´M§hj“‚  ubjM  )”}”(hŒ#``struct sock *newsk``
target sock
”h]”(jS  )”}”(hŒ``struct sock *newsk``”h]”hë)”}”(hjÕ‚  h]”hŒstruct sock *newsk”…””}”(hj×‚  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjÓ‚  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¨hjÏ‚  ubjm  )”}”(hhh]”hÌ)”}”(hŒtarget sock”h]”hŒtarget sock”…””}”(hjî‚  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jê‚  h´M¨hjë‚  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÏ‚  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jê‚  h´M¨hj“‚  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjw‚  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjƒ  h]”hŒDescription”…””}”(hjƒ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjƒ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mªhjw‚  ubhÌ)”}”(hŒClone/copy security structure.”h]”hŒClone/copy security structure.”…””}”(hj&ƒ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M©hjw‚  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ&security_sk_classify_flow (C function)”Œc.security_sk_classify_flow”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒQvoid security_sk_classify_flow (const struct sock *sk, struct flowi_common *flic)”h]”jA  )”}”(hŒPvoid security_sk_classify_flow(const struct sock *sk, struct flowi_common *flic)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjUƒ  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjQƒ  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M³ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjdƒ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjQƒ  h²hh³jcƒ  h´M³ubjj  )”}”(hŒsecurity_sk_classify_flow”h]”jp  )”}”(hŒsecurity_sk_classify_flow”h]”hŒsecurity_sk_classify_flow”…””}”(hjvƒ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjrƒ  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjQƒ  h²hh³jcƒ  h´M³ubj‹  )”}”(hŒ2(const struct sock *sk, struct flowi_common *flic)”h]”(j‘  )”}”(hŒconst struct sock *sk”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hj’ƒ  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjŽƒ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjŸƒ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjŽƒ  ubjL  )”}”(hjO  h]”hŒstruct”…””}”(hj­ƒ  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjŽƒ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjºƒ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjŽƒ  ubh)”}”(hhh]”jp  )”}”(hŒsock”h]”hŒsock”…””}”(hjËƒ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÈƒ  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jÍƒ  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jxƒ  sbŒc.security_sk_classify_flow”†”asbuh1hhjŽƒ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjëƒ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjŽƒ  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjùƒ  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjŽƒ  ubjp  )”}”(hŒsk”h]”hŒsk”…””}”(hj„  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjŽƒ  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjŠƒ  ubj‘  )”}”(hŒstruct flowi_common *flic”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj„  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj„  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj,„  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj„  ubh)”}”(hhh]”jp  )”}”(hŒflowi_common”h]”hŒflowi_common”…””}”(hj=„  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj:„  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j?„  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jçƒ  Œc.security_sk_classify_flow”†”asbuh1hhj„  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj[„  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj„  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hji„  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj„  ubjp  )”}”(hŒflic”h]”hŒflic”…””}”(hjv„  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj„  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjŠƒ  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjQƒ  h²hh³jcƒ  h´M³ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjMƒ  h²hh³jcƒ  h´M³ubah}”(h]”jHƒ  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jcƒ  h´M³hjJƒ  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ"Set a flow's secid based on socket”h]”hŒ$Set a flowâ€™s secid based on socket”…””}”(hj „  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M³hj„  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjJƒ  h²hh³jcƒ  h´M³ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j¸„  j#  j¸„  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒ©**Parameters**

``const struct sock *sk``
  original socket

``struct flowi_common *flic``
  target flow

**Description**

Set the target flow's secid to socket's secid.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjÂ„  h]”hŒ
Parameters”…””}”(hjÄ„  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÀ„  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M·hj¼„  ubjH  )”}”(hhh]”(jM  )”}”(hŒ*``const struct sock *sk``
original socket
”h]”(jS  )”}”(hŒ``const struct sock *sk``”h]”hë)”}”(hjá„  h]”hŒconst struct sock *sk”…””}”(hjã„  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjß„  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M´hjÛ„  ubjm  )”}”(hhh]”hÌ)”}”(hŒoriginal socket”h]”hŒoriginal socket”…””}”(hjú„  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jö„  h´M´hj÷„  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÛ„  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jö„  h´M´hjØ„  ubjM  )”}”(hŒ*``struct flowi_common *flic``
target flow
”h]”(jS  )”}”(hŒ``struct flowi_common *flic``”h]”hë)”}”(hj…  h]”hŒstruct flowi_common *flic”…””}”(hj…  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj…  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mµhj…  ubjm  )”}”(hhh]”hÌ)”}”(hŒtarget flow”h]”hŒtarget flow”…””}”(hj3…  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j/…  h´Mµhj0…  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj…  ubeh}”(h]”h •      ]”h"]”h$]”h&]”uh1jL  h³j/…  h´MµhjØ„  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj¼„  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjU…  h]”hŒDescription”…””}”(hjW…  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjS…  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M·hj¼„  ubhÌ)”}”(hŒ.Set the target flow's secid to socket's secid.”h]”hŒ2Set the target flowâ€™s secid to socketâ€™s secid.”…””}”(hjk…  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¶hj¼„  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ'security_req_classify_flow (C function)”Œc.security_req_classify_flow”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ[void security_req_classify_flow (const struct request_sock *req, struct flowi_common *flic)”h]”jA  )”}”(hŒZvoid security_req_classify_flow(const struct request_sock *req, struct flowi_common *flic)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjš…  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj–…  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÀubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj©…  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj–…  h²hh³j¨…  h´MÀubjj  )”}”(hŒsecurity_req_classify_flow”h]”jp  )”}”(hŒsecurity_req_classify_flow”h]”hŒsecurity_req_classify_flow”…””}”(hj»…  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj·…  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj–…  h²hh³j¨…  h´MÀubj‹  )”}”(hŒ;(const struct request_sock *req, struct flowi_common *flic)”h]”(j‘  )”}”(hŒconst struct request_sock *req”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hj×…  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjÓ…  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjä…  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÓ…  ubjL  )”}”(hjO  h]”hŒstruct”…””}”(hjò…  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjÓ…  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÿ…  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÓ…  ubh)”}”(hhh]”jp  )”}”(hŒrequest_sock”h]”hŒrequest_sock”…””}”(hj†  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj†  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j†  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j½…  sbŒc.security_req_classify_flow”†”asbuh1hhjÓ…  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj0†  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÓ…  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj>†  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjÓ…  ubjp  )”}”(hŒreq”h]”hŒreq”…””}”(hjK†  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÓ…  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÏ…  ubj‘  )”}”(hŒstruct flowi_common *flic”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjd†  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj`†  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjq†  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj`†  ubh)”}”(hhh]”jp  )”}”(hŒflowi_common”h]”hŒflowi_common”…””}”(hj‚†  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj†  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j„†  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j,†  Œc.security_req_classify_flow”†”asbuh1hhj`†  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj †  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj`†  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj®†  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj`†  ubjp  )”}”(hŒflic”h]”hŒflic”…””}”(hj»†  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj`†  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÏ…  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj–…  h²hh³j¨…  h´MÀubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj’…  h²hh³j¨…  h´MÀubah}”(h]”j…  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j¨…  h´MÀhj…  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ(Set a flow's secid based on request_sock”h]”hŒ*Set a flowâ€™s secid based on request_sock”…””}”(hjå†  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÀhjâ†  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj…  h²hh³j¨…  h´MÀubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jý†  j#  jý†  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒª**Parameters**

``const struct request_sock *req``
  request_sock

``struct flowi_common *flic``
  target flow

**Description**

Sets **flic**'s secid to **req**'s secid.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj‡  h]”hŒ
Parameters”…””}”(hj	‡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj‡  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÄhj‡  ubjH  )”}”(hhh]”(jM  )”}”(hŒ0``const struct request_sock *req``
request_sock
”h]”(jS  )”}”(hŒ"``const struct request_sock *req``”h]”hë)”}”(hj&‡  h]”hŒconst struct request_sock *req”…””}”(hj(‡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj$‡  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÁhj ‡  ubjm  )”}”(hhh]”hÌ)”}”(hŒrequest_sock”h]”hŒrequest_sock”…””}”(hj?‡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j;‡  h´MÁhj<‡  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj ‡  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j;‡  h´MÁhj‡  ubjM  )”}”(hŒ*``struct flowi_common *flic``
target flow
”h]”(jS  )”}”(hŒ``struct flowi_common *flic``”h]”hë)”}”(hj_‡  h]”hŒstruct flowi_common *flic”…””}”(hja‡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj]‡  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÂhjY‡  ubjm  )”}”(hhh]”hÌ)”}”(hŒtarget flow”h]”hŒtarget flow”…””}”(hjx‡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jt‡  h´MÂhju‡  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjY‡  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jt‡  h´MÂhj‡  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj‡  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjš‡  h]”hŒDescription”…””}”(hjœ‡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj˜‡  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÄhj‡  ubhÌ)”}”(hŒ)Sets **flic**'s secid to **req**'s secid.”h]”(hŒSets ”…””}”(hj°‡  h²hh³Nh´Nubj2  )”}”(hŒ**flic**”h]”hŒflic”…””}”(hj¸‡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj°‡  ubhŒâ€™s secid to ”…””}”(hj°‡  h²hh³Nh´Nubj2  )”}”(hŒ**req**”h]”hŒreq”…””}”(hjÊ‡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj°‡  ubhŒâ€™s secid.”…””}”(hj°‡  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÃhj‡  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ security_sock_graft (C function)”Œc.security_sock_graft”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒAvoid security_sock_graft (struct sock *sk, struct socket *parent)”h]”jA  )”}”(hŒ@void security_sock_graft(struct sock *sk, struct socket *parent)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjˆ  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÿ‡  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÎubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjˆ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÿ‡  h²hh³jˆ  h´MÎubjj  )”}”(hŒsecurity_sock_graft”h]”jp  )”}”(hŒsecurity_sock_graft”h]”hŒsecurity_sock_graft”…””}”(hj$ˆ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj ˆ  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjÿ‡  h²hh³jˆ  h´MÎubj‹  )”}”(hŒ((struct sock *sk, struct socket *parent)”h]”(j‘  )”}”(hŒstruct sock *sk”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj@ˆ  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj<ˆ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjMˆ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj<ˆ  ubh)”}”(hhh]”jp  )”}”(hŒsock”h]”hŒsock”…””}”(hj^ˆ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj[ˆ  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j`ˆ  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j&ˆ  sbŒc.security_sock_graft”†”asbuh1hhj<ˆ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj~ˆ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj<ˆ  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjŒˆ  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj<ˆ  ubjp  )”}”(hŒsk”h]”hŒsk”…””}”(hj™ˆ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj<ˆ  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj8ˆ  ubj‘  )”}”(hŒstruct socket *parent”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj²ˆ  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj®ˆ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¿ˆ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj®ˆ  ubh)”}”(hhh]”jp  )”}”(hŒsocket”h]”hŒsocket”…””}”(hjÐˆ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÍˆ  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jÒˆ  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jzˆ  Œc.security_sock_graft”†”asbuh1hhj®ˆ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjîˆ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj®ˆ  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjüˆ  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj®ˆ  ubjp  )”}”(hŒparent”h]”hŒparent”…””}”(hj	‰  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj®ˆ  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj8ˆ  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjÿ‡  h²hh³jˆ  h´MÎubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjû‡  h²hh³jˆ  h´MÎubah}”(h]”jö‡  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jˆ  h´MÎhjø‡  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ4Reconcile LSM state when grafting a sock on a socket”h]”hŒ4Reconcile LSM state when grafting a sock on a socket”…””}”(hj3‰  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÎhj0‰  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjø‡  h²hh³jˆ  h´MÎubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jK‰  j#  jK‰  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒì**Parameters**

``struct sock *sk``
  sock being grafted

``struct socket *parent``
  target parent socket

**Description**

Sets **parent**'s inode secid to **sk**'s secid and update **sk** with any necessary
LSM state from **parent**.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjU‰  h]”hŒ
Parameters”…””}”(hjW‰  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjS‰  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÒhjO‰  ubjH  )”}”(hhh]”(jM  )”}”(hŒ'``struct sock *sk``
sock being grafted
”h]”(jS  )”}”(hŒ``struct sock *sk``”h]”hë)”}”(hjt‰  h]”hŒstruct sock *sk”…””}”(hjv‰  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjr‰  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÏhjn‰  ubjm  )”}”(hhh]”hÌ)”}”(hŒsock being grafted”h]”hŒsock being grafted”…””}”(hj‰  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j‰‰  h´MÏhjŠ‰  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjn‰  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j‰‰  h´MÏhjk‰  ubjM  )”}”(hŒ/``struct socket *parent``
target parent socket
”h]”(jS  )”}”(hŒ``struct socket *parent``”h]”hë)”}”(hj­‰  h]”hŒstruct socket *parent”…””}”(hj¯‰  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj«‰  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÐhj§‰  ubjm  )”}”(hhh]”hÌ)”}”(hŒtarget parent socket”h]”hŒtarget parent socket”…””}”(hjÆ‰  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÂ‰  h´MÐhjÃ‰  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj§‰  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÂ‰  h´MÐhjk‰  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjO‰  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjè‰  h]”hŒDescription”…””}”(hjê‰  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjæ‰  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÒhjO‰  ubhÌ)”}”(hŒoSets **parent**'s inode secid to **sk**'s secid and update **sk** with any necessary
LSM state from **parent**.”h]”(hŒSets ”…””}”(hjþ‰  h²hh³Nh´Nubj2  )”}”(hŒ
**parent**”h]”hŒparent”…””}”(hjŠ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjþ‰  ubhŒâ€™s inode secid to ”…””}”(hjþ‰  h²hh³Nh´Nubj2  )”}”(hŒ**sk**”h]”hŒsk”…””}”(hjŠ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjþ‰  ubhŒâ€™s secid and update ”…””}”(hjþ‰  h²hh³Nh´Nubj2  )”}”(hŒ**sk**”h]”hŒsk”…””}”(hj*Š  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjþ‰  ubhŒ# with any necessary
LSM state from ”…””}”(hjþ‰  h²hh³Nh´Nubj2  )”}”(hŒ
**parent**”h]”hŒparent”…””}”(hj<Š  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjþ‰  ubhŒ.”…””}”(hjþ‰  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÑhjO‰  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ'security_inet_conn_request (C function)”Œc.security_inet_conn_request”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒeint security_inet_conn_request (const struct sock *sk, struct sk_buff *skb, struct request_sock *req)”h]”jA  )”}”(hŒdint security_inet_conn_request(const struct sock *sk, struct sk_buff *skb, struct request_sock *req)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjuŠ  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjqŠ  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÜubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj„Š  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjqŠ  h²hh³jƒŠ  h´MÜubjj  )”}”(hŒsecurity_inet_conn_request”h]”jp  )”}”(hŒsecurity_inet_conn_request”h]”hŒsecurity_inet_conn_request”…””}”(hj–Š  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj’Š  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjqŠ  h²hh³jƒŠ  h´MÜubj‹  )”}”(hŒF(const struct sock *sk, struct sk_buff *skb, struct request_sock *req)”h]”(j‘  )”}”(hŒconst struct sock *sk”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hj²Š  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj®Š  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¿Š  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj®Š  ubjL  )”}”(hjO  h]”hŒstruct”…””}”(hjÍŠ  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj®Š  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÚŠ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj®Š  ubh)”}”(hhh]”jp  )”}”(hŒsock”h]”hŒsock”…””}”(hjëŠ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjèŠ  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jíŠ  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j˜Š  sbŒc.security_inet_conn_request”†”asbuh1hhj®Š  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj‹  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj®Š  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj‹  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj®Š  ubjp  )”}”(hŒsk”h]”hŒsk”…””}”(hj&‹  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj®Š  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjªŠ  ubj‘  )”}”(hŒstruct sk_buff *skb”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj?‹  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj;‹  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjL‹  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj;‹  ubh)”}”(hhh]”jp  )”}”(hŒsk_buff”h]”hŒsk_buff”…””}”(hj]‹  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjZ‹  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j_‹  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j‹  Œc.security_inet_conn_request”†”asbuh1hhj;‹  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj{‹  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj;‹  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj‰‹  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj;‹  ubjp  )”}”(hŒskb”h]”hŒskb”…””}”(hj–‹  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj;‹  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjªŠ  ubj‘  )”}”(hŒstruct request_sock *req”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj¯‹  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj«‹  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¼‹  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj«‹  ubh)”}”(hhh]”jp  )”}”(hŒrequest_sock”h]”hŒrequest_sock”…””}”(hjÍ‹  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÊ‹  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jÏ‹  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j‹  Œc.security_inet_conn_request”†”asbuh1hhj«‹  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjë‹  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj«‹  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjù‹  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj«‹  ubjp  )”}”(hŒreq”h]”hŒreq”…””}”(hjŒ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj«‹  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjªŠ  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjqŠ  h²hh³jƒŠ  h´MÜubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjmŠ  h²hh³jƒŠ  h´MÜubah}”(h]”jhŠ  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jƒŠ  h´MÜhjjŠ  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ-Set request_sock state using incoming connect”h]”hŒ-Set request_sock state using incoming connect”…””}”(hj0Œ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÜhj-Œ  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjjŠ  h²hh³jƒŠ  h´MÜubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jHŒ  j#  jHŒ  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX:  **Parameters**

``const struct sock *sk``
  parent listening sock

``struct sk_buff *skb``
  incoming connection

``struct request_sock *req``
  new request_sock

**Description**

Initialize the **req** LSM state based on **sk** and the incoming connect in **skb**.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjRŒ  h]”hŒ
Parameters”…””}”(hjTŒ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjPŒ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MàhjLŒ  ubjH  )”}”(hhh]”(jM  )”}”(hŒ0``const struct sock *sk``
parent listening sock
”h]”(jS  )”}”(hŒ``const struct sock *sk``”h]”hë)”}”(hjqŒ  h]”hŒconst struct sock *sk”…””}”(hjsŒ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjoŒ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÝhjkŒ  ubjm  )”}”(hhh]”hÌ)”}”(hŒparent listening sock”h]”hŒparent listening sock”…””}”(hjŠŒ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j†Œ  h´MÝhj‡Œ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjkŒ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j†Œ  h´MÝhjhŒ  ubjM  )”}”(hŒ,``struct sk_buff *skb``
incoming connection
”h]”(jS  )”}”(hŒ``struct sk_buff *skb``”h]”hë)”}”(hjªŒ  h]”hŒstruct sk_buff *skb”…””}”(hj¬Œ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj¨Œ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÞhj¤Œ  ubjm  )”}”(hhh]”hÌ)”}”(hŒincoming connection”h]”hŒincoming connection”…””}”(hjÃŒ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j¿Œ  h´MÞhjÀŒ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj¤Œ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j¿Œ  h´MÞhjhŒ  ubjM  )”}”(hŒ.``struct request_sock *req``
new request_sock
”h]”(jS  )”}”(hŒ``struct request_sock *req``”h]”hë)”}”(hjãŒ  h]”hŒstruct request_sock *req”…””}”(hjåŒ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjáŒ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MßhjÝŒ  ubjm  )”}”(hhh]”hÌ)”}”(hŒnew request_sock”h]”hŒnew request_sock”…””}”(hjüŒ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jøŒ  h´MßhjùŒ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÝŒ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jøŒ  h´MßhjhŒ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjLŒ  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj  h]”hŒDescription”…””}”(hj   h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MáhjLŒ  ubhÌ)”}”(hŒUInitialize the **req** LSM state based on **sk** and the incoming connect in **skb**.”h]”(hŒInitialize the ”…””}”(hj4  h²hh³Nh´Nubj2  )”}”(hŒ**req**”h]”hŒreq”…””}”(hj<  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj4  ubhŒ LSM state based on ”…””}”(hj4  h²hh³Nh´Nubj2  )”}”(hŒ**sk**”h]”hŒsk”…””}”(hjN  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj4  ubhŒ and the incoming connect in ”…””}”(hj4  h²hh³Nh´Nubj2  )”}”(hŒ**skb**”h]”hŒskb”…””}”(hj`  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj4  ubhŒ.”…””}”(hj4  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MàhjLŒ  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj{  h]”hŒReturn”…””}”(hj}  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjy  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MâhjLŒ  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hj‘  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MãhjLŒ  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ+security_inet_conn_established (C function)”Œ c.security_inet_conn_established”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒJvoid security_inet_conn_established (struct sock *sk, struct sk_buff *skb)”h]”jA  )”}”(hŒIvoid security_inet_conn_established(struct sock *sk, struct sk_buff *skb)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjÀ  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj¼  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MúubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÏ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¼  h²hh³jÎ  h´Múubjj  )”}”(hŒsecurity_inet_conn_established”h]”jp  )”}”(hŒsecurity_inet_conn_established”h]”hŒsecurity_inet_conn_established”…””}”(hjá  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÝ  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj¼  h²hh³jÎ  h´Múubj‹  )”}”(hŒ&(struct sock *sk, struct sk_buff *skb)”h]”(j‘  )”}”(hŒstruct sock *sk”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjý  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjù  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj
Ž  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjù  ubh)”}”(hhh]”jp  )”}”(hŒsock”h]”hŒsock”…””}”(hjŽ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjŽ  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jŽ  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jã  sbŒ c.security_inet_conn_established”†”asbuh1hhjù  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj;Ž  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjù  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjIŽ  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjù  ubjp  )”}”(hŒsk”h]”hŒsk”…””}”(hjVŽ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjù  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjõ  ubj‘  )”}”(hŒstruct sk_buff *skb”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjoŽ  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjkŽ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj|Ž  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjkŽ  ubh)”}”(hhh]”jp  )”}”(hŒsk_buff”h]”hŒsk_buff”…””}”(hjŽ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjŠŽ  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jŽ  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j7Ž  Œ c.security_inet_conn_established”†”asbuh1hhjkŽ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj«Ž  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjkŽ  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj¹Ž  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjkŽ  ubjp  )”}”(hŒskb”h]”hŒskb”…””}”(hjÆŽ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjkŽ  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjõ  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj¼  h²hh³jÎ  h´Múubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj¸  h²hh³jÎ  h´Múubah}”(h]”j³  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jÎ  h´Múhjµ  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ'Update sock's LSM state with connection”h]”hŒ)Update sockâ€™s LSM state with connection”…””}”(hjðŽ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MúhjíŽ  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjµ  h²hh³jÎ  h´Múubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j  j#  j  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒ±**Parameters**

``struct sock *sk``
  sock

``struct sk_buff *skb``
  connection packet

**Description**

Update **sock**'s LSM state to represent a new connection from **skb**.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj  h]”hŒ
Parameters”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mþhj  ubjH  )”}”(hhh]”(jM  )”}”(hŒ``struct sock *sk``
sock
”h]”(jS  )”}”(hŒ``struct sock *sk``”h]”hë)”}”(hj1  h]”hŒstruct sock *sk”…””}”(hj3  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj/  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mûhj+  ubjm  )”}”(hhh]”hÌ)”}”(hŒsock”h]”hŒsock”…””}”(hjJ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jF  h´MûhjG  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj+  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jF  h´Mûhj(  ubjM  )”}”(hŒ*``struct sk_buff *skb``
connection packet
”h]”(jS  )”}”(hŒ``struct sk_buff *skb``”h]”hë)”}”(hjj  h]”hŒstruct sk_buff *skb”…””}”(hjl  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjh  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mühjd  ubjm  )”}”(hhh]”hÌ)”}”(hŒconnection packet”h]”hŒconnection packet”…””}”(hjƒ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j  h´Mühj€  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjd  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j  h´Mühj(  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj¥  h]”hŒDescription”…””}”(hj§  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj£  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mþhj  ubhÌ)”}”(hŒGUpdate **sock**'s LSM state to represent a new connection from **skb**.”h]”(hŒUpdate ”…””}”(hj»  h²hh³Nh´Nubj2  )”}”(hŒ**sock**”h]”hŒsock”…””}”(hjÃ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj»  ubhŒ2â€™s LSM state to represent a new connection from ”…””}”(hj»  h²hh³Nh´Nubj2  )”}”(hŒ**skb**”h]”hŒskb”…””}”(hjÕ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj»  ubhŒ.”…””}”(hj»  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mýhj  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ,security_secmark_relabel_packet (C function)”Œ!c.security_secmark_relabel_packet”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ/int security_secmark_relabel_packet (u32 secid)”h]”jA  )”}”(hŒ.int security_secmark_relabel_packet(u32 secid)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj
  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj
  h²hh³j  h´Mubjj  )”}”(hŒsecurity_secmark_relabel_packet”h]”jp  )”}”(hŒsecurity_secmark_relabel_packet”h]”hŒsecurity_secmark_relabel_packet”…””}”(hj/  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj+  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj
  h²hh³j  h´Mubj‹  )”}”(hŒ(u32 secid)”h]”j‘  )”}”(hŒ	u32 secid”h]”(h)”}”(hhh]”jp  )”}”(hŒu32”h]”hŒu32”…””}”(hjN  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjK  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jP  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j1  sbŒ!c.security_secmark_relabel_packet”†”asbuh1hhjG  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjn  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjG  ubjp  )”}”(hŒsecid”h]”hŒsecid”…””}”(hj|  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjG  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjC  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj
  h²hh³j  h´Mubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj  h²hh³j  h´Mubah}”(h]”j  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j  h´Mhj  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ%Check if setting a secmark is allowed”h]”hŒ%Check if setting a secmark is allowed”…””}”(hj¦  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj£  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj  h²hh³j  h´Mubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j¾  j#  j¾  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒ¼**Parameters**

``u32 secid``
  new secmark value

**Description**

Check if the process should be allowed to relabel packets to **secid**.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjÈ  h]”hŒ
Parameters”…””}”(hjÊ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÆ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MhjÂ  ubjH  )”}”(hhh]”jM  )”}”(hŒ ``u32 secid``
new secmark value
”h]”(jS  )”}”(hŒ``u32 secid``”h]”hë)”}”(hjç  h]”hŒ	u32 secid”…””}”(hjé  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjå  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M	hjá  ubjm  )”}”(hhh]”hÌ)”}”(hŒnew secmark value”h]”hŒnew secmark value”…””}”(hj ‘  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jü  h´M	hjý  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjá  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jü  h´M	hjÞ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjÂ  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj"‘  h]”hŒDescription”…””}”(hj$‘  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj ‘  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MhjÂ  ubhÌ)”}”(hŒGCheck if the process should be allowed to relabel packets to **secid**.”h]”(hŒ=Check if the process should be allowed to relabel packets to ”…””}”(hj8‘  h²hh³Nh´Nubj2  )”}”(hŒ	**secid**”h]”hŒsecid”…””}”(hj@‘  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj8‘  ubhŒ.”…””}”(hj8‘  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M
hjÂ  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj[‘  h]”hŒReturn”…””}”(hj]‘  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjY‘  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MhjÂ  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hjq‘  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MhjÂ  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ*security_secmark_refcount_inc (C function)”Œc.security_secmark_refcount_inc”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ)void security_secmark_refcount_inc (void)”h]”jA  )”}”(hŒ(void security_secmark_refcount_inc(void)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hj ‘  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjœ‘  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¯‘  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjœ‘  h²hh³j®‘  h´Mubjj  )”}”(hŒsecurity_secmark_refcount_inc”h]”jp  )”}”(hŒsecurity_secmark_refcount_inc”h]”hŒsecurity_secmark_refcount_inc”…””}”(hjÁ‘  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj½‘  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjœ‘  h²hh³j®‘  h´Mubj‹  )”}”(hŒ(void)”h]”j‘  )”}”(hŒvoid”h]”jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjÝ‘  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÙ‘  ubah}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÕ‘  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjœ‘  h²hh³j®‘  h´Mubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj˜‘  h²hh³j®‘  h´Mubah}”(h]”j“‘  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j®‘  h´Mhj•‘  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ)Increment the secmark labeling rule count”h]”hŒ)Increment the secmark labeling rule count”…””}”(hj’  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj’  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj•‘  h²hh³j®‘  h´Mubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j’  j#  j’  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒ**Parameters**

``void``
  no arguments

**Description**

Tells the LSM to increment the number of secmark labeling rules loaded.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj)’  h]”hŒ
Parameters”…””}”(hj+’  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj'’  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj#’  ubjH  )”}”(hhh]”jM  )”}”(hŒ``void``
no arguments
”h]”(jS  )”}”(hŒ``void``”h]”hë)”}”(hjH’  h]”hŒvoid”…””}”(hjJ’  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjF’  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´KhjB’  ubjm  )”}”(hhh]”hÌ)”}”(hŒno arguments”h]”hŒno arguments”…””}”(hja’  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j]’  h´Khj^’  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjB’  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j]’  h´Khj?’  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj#’  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjƒ’  h]”hŒDescription”…””}”(hj…’  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj’  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Khj#’  ubhÌ)”}”(hŒGTells the LSM to increment the number of secmark labeling rules loaded.”h]”hŒGTells the LSM to increment the number of secmark labeling rules loaded.”…””}”(hj™’  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj#’  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ*security_secmark_refcount_dec (C function)”Œc.security_secmark_refcount_dec”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ)void security_secmark_refcount_dec (void)”h]”jA  )”}”(hŒ(void security_secmark_refcount_dec(void)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjÈ’  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÄ’  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M!ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj×’  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÄ’  h²hh³jÖ’  h´M!ubjj  )”}”(hŒsecurity_secmark_refcount_dec”h]”jp  )”}”(hŒsecurity_secmark_refcount_dec”h]”hŒsecurity_secmark_refcount_dec”…””}”(hjé’  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjå’  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjÄ’  h²hh³jÖ’  h´M!ubj‹  )”}”(hŒ(void)”h]”j‘  )”}”(hŒvoid”h]”jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hj“  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj“  ubah}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjý’  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjÄ’  h²hh³jÖ’  h´M!ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjÀ’  h²hh³jÖ’  h´M!ubah}”(h]”j»’  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jÖ’  h´M!hj½’  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ)Decrement the secmark labeling rule count”h]”hŒ)Decrement the secmark labeling rule count”…””}”(hj/“  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M!hj,“  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj½’  h²hh³jÖ’  h´M!ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jG“  j#  jG“  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒ**Parameters**

``void``
  no arguments

**Description**

Tells the LSM to decrement the number of secmark labeling rules loaded.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjQ“  h]”hŒ
Parameters”…””}”(hjS“  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjO“  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M%hjK“  ubjH  )”}”(hhh]”jM  )”}”(hŒ``void``
no arguments
”h]”(jS  )”}”(hŒ``void``”h]”hë)”}”(hjp“  h]”hŒvoid”…””}”(hjr“  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjn“  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Khjj“  ubjm  )”}”(hhh]”hÌ)”}”(hŒno arguments”h]”hŒno arguments”…””}”(hj‰“  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j…“  h´Khj†“  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjj“  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j…“  h´Khjg“  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjK“  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj«“  h]”hŒDescription”…””}”(hj­“  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj©“  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´KhjK“  ubhÌ)”}”(hŒGTells the LSM to decrement the number of secmark labeling rules loaded.”h]”hŒGTells the LSM to decrement the number of secmark labeling rules loaded.”…””}”(hjÁ“  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M"hjK“  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ,security_tun_dev_alloc_security (C function)”Œ!c.security_tun_dev_alloc_security”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ5int security_tun_dev_alloc_security (void **security)”h]”jA  )”}”(hŒ4int security_tun_dev_alloc_security(void **security)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjð“  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjì“  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M,ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÿ“  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjì“  h²hh³jþ“  h´M,ubjj  )”}”(hŒsecurity_tun_dev_alloc_security”h]”jp  )”}”(hŒsecurity_tun_dev_alloc_security”h]”hŒsecurity_tun_dev_alloc_security”…””}”(hj”  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj”  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjì“  h²hh³jþ“  h´M,ubj‹  )”}”(hŒ(void **security)”h]”j‘  )”}”(hŒvoid **security”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hj-”  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj)”  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj;”  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj)”  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjI”  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj)”  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjV”  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj)”  ubjp  )”}”(hŒsecurity”h]”hŒsecurity”…””}”(hjc”  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj)”  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj%”  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjì“  h²hh³jþ“  h´M,ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjè“  h²hh³jþ“  h´M,ubah}”(h]”jã“  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jþ“  h´M,hjå“  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ$Allocate a LSM blob for a TUN device”h]”hŒ$Allocate a LSM blob for a TUN device”…””}”(hj”  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M,hjŠ”  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjå“  h²hh³jþ“  h´M,ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j¥”  j#  j¥”  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX  **Parameters**

``void **security``
  pointer to the LSM blob

**Description**

This hook allows a module to allocate a security structure for a TUN device,
returning the pointer in **security**.

**Return**

Returns a zero on success, negative values on failure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj¯”  h]”hŒ
Parameters”…””}”(hj±”  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj­”  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M0hj©”  ubjH  )”}”(hhh]”jM  )”}”(hŒ,``void **security``
pointer to the LSM blob
”h]”(jS  )”}”(hŒ``void **security``”h]”hë)”}”(hjÎ”  h]”hŒvoid **security”…””}”(hjÐ”  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjÌ”  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M-hjÈ”  ubjm  )”}”(hhh]”hÌ)”}”(hŒpointer to the LSM blob”h]”hŒpointer to the LSM blob”…””}”(hjç”  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jã”  h´M-hjä”  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÈ”  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jã”  h´M-hjÅ”  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj©”  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj	•  h]”hŒDescription”…””}”(hj•  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj•  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M/hj©”  ubhÌ)”}”(hŒsThis hook allows a module to allocate a security structure for a TUN device,
returning the pointer in **security**.”h]”(hŒfThis hook allows a module to allocate a security structure for a TUN device,
returning the pointer in ”…””}”(hj•  h²hh³Nh´Nubj2  )”}”(hŒ**security**”h]”hŒsecurity”…””}”(hj'•  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj•  ubhŒ.”…””}”(hj•  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M.hj©”  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjB•  h]”hŒReturn”…””}”(hjD•  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj@•  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M1hj©”  ubhÌ)”}”(hŒ6Returns a zero on success, negative values on failure.”h]”hŒ6Returns a zero on success, negative values on failure.”…””}”(hjX•  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M2hj©”  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ+security_tun_dev_free_security (C function)”Œ c.security_tun_dev_free_security”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ4void security_tun_dev_free_security (void *security)”h]”jA  )”}”(hŒ3void security_tun_dev_free_security(void *security)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hj‡•  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjƒ•  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MFubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj–•  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjƒ•  h²hh³j••  h´MFubjj  )”}”(hŒsecurity_tun_dev_free_security”h]”jp  )”}”(hŒsecurity_tun_dev_free_security”h]”hŒsecurity_tun_dev_free_security”…””}”(hj¨•  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¤•  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjƒ•  h²hh³j••  h´MFubj‹  )”}”(hŒ(void *security)”h]”j‘  )”}”(hŒvoid *security”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjÄ•  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÀ•  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÒ•  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÀ•  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjà•  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjÀ•  ubjp  )”}”(hŒsecurity”h]”hŒsecurity”…””}”(hjí•  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÀ•  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj¼•  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjƒ•  h²hh³j••  h´MFubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj•  h²hh³j••  h´MFubah}”(h]”jz•  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j••  h´MFhj|•  h²hubj   )”}”(hhh]”hÌ)”}”(hŒFree a TUN device LSM blob”h]”hŒFree a TUN device LSM blob”…””}”(hj–  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MFhj–  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj|•  h²hh³j••  h´MFubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j/–  j#  j/–  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒŠ**Parameters**

``void *security``
  LSM blob

**Description**

This hook allows a module to free the security structure for a TUN device.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj9–  h]”hŒ
Parameters”…””}”(hj;–  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj7–  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MJhj3–  ubjH  )”}”(hhh]”jM  )”}”(hŒ``void *security``
LSM blob
”h]”(jS  )”}”(hŒ``void *security``”h]”hë)”}”(hjX–  h]”hŒvoid *security”…””}”(hjZ–  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjV–  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MGhjR–  ubjm  )”}”(hhh]”hÌ)”}”(hŒLSM blob”h]”hŒLSM blob”…””}”(hjq–  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jm–  h´MGhjn–  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjR–  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jm–  h´MGhjO–  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj3–  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj“–  h]”hŒDescription”…””}”(hj•–  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj‘–  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MIhj3–  ubhÌ)”}”(hŒJThis hook allows a module to free the security structure for a TUN device.”h]”hŒJThis hook allows a module to free the security structure for a TUN device.”…””}”(hj©–  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MHhj3–  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ$security_tun_dev_create (C function)”Œc.security_tun_dev_create”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ"int security_tun_dev_create (void)”h]”jA  )”}”(hŒ!int security_tun_dev_create(void)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjØ–  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÔ–  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MRubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjç–  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÔ–  h²hh³jæ–  h´MRubjj  )”}”(hŒsecurity_tun_dev_create”h]”jp  )”}”(hŒsecurity_tun_dev_create”h]”hŒsecurity_tun_dev_create”…””}”(hjù–  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjõ–  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjÔ–  h²hh³jæ–  h´MRubj‹  )”}”(hŒ(void)”h]”j‘  )”}”(hŒvoid”h]”jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hj—  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj—  ubah}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj—  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjÔ–  h²hh³jæ–  h´MRubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjÐ–  h²hh³jæ–  h´MRubah}”(h]”jË–  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jæ–  h´MRhjÍ–  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ)Check if creating a TUN device is allowed”h]”hŒ)Check if creating a TUN device is allowed”…””}”(hj?—  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MRhj<—  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjÍ–  h²hh³jæ–  h´MRubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jW—  j#  jW—  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒ **Parameters**

``void``
  no arguments

**Description**

Check permissions prior to creating a new TUN device.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hja—  h]”hŒ
Parameters”…””}”(hjc—  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj_—  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MVhj[—  ubjH  )”}”(hhh]”jM  )”}”(hŒ``void``
no arguments
”h]”(jS  )”}”(hŒ``void``”h]”hë)”}”(hj€—  h]”hŒvoid”…””}”(hj‚—  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj~—  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Khjz—  ubjm  )”}”(hhh]”hÌ)”}”(hŒno arguments”h]”hŒno arguments”…””}”(hj™—  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j•—  h´Khj–—  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjz—  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j•—  h´Khjw—  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj[—  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj»—  h]”hŒDescription”…””}”(hj½—  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj¹—  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Khj[—  ubhÌ)”}”(hŒ5Check permissions prior to creating a new TUN device.”h]”hŒ5Check permissions prior to creating a new TUN device.”…””}”(hjÑ—  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MShj[—  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjâ—  h]”hŒReturn”…””}”(hjä—  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjà—  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MUhj[—  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hjø—  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MVhj[—  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ*security_tun_dev_attach_queue (C function)”Œc.security_tun_dev_attach_queue”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ2int security_tun_dev_attach_queue (void *security)”h]”jA  )”}”(hŒ1int security_tun_dev_attach_queue(void *security)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj'˜  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj#˜  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M_ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj6˜  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj#˜  h²hh³j5˜  h´M_ubjj  )”}”(hŒsecurity_tun_dev_attach_queue”h]”jp  )”}”(hŒsecurity_tun_dev_attach_queue”h]”hŒsecurity_tun_dev_attach_queue”…””}”(hjH˜  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjD˜  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj#˜  h²hh³j5˜  h´M_ubj‹  )”}”(hŒ(void *security)”h]”j‘  )”}”(hŒvoid *security”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjd˜  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj`˜  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjr˜  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj`˜  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj€˜  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj`˜  ubjp  )”}”(hŒsecurity”h]”hŒsecurity”…””}”(hj˜  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj`˜  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj\˜  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj#˜  h²hh³j5˜  h´M_ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj˜  h²hh³j5˜  h´M_ubah}”(h]”j˜  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j5˜  h´M_hj˜  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ)Check if attaching a TUN queue is allowed”h]”hŒ)Check if attaching a TUN queue is allowed”…””}”(hj·˜  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M_hj´˜  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj˜  h²hh³j5˜  h´M_ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jÏ˜  j#  jÏ˜  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒ·**Parameters**

``void *security``
  TUN device LSM blob

**Description**

Check permissions prior to attaching to a TUN device queue.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjÙ˜  h]”hŒ
Parameters”…””}”(hjÛ˜  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj×˜  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MchjÓ˜  ubjH  )”}”(hhh]”jM  )”}”(hŒ'``void *security``
TUN device LSM blob
”h]”(jS  )”}”(hŒ``void *security``”h]”hë)”}”(hjø˜  h]”hŒvoid *security”…””}”(hjú˜  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjö˜  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M`hjò˜  ubjm  )”}”(hhh]”hÌ)”}”(hŒTUN device LSM blob”h]”hŒTUN device LSM blob”…””}”(hj™  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j™  h´M`hj™  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjò˜  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j™  h´M`hjï˜  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjÓ˜  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj3™  h]”hŒDescription”…””}”(hj5™  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj1™  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MbhjÓ˜  ubhÌ)”}”(hŒ;Check permissions prior to attaching to a TUN device queue.”h]”hŒ;Check permissions prior to attaching to a TUN device queue.”…””}”(hjI™  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MahjÓ˜  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjZ™  h]”hŒReturn”…””}”(hj\™  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjX™  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MchjÓ˜  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hjp™  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MdhjÓ˜  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ$security_tun_dev_attach (C function)”Œc.security_tun_dev_attach”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ=int security_tun_dev_attach (struct sock *sk, void *security)”h]”jA  )”}”(hŒ<int security_tun_dev_attach(struct sock *sk, void *security)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjŸ™  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj›™  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MmubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj®™  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj›™  h²hh³j­™  h´Mmubjj  )”}”(hŒsecurity_tun_dev_attach”h]”jp  )”}”(hŒsecurity_tun_dev_attach”h]”hŒsecurity_tun_dev_attach”…””}”(hjÀ™  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¼™  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj›™  h²hh³j­™  h´Mmubj‹  )”}”(hŒ!(struct sock *sk, void *security)”h]”(j‘  )”}”(hŒstruct sock *sk”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjÜ™  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjØ™  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjé™  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjØ™  ubh)”}”(hhh]”jp  )”}”(hŒsock”h]”hŒsock”…””}”(hjú™  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj÷™  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jü™  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jÂ™  sbŒc.security_tun_dev_attach”†”asbuh1hhjØ™  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjš  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjØ™  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj(š  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjØ™  ubjp  )”}”(hŒsk”h]”hŒsk”…””}”(hj5š  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjØ™  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÔ™  ubj‘  )”}”(hŒvoid *security”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjNš  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjJš  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj\š  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjJš  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjjš  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjJš  ubjp  )”}”(hŒsecurity”h]”hŒsecurity”…””}”(hjwš  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjJš  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÔ™  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj›™  h²hh³j­™  h´Mmubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj—™  h²hh³j­™  h´Mmubah}”(h]”j’™  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j­™  h´Mmhj”™  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ%Update TUN device LSM state on attach”h]”hŒ%Update TUN device LSM state on attach”…””}”(hj¡š  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mmhjžš  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj”™  h²hh³j­™  h´Mmubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j¹š  j#  j¹š  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX  **Parameters**

``struct sock *sk``
  associated sock

``void *security``
  TUN device LSM blob

**Description**

This hook can be used by the module to update any security state associated
with the TUN device's sock structure.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjÃš  h]”hŒ
Parameters”…””}”(hjÅš  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÁš  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mqhj½š  ubjH  )”}”(hhh]”(jM  )”}”(hŒ$``struct sock *sk``
associated sock
”h]”(jS  )”}”(hŒ``struct sock *sk``”h]”hë)”}”(hjâš  h]”hŒstruct sock *sk”…””}”(hjäš  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjàš  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MnhjÜš  ubjm  )”}”(hhh]”hÌ)”}”(hŒassociated sock”h]”hŒassociated sock”…””}”(hjûš  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j÷š  h´Mnhjøš  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÜš  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j÷š  h´MnhjÙš  ubjM  )”}”(hŒ'``void *security``
TUN device LSM blob
”h]”(jS  )”}”(hŒ``void *security``”h]”hë)”}”(hj›  h]”hŒvoid *security”…””}”(hj›  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj›  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mohj›  ubjm  )”}”(hhh]”hÌ)”}”(hŒTUN device LSM blob”h]”hŒTUN device LSM blob”…””}”(hj4›  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j0›  h´Mohj1›  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj›  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j0›  h´MohjÙš  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj½š  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjV›  h]”hŒDescription”…””}”(hjX›  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjT›  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mqhj½š  ubhÌ)”}”(hŒqThis hook can be used by the module to update any security state associated
with the TUN device's sock structure.”h]”hŒsThis hook can be used by the module to update any security state associated
with the TUN deviceâ€™s sock structure.”…””}”(hjl›  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mphj½š  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj}›  h]”hŒReturn”…””}”(hj›  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj{›  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mshj½š  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hj“›  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mthj½š  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ"security_tun_dev_open (C function)”Œc.security_tun_dev_open”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ*int security_tun_dev_open (void *security)”•      h]”jA  )”}”(hŒ)int security_tun_dev_open(void *security)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjÂ›  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj¾›  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M}ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÑ›  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¾›  h²hh³jÐ›  h´M}ubjj  )”}”(hŒsecurity_tun_dev_open”h]”jp  )”}”(hŒsecurity_tun_dev_open”h]”hŒsecurity_tun_dev_open”…””}”(hjã›  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjß›  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj¾›  h²hh³jÐ›  h´M}ubj‹  )”}”(hŒ(void *security)”h]”j‘  )”}”(hŒvoid *security”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjÿ›  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjû›  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjœ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjû›  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjœ  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjû›  ubjp  )”}”(hŒsecurity”h]”hŒsecurity”…””}”(hj(œ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjû›  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj÷›  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj¾›  h²hh³jÐ›  h´M}ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjº›  h²hh³jÐ›  h´M}ubah}”(h]”jµ›  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jÐ›  h´M}hj·›  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ#Update TUN device LSM state on open”h]”hŒ#Update TUN device LSM state on open”…””}”(hjRœ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M}hjOœ  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj·›  h²hh³jÐ›  h´M}ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jjœ  j#  jjœ  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒñ**Parameters**

``void *security``
  TUN device LSM blob

**Description**

This hook can be used by the module to update any security state associated
with the TUN device's security structure.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjtœ  h]”hŒ
Parameters”…””}”(hjvœ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjrœ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhjnœ  ubjH  )”}”(hhh]”jM  )”}”(hŒ'``void *security``
TUN device LSM blob
”h]”(jS  )”}”(hŒ``void *security``”h]”hë)”}”(hj“œ  h]”hŒvoid *security”…””}”(hj•œ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj‘œ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M~hjœ  ubjm  )”}”(hhh]”hÌ)”}”(hŒTUN device LSM blob”h]”hŒTUN device LSM blob”…””}”(hj¬œ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j¨œ  h´M~hj©œ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjœ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j¨œ  h´M~hjŠœ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjnœ  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjÎœ  h]”hŒDescription”…””}”(hjÐœ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÌœ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M€hjnœ  ubhÌ)”}”(hŒuThis hook can be used by the module to update any security state associated
with the TUN device's security structure.”h]”hŒwThis hook can be used by the module to update any security state associated
with the TUN deviceâ€™s security structure.”…””}”(hjäœ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhjnœ  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjõœ  h]”hŒReturn”…””}”(hj÷œ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjóœ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M‚hjnœ  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mƒhjnœ  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ(security_sctp_assoc_request (C function)”Œc.security_sctp_assoc_request”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒTint security_sctp_assoc_request (struct sctp_association *asoc, struct sk_buff *skb)”h]”jA  )”}”(hŒSint security_sctp_assoc_request(struct sctp_association *asoc, struct sk_buff *skb)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj:  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj6  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MŒubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjI  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj6  h²hh³jH  h´MŒubjj  )”}”(hŒsecurity_sctp_assoc_request”h]”jp  )”}”(hŒsecurity_sctp_assoc_request”h]”hŒsecurity_sctp_assoc_request”…””}”(hj[  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjW  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj6  h²hh³jH  h´MŒubj‹  )”}”(hŒ4(struct sctp_association *asoc, struct sk_buff *skb)”h]”(j‘  )”}”(hŒstruct sctp_association *asoc”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjw  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjs  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj„  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjs  ubh)”}”(hhh]”jp  )”}”(hŒsctp_association”h]”hŒsctp_association”…””}”(hj•  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj’  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j—  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j]  sbŒc.security_sctp_assoc_request”†”asbuh1hhjs  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjµ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjs  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjÃ  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjs  ubjp  )”}”(hŒasoc”h]”hŒasoc”…””}”(hjÐ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjs  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjo  ubj‘  )”}”(hŒstruct sk_buff *skb”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjé  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjå  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjö  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjå  ubh)”}”(hhh]”jp  )”}”(hŒsk_buff”h]”hŒsk_buff”…””}”(hjž  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjž  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j	ž  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j±  Œc.security_sctp_assoc_request”†”asbuh1hhjå  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj%ž  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjå  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj3ž  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjå  ubjp  )”}”(hŒskb”h]”hŒskb”…””}”(hj@ž  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjå  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjo  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj6  h²hh³jH  h´MŒubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj2  h²hh³jH  h´MŒubah}”(h]”j-  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jH  h´MŒhj/  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ(Update the LSM on a SCTP association req”h]”hŒ(Update the LSM on a SCTP association req”…””}”(hjjž  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MŒhjgž  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj/  h²hh³jH  h´MŒubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j‚ž  j#  j‚ž  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX  **Parameters**

``struct sctp_association *asoc``
  SCTP association

``struct sk_buff *skb``
  packet requesting the association

**Description**

Passes the **asoc** and **chunk->skb** of the association INIT packet to the LSM.

**Return**

Returns 0 on success, error on failure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjŒž  h]”hŒ
Parameters”…””}”(hjŽž  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjŠž  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj†ž  ubjH  )”}”(hhh]”(jM  )”}”(hŒ3``struct sctp_association *asoc``
SCTP association
”h]”(jS  )”}”(hŒ!``struct sctp_association *asoc``”h]”hë)”}”(hj«ž  h]”hŒstruct sctp_association *asoc”…””}”(hj­ž  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj©ž  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj¥ž  ubjm  )”}”(hhh]”hÌ)”}”(hŒSCTP association”h]”hŒSCTP association”…””}”(hjÄž  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÀž  h´MhjÁž  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj¥ž  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÀž  h´Mhj¢ž  ubjM  )”}”(hŒ:``struct sk_buff *skb``
packet requesting the association
”h]”(jS  )”}”(hŒ``struct sk_buff *skb``”h]”hë)”}”(hjäž  h]”hŒstruct sk_buff *skb”…””}”(hjæž  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjâž  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MŽhjÞž  ubjm  )”}”(hhh]”hÌ)”}”(hŒ!packet requesting the association”h]”hŒ!packet requesting the association”…””}”(hjýž  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jùž  h´MŽhjúž  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÞž  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jùž  h´MŽhj¢ž  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj†ž  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjŸ  h]”hŒDescription”…””}”(hj!Ÿ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjŸ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj†ž  ubhÌ)”}”(hŒQPasses the **asoc** and **chunk->skb** of the association INIT packet to the LSM.”h]”(hŒPasses the ”…””}”(hj5Ÿ  h²hh³Nh´Nubj2  )”}”(hŒ**asoc**”h]”hŒasoc”…””}”(hj=Ÿ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj5Ÿ  ubhŒ and ”…””}”(hj5Ÿ  h²hh³Nh´Nubj2  )”}”(hŒ**chunk->skb**”h]”hŒ
chunk->skb”…””}”(hjOŸ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj5Ÿ  ubhŒ+ of the association INIT packet to the LSM.”…””}”(hj5Ÿ  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj†ž  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjjŸ  h]”hŒReturn”…””}”(hjlŸ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjhŸ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M‘hj†ž  ubhÌ)”}”(hŒ'Returns 0 on success, error on failure.”h]”hŒ'Returns 0 on success, error on failure.”…””}”(hj€Ÿ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M’hj†ž  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ'security_sctp_bind_connect (C function)”Œc.security_sctp_bind_connect”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒdint security_sctp_bind_connect (struct sock *sk, int optname, struct sockaddr *address, int addrlen)”h]”jA  )”}”(hŒcint security_sctp_bind_connect(struct sock *sk, int optname, struct sockaddr *address, int addrlen)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj¯Ÿ  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj«Ÿ  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MœubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¾Ÿ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj«Ÿ  h²hh³j½Ÿ  h´Mœubjj  )”}”(hŒsecurity_sctp_bind_connect”h]”jp  )”}”(hŒsecurity_sctp_bind_connect”h]”hŒsecurity_sctp_bind_connect”…””}”(hjÐŸ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÌŸ  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj«Ÿ  h²hh³j½Ÿ  h´Mœubj‹  )”}”(hŒE(struct sock *sk, int optname, struct sockaddr *address, int addrlen)”h]”(j‘  )”}”(hŒstruct sock *sk”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjìŸ  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjèŸ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjùŸ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjèŸ  ubh)”}”(hhh]”jp  )”}”(hŒsock”h]”hŒsock”…””}”(hj
   h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj   ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j   Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jÒŸ  sbŒc.security_sctp_bind_connect”†”asbuh1hhjèŸ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj*   h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjèŸ  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj8   h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjèŸ  ubjp  )”}”(hŒsk”h]”hŒsk”…””}”(hjE   h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjèŸ  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjäŸ  ubj‘  )”}”(hŒint optname”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj^   h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjZ   ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjl   h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjZ   ubjp  )”}”(hŒoptname”h]”hŒoptname”…””}”(hjz   h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjZ   ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjäŸ  ubj‘  )”}”(hŒstruct sockaddr *address”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj“   h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj   ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj    h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj   ubh)”}”(hhh]”jp  )”}”(hŒsockaddr”h]”hŒsockaddr”…””}”(hj±   h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj®   ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j³   Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j&   Œc.security_sctp_bind_connect”†”asbuh1hhj   ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÏ   h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj   ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjÝ   h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj   ubjp  )”}”(hŒaddress”h]”hŒaddress”…””}”(hjê   h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj   ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjäŸ  ubj‘  )”}”(hŒint addrlen”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj¡  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÿ   ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¡  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÿ   ubjp  )”}”(hŒaddrlen”h]”hŒaddrlen”…””}”(hj¡  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÿ   ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjäŸ  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj«Ÿ  h²hh³j½Ÿ  h´Mœubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj§Ÿ  h²hh³j½Ÿ  h´Mœubah}”(h]”j¢Ÿ  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j½Ÿ  h´Mœhj¤Ÿ  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ*Validate a list of addrs for a SCTP option”h]”hŒ*Validate a list of addrs for a SCTP option”…””}”(hjI¡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MœhjF¡  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj¤Ÿ  h²hh³j½Ÿ  h´Mœubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  ja¡  j#  ja¡  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX4  **Parameters**

``struct sock *sk``
  socket

``int optname``
  SCTP option to validate

``struct sockaddr *address``
  list of IP addresses to validate

``int addrlen``
  length of the address list

**Description**

Validiate permissions required for each address associated with sock **sk**.
Depending on **optname**, the addresses will be treated as either a connect or
bind service. The **addrlen** is calculated on each IPv4 and IPv6 address using
sizeof(struct sockaddr_in) or sizeof(struct sockaddr_in6).

**Return**

Returns 0 on success, error on failure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjk¡  h]”hŒ
Parameters”…””}”(hjm¡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hji¡  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M hje¡  ubjH  )”}”(hhh]”(jM  )”}”(hŒ``struct sock *sk``
socket
”h]”(jS  )”}”(hŒ``struct sock *sk``”h]”hë)”}”(hjŠ¡  h]”hŒstruct sock *sk”…””}”(hjŒ¡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjˆ¡  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj„¡  ubjm  )”}”(hhh]”hÌ)”}”(hŒsocket”h]”hŒsocket”…””}”(hj£¡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jŸ¡  h´Mhj ¡  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj„¡  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jŸ¡  h´Mhj¡  ubjM  )”}”(hŒ(``int optname``
SCTP option to validate
”h]”(jS  )”}”(hŒ``int optname``”h]”hë)”}”(hjÃ¡  h]”hŒint optname”…””}”(hjÅ¡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjÁ¡  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mžhj½¡  ubjm  )”}”(hhh]”hÌ)”}”(hŒSCTP option to validate”h]”hŒSCTP option to validate”…””}”(hjÜ¡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jØ¡  h´MžhjÙ¡  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj½¡  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jØ¡  h´Mžhj¡  ubjM  )”}”(hŒ>``struct sockaddr *address``
list of IP addresses to validate
”h]”(jS  )”}”(hŒ``struct sockaddr *address``”h]”hë)”}”(hjü¡  h]”hŒstruct sockaddr *address”…””}”(hjþ¡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjú¡  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MŸhjö¡  ubjm  )”}”(hhh]”hÌ)”}”(hŒ list of IP addresses to validate”h]”hŒ list of IP addresses to validate”…””}”(hj¢  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j¢  h´MŸhj¢  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjö¡  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j¢  h´MŸhj¡  ubjM  )”}”(hŒ+``int addrlen``
length of the address list
”h]”(jS  )”}”(hŒ``int addrlen``”h]”hë)”}”(hj5¢  h]”hŒint addrlen”…””}”(hj7¢  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj3¢  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M hj/¢  ubjm  )”}”(hhh]”hÌ)”}”(hŒlength of the address list”h]”hŒlength of the address list”…””}”(hjN¢  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jJ¢  h´M hjK¢  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj/¢  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jJ¢  h´M hj¡  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hje¡  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjp¢  h]”hŒDescription”…””}”(hjr¢  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjn¢  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¢hje¡  ubhÌ)”}”(hX&  Validiate permissions required for each address associated with sock **sk**.
Depending on **optname**, the addresses will be treated as either a connect or
bind service. The **addrlen** is calculated on each IPv4 and IPv6 address using
sizeof(struct sockaddr_in) or sizeof(struct sockaddr_in6).”h]”(hŒEValidiate permissions required for each address associated with sock ”…””}”(hj†¢  h²hh³Nh´Nubj2  )”}”(hŒ**sk**”h]”hŒsk”…””}”(hjŽ¢  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj†¢  ubhŒ.
Depending on ”…””}”(hj†¢  h²hh³Nh´Nubj2  )”}”(hŒ**optname**”h]”hŒoptname”…””}”(hj ¢  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj†¢  ubhŒI, the addresses will be treated as either a connect or
bind service. The ”…””}”(hj†¢  h²hh³Nh´Nubj2  )”}”(hŒ**addrlen**”h]”hŒaddrlen”…””}”(hj²¢  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj†¢  ubhŒm is calculated on each IPv4 and IPv6 address using
sizeof(struct sockaddr_in) or sizeof(struct sockaddr_in6).”…””}”(hj†¢  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¡hje¡  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjÍ¢  h]”hŒReturn”…””}”(hjÏ¢  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjË¢  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¦hje¡  ubhÌ)”}”(hŒ'Returns 0 on success, error on failure.”h]”hŒ'Returns 0 on success, error on failure.”…””}”(hjã¢  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M§hje¡  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ#security_sctp_sk_clone (C function)”Œc.security_sctp_sk_clone”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ`void security_sctp_sk_clone (struct sctp_association *asoc, struct sock *sk, struct sock *newsk)”h]”jA  )”}”(hŒ_void security_sctp_sk_clone(struct sctp_association *asoc, struct sock *sk, struct sock *newsk)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hj£  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj£  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M±ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj!£  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj£  h²hh³j £  h´M±ubjj  )”}”(hŒsecurity_sctp_sk_clone”h]”jp  )”}”(hŒsecurity_sctp_sk_clone”h]”hŒsecurity_sctp_sk_clone”…””}”(hj3£  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj/£  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj£  h²hh³j £  h´M±ubj‹  )”}”(hŒD(struct sctp_association *asoc, struct sock *sk, struct sock *newsk)”h]”(j‘  )”}”(hŒstruct sctp_association *asoc”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjO£  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjK£  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj\£  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjK£  ubh)”}”(hhh]”jp  )”}”(hŒsctp_association”h]”hŒsctp_association”…””}”(hjm£  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjj£  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jo£  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j5£  sbŒc.security_sctp_sk_clone”†”asbuh1hhjK£  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj£  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjK£  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj›£  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjK£  ubjp  )”}”(hŒasoc”h]”hŒasoc”…””}”(hj¨£  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjK£  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjG£  ubj‘  )”}”(hŒstruct sock *sk”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjÁ£  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj½£  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÎ£  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj½£  ubh)”}”(hhh]”jp  )”}”(hŒsock”h]”hŒsock”…””}”(hjß£  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÜ£  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”já£  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j‰£  Œc.security_sctp_sk_clone”†”asbuh1hhj½£  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjý£  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj½£  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj¤  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj½£  ubjp  )”}”(hŒsk”h]”hŒsk”…””}”(hj¤  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj½£  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjG£  ubj‘  )”}”(hŒstruct sock *newsk”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj1¤  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj-¤  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj>¤  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj-¤  ubh)”}”(hhh]”jp  )”}”(hŒsock”h]”hŒsock”…””}”(hjO¤  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjL¤  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jQ¤  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j‰£  Œc.security_sctp_sk_clone”†”asbuh1hhj-¤  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjm¤  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj-¤  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj{¤  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj-¤  ubjp  )”}”(hŒnewsk”h]”hŒnewsk”…””}”(hjˆ¤  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj-¤  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjG£  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj£  h²hh³j £  h´M±ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj
£  h²hh³j £  h´M±ubah}”(h]”j£  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j £  h´M±hj£  h²hubj   )”}”(hhh]”hÌ)”}”(hŒClone a SCTP sock's LSM state”h]”hŒClone a SCTP sockâ€™s LSM state”…””}”(hj²¤  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M±hj¯¤  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj£  h²hh³j £  h´M±ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jÊ¤  j#  jÊ¤  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX6  **Parameters**

``struct sctp_association *asoc``
  SCTP association

``struct sock *sk``
  original sock

``struct sock *newsk``
  target sock

**Description**

Called whenever a new socket is created by accept(2) (i.e. a TCP style
socket) or when a socket is 'peeled off' e.g userspace calls
sctp_peeloff(3).”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjÔ¤  h]”hŒ
Parameters”…””}”(hjÖ¤  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÒ¤  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MµhjÎ¤  ubjH  )”}”(hhh]”(jM  )”}”(hŒ3``struct sctp_association *asoc``
SCTP association
”h]”(jS  )”}”(hŒ!``struct sctp_association *asoc``”h]”hë)”}”(hjó¤  h]”hŒstruct sctp_association *asoc”…””}”(hjõ¤  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjñ¤  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M²hjí¤  ubjm  )”}”(hhh]”hÌ)”}”(hŒSCTP association”h]”hŒSCTP association”…””}”(hj¥  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j¥  h´M²hj	¥  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjí¤  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j¥  h´M²hjê¤  ubjM  )”}”(hŒ"``struct sock *sk``
original sock
”h]”(jS  )”}”(hŒ``struct sock *sk``”h]”hë)”}”(hj,¥  h]”hŒstruct sock *sk”…””}”(hj.¥  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj*¥  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M³hj&¥  ubjm  )”}”(hhh]”hÌ)”}”(hŒoriginal sock”h]”hŒoriginal sock”…””}”(hjE¥  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jA¥  h´M³hjB¥  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj&¥  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jA¥  h´M³hjê¤  ubjM  )”}”(hŒ#``struct sock *newsk``
target sock
”h]”(jS  )”}”(hŒ``struct sock *newsk``”h]”hë)”}”(hje¥  h]”hŒstruct sock *newsk”…””}”(hjg¥  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjc¥  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M´hj_¥  ubjm  )”}”(hhh]”hÌ)”}”(hŒtarget sock”h]”hŒtarget sock”…””}”(hj~¥  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jz¥  h´M´hj{¥  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj_¥  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jz¥  h´M´hjê¤  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjÎ¤  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj ¥  h]”hŒDescription”…””}”(hj¢¥  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjž¥  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¶hjÎ¤  ubhÌ)”}”(hŒ”Called whenever a new socket is created by accept(2) (i.e. a TCP style
socket) or when a socket is 'peeled off' e.g userspace calls
sctp_peeloff(3).”h]”hŒ˜Called whenever a new socket is created by accept(2) (i.e. a TCP style
socket) or when a socket is â€˜peeled offâ€™ e.g userspace calls
sctp_peeloff(3).”…””}”(hj¶¥  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MµhjÎ¤  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ,security_sctp_assoc_established (C function)”Œ!c.security_sctp_assoc_established”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒXint security_sctp_assoc_established (struct sctp_association *asoc, struct sk_buff *skb)”h]”jA  )”}”(hŒWint security_sctp_assoc_established(struct sctp_association *asoc, struct sk_buff *skb)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjå¥  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjá¥  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÂubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjô¥  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjá¥  h²hh³jó¥  h´MÂubjj  )”}”(hŒsecurity_sctp_assoc_established”h]”jp  )”}”(hŒsecurity_sctp_assoc_established”h]”hŒsecurity_sctp_assoc_established”…””}”(hj¦  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¦  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjá¥  h²hh³jó¥  h´MÂubj‹  )”}”(hŒ4(struct sctp_association *asoc, struct sk_buff *skb)”h]”(j‘  )”}”(hŒstruct sctp_association *asoc”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj"¦  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj¦  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj/¦  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¦  ubh)”}”(hhh]”jp  )”}”(hŒsctp_association”h]”hŒsctp_association”…””}”(hj@¦  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj=¦  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jB¦  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j¦  sbŒ!c.security_sctp_assoc_established”†”asbuh1hhj¦  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj`¦  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¦  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjn¦  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj¦  ubjp  )”}”(hŒasoc”h]”hŒasoc”…””}”(hj{¦  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¦  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj¦  ubj‘  )”}”(hŒstruct sk_buff *skb”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj”¦  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj¦  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¡¦  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¦  ubh)”}”(hhh]”jp  )”}”(hŒsk_buff”h]”hŒsk_buff”…””}”(hj²¦  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¯¦  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j´¦  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j\¦  Œ!c.security_sctp_assoc_established”†”asbuh1hhj¦  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÐ¦  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¦  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjÞ¦  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj¦  ubjp  )”}”(hŒskb”h]”hŒskb”…””}”(hjë¦  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¦  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj¦  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjá¥  h²hh³jó¥  h´MÂubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjÝ¥  h²hh³jó¥  h´MÂubah}”(h]”jØ¥  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jó¥  h´MÂhjÚ¥  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ'Update LSM state when assoc established”h]”hŒ'Update LSM state when assoc established”…””}”(hj§  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÂhj§  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjÚ¥  h²hh³jó¥  h´MÂubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j-§  j#  j-§  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX*  **Parameters**

``struct sctp_association *asoc``
  SCTP association

``struct sk_buff *skb``
  packet establishing the association

**Description**

Passes the **asoc** and **chunk->skb** of the association COOKIE_ACK packet to the
security module.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj7§  h]”hŒ
Parameters”…””}”(hj9§  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj5§  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÆhj1§  ubjH  )”}”(hhh]”(jM  )”}”(hŒ3``struct sctp_association *asoc``
SCTP association
”h]”(jS  )”}”(hŒ!``struct sctp_association *asoc``”h]”hë)”}”(hjV§  h]”hŒstruct sctp_association *asoc”…””}”(hjX§  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjT§  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÃhjP§  ubjm  )”}”(hhh]”hÌ)”}”(hŒSCTP association”h]”hŒSCTP association”…””}”(hjo§  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jk§  h´MÃhjl§  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjP§  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jk§  h´MÃhjM§  ubjM  )”}”(hŒ<``struct sk_buff *skb``
packet establishing the association
”h]”(jS  )”}”(hŒ``struct sk_buff *skb``”h]”hë)”}”(hj§  h]”hŒstruct sk_buff *skb”…””}”(hj‘§  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj§  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÄhj‰§  ubjm  )”}”(hhh]”hÌ)”}”(hŒ#packet establishing the association”h]”hŒ#packet establishing the association”…””}”(hj¨§  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j¤§  h´MÄhj¥§  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj‰§  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j¤§  h´MÄhjM§  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj1§  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjÊ§  h]”hŒDescription”…””}”(hjÌ§  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÈ§  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÆhj1§  ubhÌ)”}”(hŒcPasses the **asoc** and **chunk->skb** of the association COOKIE_ACK packet to the
security module.”h]”(hŒPasses the ”…””}”(hjà§  h²hh³Nh´Nubj2  )”}”(hŒ**asoc**”h]”hŒasoc”…””}”(hjè§  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjà§  ubhŒ and ”…””}”(hjà§  h²hh³Nh´Nubj2  )”}”(hŒ**chunk->skb**”h]”hŒ
chunk->skb”…””}”(hjú§  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjà§  ubhŒ= of the association COOKIE_ACK packet to the
security module.”…””}”(hjà§  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÅhj1§  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj¨  h]”hŒReturn”…””}”(hj¨  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj¨  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÈhj1§  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hj+¨  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÉhj1§  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œsecurity_unix_find (C function)”Œc.security_unix_find”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒOint security_unix_find (const struct path *path, struct sock *other, int flags)”h]”jA  )”}”(hŒNint security_unix_find(const struct path *path, struct sock *other, int flags)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjZ¨  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjV¨  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MçubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hji¨  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjV¨  h²hh³jh¨  h´Mçubjj  )”}”(hŒsecurity_unix_find”h]”jp  )”}”(hŒsecurity_unix_find”h]”hŒsecurity_unix_find”…””}”(hj{¨  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjw¨  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjV¨  h²hh³jh¨  h´Mçubj‹  )”}”(hŒ8(const struct path *path, struct sock *other, int flags)”h]”(j‘  )”}”(hŒconst struct path *path”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hj—¨  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj“¨  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¤¨  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj“¨  ubjL  )”}”(hjO  h]”hŒstruct”…””}”(hj²¨  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj“¨  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¿¨  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj“¨  ubh)”}”(hhh]”jp  )”}”(hŒpath”h]”hŒpath”…””}”(hjÐ¨  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÍ¨  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jÒ¨  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j}¨  sbŒc.security_unix_find”†”asbuh1hhj“¨  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjð¨  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj“¨  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjþ¨  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj“¨  ubjp  )”}”(hŒpath”h]”hŒpath”…””}”(hj©  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj“¨  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj¨  ubj‘  )”}”(hŒstruct sock *other”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj$©  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj ©  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj1©  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj ©  ubh)”}”(hhh]”jp  )”}”(hŒsock”h]”hŒsock”…””}”(hjB©  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj?©  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jD©  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jì¨  Œc.security_unix_find”†”asbuh1hhj ©  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj`©  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj ©  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjn©  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj ©  ubjp  )”}”(hŒother”h]”hŒother”…””}”(hj{©  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj ©  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj¨  ubj‘  )”}”(hŒ	int flags”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj”©  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj©  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¢©  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj©  ubjp  )”}”(hŒflags”h]”hŒflags”…””}”(hj°©  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj©  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj¨  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjV¨  h²hh³jh¨  h´Mçubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjR¨  h²hh³jh¨  h´Mçubah}”(h]”jM¨  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jh¨  h´MçhjO¨  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ+Check if a named AF_UNIX socket can connect”h]”hŒ+Check if a named AF_UNIX socket can connect”…””}”(hjÚ©  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mçhj×©  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjO¨  h²hh³jh¨  h´Mçubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jò©  j#  jò©  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hXs  **Parameters**

``const struct path *path``
  path of the socket being connected to

``struct sock *other``
  peer sock

``int flags``
  flags associated with the socket

**Description**

This hook is called to check permissions before connecting to a named
AF_UNIX socket. The caller does not hold any locks on **other**.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjü©  h]”hŒ
Parameters”…””}”(hjþ©  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjú©  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mëhjö©  ubjH  )”}”(hhh]”(jM  )”}”(hŒB``const struct path *path``
path of the socket being connected to
”h]”(jS  )”}”(hŒ``const struct path *path``”h]”hë)”}”(hjª  h]”hŒconst struct path *path”…””}”(hjª  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjª  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mèhjª  ubjm  )”}”(hhh]”hÌ)”}”(hŒ%path of the socket being connected to”h]”hŒ%path of the socket being connected to”…””}”(hj4ª  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j0ª  h´Mèhj1ª  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjª  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j0ª  h´Mèhjª  ubjM  )”}”(hŒ!``struct sock *other``
peer sock
”h]”(jS  )”}”(hŒ``struct sock *other``”h]”hë)”}”(hjTª  h]”hŒstruct sock *other”…””}”(hjVª  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjRª  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MéhjNª  ubjm  )”}”(hhh]”hÌ)”}”(hŒ	peer sock”h]”hŒ	peer sock”…””}”(hjmª  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jiª  h´Méhjjª  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjNª  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jiª  h´Méhjª  ubjM  )”}”(hŒ/``int flags``
flags associated with the socket
”h]”(jS  )”}”(hŒ``int flags``”h]”hë)”}”(hjª  h]”hŒ	int flags”…””}”(hjª  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj‹ª  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mêhj‡ª  ubjm  )”}”(hhh]”hÌ)”}”(hŒ flags associated with the socket”h]”hŒ flags associated with the socket”…””}”(hj¦ª  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j¢ª  h´Mêhj£ª  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj‡ª  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j¢ª  h´Mêhjª  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjö©  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjÈª  h]”hŒDescription”…””}”(hjÊª  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÆª  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mìhjö©  ubhÌ)”}”(hŒ†This hook is called to check permissions before connecting to a named
AF_UNIX socket. The caller does not hold any locks on **other**.”h]”(hŒ|This hook is called to check permissions before connecting to a named
AF_UNIX socket. The caller does not hold any locks on ”…””}”(hjÞª  h²hh³Nh´Nubj2  )”}”(hŒ	**other**”h]”hŒother”…””}”(hjæª  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÞª  ubhŒ.”…””}”(hjÞª  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mëhjö©  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj«  h]”hŒReturn”…””}”(hj«  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÿª  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mîhjö©  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hj«  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mïhjö©  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ$security_ib_pkey_access (C function)”Œc.security_ib_pkey_access”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒDint security_ib_pkey_access (void *sec, u64 subnet_prefix, u16 pkey)”h]”jA  )”}”(hŒCint security_ib_pkey_access(void *sec, u64 subnet_prefix, u16 pkey)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjF«  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjB«  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MûubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjU«  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjB«  h²hh³jT«  h´Mûubjj  )”}”(hŒsecurity_ib_pkey_access”h]”jp  )”}”(hŒsecurity_ib_pkey_access”h]”hŒsecurity_ib_pkey_access”…””}”(hjg«  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjc«  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjB«  h²hh³jT«  h´Mûubj‹  )”}”(hŒ((void *sec, u64 subnet_prefix, u16 pkey)”h]”(j‘  )”}”(hŒ	void *sec”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjƒ«  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj«  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj‘«  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj«  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjŸ«  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj«  ubjp  )”}”(hŒsec”h]”hŒsec”…””}”(hj¬«  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj«  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj{«  ubj‘  )”}”(hŒu64 subnet_prefix”h]”(h)”}”(hhh]”jp  )”}”(hŒu64”h]”hŒu64”…””}”(hjÈ«  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÅ«  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jÊ«  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  ji«  sbŒc.security_ib_pkey_access”†”asbuh1hhjÁ«  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjè«  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÁ«  ubjp  )”}”(hŒsubnet_prefix”h]”hŒsubnet_prefix”…””}”(hjö«  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÁ«  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj{«  ubj‘  )”}”(hŒu16 pkey”h]”(h)”}”(hhh]”jp  )”}”(hŒu16”h]”hŒu16”…””}”(hj¬  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¬  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j¬  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jä«  Œc.security_ib_pkey_access”†”asbuh1hhj¬  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj0¬  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¬  ubjp  )”}”(hŒpkey”h]”hŒpkey”…””}”(hj>¬  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¬  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj{«  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjB«  h²hh³jT«  h´Mûubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj>«  h²hh³jT«  h´Mûubah}”(h]”j9«  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jT«  h´Mûhj;«  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ(Check if access to an IB pkey is allowed”h]”hŒ(Check if access to an IB pkey is allowed”…””}”(hjh¬  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mûhje¬  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj;«  h²hh³jT«  h´Mûubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j€¬  j#  j€¬  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒí**Parameters**

``void *sec``
  LSM blob

``u64 subnet_prefix``
  subnet prefix of the port

``u16 pkey``
  IB pkey

**Description**

Check permission to access a pkey when modifying a QP.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjŠ¬  h]”hŒ
Parameters”…””}”(hjŒ¬  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjˆ¬  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mÿhj„¬  ubjH  )”}”(hhh]”(jM  )”}”(hŒ``void *sec``
LSM blob
”h]”(jS  )”}”(hŒ``void *sec``”h]”hë)”}”(hj©¬  h]”hŒ	void *sec”…””}”(hj«¬  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj§¬  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mühj£¬  ubjm  )”}”(hhh]”hÌ)”}”(hŒLSM blob”h]”hŒLSM blob”…””}”(hjÂ¬  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j¾¬  h´Mühj¿¬  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj£¬  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j¾¬  h´Mühj ¬  ubjM  )”}”(hŒ0``u64 subnet_prefix``
subnet prefix of the port
”h]”(jS  )”}”(hŒ``u64 subnet_prefix``”h]”hë)”}”(hjâ¬  h]”hŒu64 subnet_prefix”…””}”(hjä¬  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjà¬  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MýhjÜ¬  ubjm  )”}”(hhh]”hÌ)”}”(hŒsubnet prefix of the port”h]”hŒsubnet prefix of the port”…””}”(hjû¬  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j÷¬  h´Mýhjø¬  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÜ¬  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j÷¬  h´Mýhj ¬  ubjM  )”}”(hŒ``u16 pkey``
IB pkey
”h]”(jS  )”}”(hŒ``u16 pkey``”h]”hë)”}”(hj­  h]”hŒu16 pkey”…””}”(hj­  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj­  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mþhj­  ubjm  )”}”(hhh]”hÌ)”}”(hŒIB pkey”h]”hŒIB pkey”…””}”(hj4­  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j0­  h´Mþhj1­  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj­  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j0­  h´Mþhj ¬  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj„¬  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjV­  h]”hŒDescription”…””}”(hjX­  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjT­  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M hj„¬  ubhÌ)”}”(hŒ6Check permission to access a pkey when modifying a QP.”h]”hŒ6Check permission to access a pkey when modifying a QP.”…””}”(hjl­  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mÿhj„¬  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj}­  h]”hŒReturn”…””}”(hj­  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj{­  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj„¬  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hj“­  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj„¬  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ.security_ib_endport_manage_subnet (C function)”Œ#c.security_ib_endport_manage_subnet”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒTint security_ib_endport_manage_subnet (void *sec, const char *dev_name, u8 port_num)”h]”jA  )”}”(hŒSint security_ib_endport_manage_subnet(void *sec, const char *dev_name, u8 port_num)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjÂ­  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj¾­  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÑ­  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¾­  h²hh³jÐ­  h´Mubjj  )”}”(hŒ!security_ib_endport_manage_subnet”h]”jp  )”}”(hŒ!security_ib_endport_manage_subnet”h]”hŒ!security_ib_endport_manage_subnet”…””}”(hjã­  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjß­  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj¾­  h²hh³jÐ­  h´Mubj‹  )”}”(hŒ.(void *sec, const char *dev_name, u8 port_num)”h]”(j‘  )”}”(hŒ	void *sec”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjÿ­  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjû­  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj®  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjû­  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj®  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjû­  ubjp  )”}”(hŒsec”h]”hŒsec”…””}”(hj(®  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjû­  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj÷­  ubj‘  )”}”(hŒconst char *dev_name”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hjA®  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj=®  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjN®  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj=®  ubjG  )”}”(hŒchar”h]”hŒchar”…””}”(hj\®  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj=®  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjj®  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj=®  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjx®  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj=®  ubjp  )”}”(hŒdev_name”h]”hŒdev_name”…””}”(hj…®  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj=®  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj÷­  ubj‘  )”}”(hŒu8 port_num”h]”(h)”}”(hhh]”jp  )”}”(hŒu8”h]”hŒu8”…””}”(hj¡®  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjž®  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j£®  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jå­  sbŒ#c.security_ib_endport_manage_subnet”†”asbuh1hhjš®  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÁ®  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjš®  ubjp  )”}”(hŒport_num”h]”hŒport_num”…””}”(hjÏ®  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjš®  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj÷­  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj¾­  h²hh³jÐ­  h´Mubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjº­  h²hh³jÐ­  h´Mubah}”(h]”jµ­  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jÐ­  h´Mhj·­  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ Check if SMPs traffic is allowed”h]”hŒ Check if SMPs traffic is allowed”…””}”(hjù®  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhjö®  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj·­  h²hh³jÐ­  h´Mubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j¯  j#  j¯  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒï**Parameters**

``void *sec``
  LSM blob

``const char *dev_name``
  IB device name

``u8 port_num``
  port number

**Description**

Check permissions to send and receive SMPs on a end port.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj¯  h]”hŒ
Parameters”…””}”(hj¯  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj¯  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj¯  ubjH  )”}”(hhh]”(jM  )”}”(hŒ``void *sec``
LSM blob
”h]”(jS  )”}”(hŒ``void *sec``”h]”hë)”}”(hj:¯  h]”hŒ	void *sec”…””}”(hj<¯  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj8¯  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj4¯  ubjm  )”}”(hhh]”hÌ)”}”(hŒLSM blob”h]”hŒLSM blob”…””}”(hjS¯  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jO¯  h´MhjP¯  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj4¯  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jO¯  h´Mhj1¯  ubjM  )”}”(hŒ(``const char *dev_name``
IB device name
”h]”(jS  )”}”(hŒ``const char *dev_name``”h]”hë)”}”(hjs¯  h]”hŒconst char *dev_name”…””}”(hju¯  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjq¯  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhjm¯  ubjm  )”}”(hhh]”hÌ)”}”(hŒIB device name”h]”hŒIB device name”…””}”(hjŒ¯  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jˆ¯  h´Mhj‰¯  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjm¯  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jˆ¯  h´Mhj1¯  ubjM  )”}”(hŒ``u8 port_num``
port number
”h]”(jS  )”}”(hŒ``u8 port_num``”h]”hë)”}”(hj¬¯  h]”hŒu8 port_num”…””}”(hj®¯  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjª¯  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj¦¯  ubjm  )”}”(hhh]”hÌ)”}”(hŒport number”h]”hŒport number”…””}”(hjÅ¯  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÁ¯  h´MhjÂ¯  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj¦¯  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÁ¯  h´Mhj1¯  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj¯  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjç¯  h]”hŒDescription”…””}”(hjé¯  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjå¯  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj¯  ubhÌ)”}”(hŒ9Check permissions to send and receive SMPs on a end port.”h]”hŒ9Check permissions to send and receive SMPs on a end port.”…””}”(hjý¯  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj¯  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj°  h]”hŒReturn”…””}”(hj°  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj°  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj¯  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hj$°  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj¯  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ'security_ib_alloc_security (C function)”Œc.security_ib_alloc_security”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ+int security_ib_alloc_security (void **sec)”h]”jA  )”}”(hŒ*int security_ib_alloc_security(void **sec)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjS°  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjO°  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjb°  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjO°  h²hh³ja°  h´Mubjj  )”}”(hŒsecurity_ib_alloc_security”h]”jp  )”}”(hŒsecurity_ib_alloc_security”h]”hŒsecurity_ib_alloc_security”…””}”(hjt°  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjp°  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjO°  h²hh³ja°  h´Mubj‹  )”}”(hŒ(void **sec)”h]”j‘  )”}”(hŒ
void **sec”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hj°  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjŒ°  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjž°  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjŒ°  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj¬°  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjŒ°  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj¹°  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjŒ°  ubjp  )”}”(hŒsec”h]”hŒsec”…””}”(hjÆ°  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjŒ°  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjˆ°  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjO°  h²hh³ja°  h´Mubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjK°  h²hh³ja°  h´Mubah}”(h]”jF°  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³ja°  h´MhjH°  h²hubj   )”}”(hhh]”hÌ)”}”(hŒAllocate an Infiniband LSM blob”h]”hŒAllocate an Infiniband LSM blob”…””}”(hjð°  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhjí°  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjH°  h²hh³ja°  h´Mubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j±  j#  j±  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒ©**Parameters**

``void **sec``
  LSM blob

**Description**

Allocate a security structure for Infiniband objects.

**Return**

Returns 0 on success, non-zero on failure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj±  h]”hŒ
Parameters”…””}”(hj±  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj±  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M hj±  ubjH  )”}”(hhh]”jM  )”}”(hŒ``void **sec``
LSM blob
”h]”(jS  )”}”(hŒ``void **sec``”h]”hë)”}”(hj1±  h]”hŒ
void **sec”…””}”(hj3±  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj/±  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj+±  ubjm  )”}”(hhh]”hÌ)”}”(hŒLSM blob”h]”hŒLSM blob”…””}”(hjJ±  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jF±  h´MhjG±  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj+±  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jF±  h´Mhj(±  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj±  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjl±  h]”hŒDescription”…””}”(hjn±  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjj±  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj±  ubhÌ)”}”(hŒ5Allocate a security structure for Infiniband objects.”h]”hŒ5Allocate a security structure for Infiniband objects.”…””}”(hj‚±  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj±  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj“±  h]”hŒReturn”…””}”(hj•±  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj‘±  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M hj±  ubhÌ)”}”(hŒ*Returns 0 on success, non-zero on failure.”h]”hŒ*Returns 0 on success, non-zero on failure.”…””}”(hj©±  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M!hj±  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ&security_ib_free_security (C function)”Œc.security_ib_free_security”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ*void security_ib_free_security (void *sec)”h]”jA  )”}”(hŒ)void security_ib_free_security(void *sec)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjØ±  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjÔ±  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M5ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjç±  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÔ±  h²hh³jæ±  h´M5ubjj  )”}”(hŒsecurity_ib_free_security”h]”jp  )”}”(hŒsecurity_ib_free_security”h]”hŒsecurity_ib_free_security”…””}”(hjù±  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjõ±  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjÔ±  h²hh³jæ±  h´M5ubj‹  )”}”(hŒ(void *sec)”h]”j‘  )”}”(hŒ	void *sec”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hj²  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj²  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj#²  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj²  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj1²  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj²  ubjp  )”}”(hŒsec”h]”hŒsec”…””}”(hj>²  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj²  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj²  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjÔ±  h²hh³jæ±  h´M5ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjÐ±  h²hh³jæ±  h´M5ubah}”(h]”jË±  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jæ±  h´M5h•Vå      jÍ±  h²hubj   )”}”(hhh]”hÌ)”}”(hŒFree an Infiniband LSM blob”h]”hŒFree an Infiniband LSM blob”…””}”(hjh²  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M5hje²  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjÍ±  h²hh³jæ±  h´M5ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j€²  j#  j€²  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒg**Parameters**

``void *sec``
  LSM blob

**Description**

Deallocate an Infiniband security structure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjŠ²  h]”hŒ
Parameters”…””}”(hjŒ²  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjˆ²  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M9hj„²  ubjH  )”}”(hhh]”jM  )”}”(hŒ``void *sec``
LSM blob
”h]”(jS  )”}”(hŒ``void *sec``”h]”hë)”}”(hj©²  h]”hŒ	void *sec”…””}”(hj«²  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj§²  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M6hj£²  ubjm  )”}”(hhh]”hÌ)”}”(hŒLSM blob”h]”hŒLSM blob”…””}”(hjÂ²  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j¾²  h´M6hj¿²  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj£²  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j¾²  h´M6hj ²  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj„²  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjä²  h]”hŒDescription”…””}”(hjæ²  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjâ²  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M8hj„²  ubhÌ)”}”(hŒ,Deallocate an Infiniband security structure.”h]”hŒ,Deallocate an Infiniband security structure.”…””}”(hjú²  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M7hj„²  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ'security_xfrm_policy_alloc (C function)”Œc.security_xfrm_policy_alloc”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒiint security_xfrm_policy_alloc (struct xfrm_sec_ctx **ctxp, struct xfrm_user_sec_ctx *sec_ctx, gfp_t gfp)”h]”jA  )”}”(hŒhint security_xfrm_policy_alloc(struct xfrm_sec_ctx **ctxp, struct xfrm_user_sec_ctx *sec_ctx, gfp_t gfp)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj)³  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj%³  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MCubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj8³  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj%³  h²hh³j7³  h´MCubjj  )”}”(hŒsecurity_xfrm_policy_alloc”h]”jp  )”}”(hŒsecurity_xfrm_policy_alloc”h]”hŒsecurity_xfrm_policy_alloc”…””}”(hjJ³  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjF³  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj%³  h²hh³j7³  h´MCubj‹  )”}”(hŒJ(struct xfrm_sec_ctx **ctxp, struct xfrm_user_sec_ctx *sec_ctx, gfp_t gfp)”h]”(j‘  )”}”(hŒstruct xfrm_sec_ctx **ctxp”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjf³  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjb³  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjs³  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjb³  ubh)”}”(hhh]”jp  )”}”(hŒxfrm_sec_ctx”h]”hŒxfrm_sec_ctx”…””}”(hj„³  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj³  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j†³  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jL³  sbŒc.security_xfrm_policy_alloc”†”asbuh1hhjb³  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¤³  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjb³  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj²³  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjb³  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj¿³  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjb³  ubjp  )”}”(hŒctxp”h]”hŒctxp”…””}”(hjÌ³  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjb³  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj^³  ubj‘  )”}”(hŒ!struct xfrm_user_sec_ctx *sec_ctx”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjå³  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjá³  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjò³  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjá³  ubh)”}”(hhh]”jp  )”}”(hŒxfrm_user_sec_ctx”h]”hŒxfrm_user_sec_ctx”…””}”(hj´  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj ´  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j´  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j ³  Œc.security_xfrm_policy_alloc”†”asbuh1hhjá³  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj!´  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjá³  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj/´  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjá³  ubjp  )”}”(hŒsec_ctx”h]”hŒsec_ctx”…””}”(hj<´  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjá³  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj^³  ubj‘  )”}”(hŒ	gfp_t gfp”h]”(h)”}”(hhh]”jp  )”}”(hŒgfp_t”h]”hŒgfp_t”…””}”(hjX´  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjU´  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jZ´  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j ³  Œc.security_xfrm_policy_alloc”†”asbuh1hhjQ´  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjv´  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjQ´  ubjp  )”}”(hŒgfp”h]”hŒgfp”…””}”(hj„´  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjQ´  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj^³  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj%³  h²hh³j7³  h´MCubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj!³  h²hh³j7³  h´MCubah}”(h]”j³  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j7³  h´MChj³  h²hubj   )”}”(hhh]”hÌ)”}”(hŒAllocate a xfrm policy LSM blob”h]”hŒAllocate a xfrm policy LSM blob”…””}”(hj®´  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MChj«´  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj³  h²hh³j7³  h´MCubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jÆ´  j#  jÆ´  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX‘  **Parameters**

``struct xfrm_sec_ctx **ctxp``
  xfrm security context being added to the SPD

``struct xfrm_user_sec_ctx *sec_ctx``
  security label provided by userspace

``gfp_t gfp``
  gfp flags

**Description**

Allocate a security structure to the xp->security field; the security field
is initialized to NULL when the xfrm_policy is allocated.

**Return**

Return 0 if operation was successful.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjÐ´  h]”hŒ
Parameters”…””}”(hjÒ´  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÎ´  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MGhjÊ´  ubjH  )”}”(hhh]”(jM  )”}”(hŒL``struct xfrm_sec_ctx **ctxp``
xfrm security context being added to the SPD
”h]”(jS  )”}”(hŒ``struct xfrm_sec_ctx **ctxp``”h]”hë)”}”(hjï´  h]”hŒstruct xfrm_sec_ctx **ctxp”…””}”(hjñ´  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjí´  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MDhjé´  ubjm  )”}”(hhh]”hÌ)”}”(hŒ,xfrm security context being added to the SPD”h]”hŒ,xfrm security context being added to the SPD”…””}”(hjµ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jµ  h´MDhjµ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjé´  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jµ  h´MDhjæ´  ubjM  )”}”(hŒK``struct xfrm_user_sec_ctx *sec_ctx``
security label provided by userspace
”h]”(jS  )”}”(hŒ%``struct xfrm_user_sec_ctx *sec_ctx``”h]”hë)”}”(hj(µ  h]”hŒ!struct xfrm_user_sec_ctx *sec_ctx”…””}”(hj*µ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj&µ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MEhj"µ  ubjm  )”}”(hhh]”hÌ)”}”(hŒ$security label provided by userspace”h]”hŒ$security label provided by userspace”…””}”(hjAµ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j=µ  h´MEhj>µ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj"µ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j=µ  h´MEhjæ´  ubjM  )”}”(hŒ``gfp_t gfp``
gfp flags
”h]”(jS  )”}”(hŒ``gfp_t gfp``”h]”hë)”}”(hjaµ  h]”hŒ	gfp_t gfp”…””}”(hjcµ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj_µ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MFhj[µ  ubjm  )”}”(hhh]”hÌ)”}”(hŒ	gfp flags”h]”hŒ	gfp flags”…””}”(hjzµ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jvµ  h´MFhjwµ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj[µ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jvµ  h´MFhjæ´  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjÊ´  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjœµ  h]”hŒDescription”…””}”(hjžµ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjšµ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MHhjÊ´  ubhÌ)”}”(hŒ…Allocate a security structure to the xp->security field; the security field
is initialized to NULL when the xfrm_policy is allocated.”h]”hŒ…Allocate a security structure to the xp->security field; the security field
is initialized to NULL when the xfrm_policy is allocated.”…””}”(hj²µ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MGhjÊ´  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjÃµ  h]”hŒReturn”…””}”(hjÅµ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÁµ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MJhjÊ´  ubhÌ)”}”(hŒ%Return 0 if operation was successful.”h]”hŒ%Return 0 if operation was successful.”…””}”(hjÙµ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MKhjÊ´  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ&security_xfrm_policy_free (C function)”Œc.security_xfrm_policy_free”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ9void security_xfrm_policy_free (struct xfrm_sec_ctx *ctx)”h]”jA  )”}”(hŒ8void security_xfrm_policy_free(struct xfrm_sec_ctx *ctx)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hj¶  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj¶  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MfubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¶  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¶  h²hh³j¶  h´Mfubjj  )”}”(hŒsecurity_xfrm_policy_free”h]”jp  )”}”(hŒsecurity_xfrm_policy_free”h]”hŒsecurity_xfrm_policy_free”…””}”(hj)¶  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj%¶  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj¶  h²hh³j¶  h´Mfubj‹  )”}”(hŒ(struct xfrm_sec_ctx *ctx)”h]”j‘  )”}”(hŒstruct xfrm_sec_ctx *ctx”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjE¶  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjA¶  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjR¶  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjA¶  ubh)”}”(hhh]”jp  )”}”(hŒxfrm_sec_ctx”h]”hŒxfrm_sec_ctx”…””}”(hjc¶  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj`¶  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”je¶  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j+¶  sbŒc.security_xfrm_policy_free”†”asbuh1hhjA¶  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjƒ¶  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjA¶  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj‘¶  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjA¶  ubjp  )”}”(hŒctx”h]”hŒctx”…””}”(hjž¶  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjA¶  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj=¶  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj¶  h²hh³j¶  h´Mfubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj ¶  h²hh³j¶  h´Mfubah}”(h]”jûµ  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j¶  h´Mfhjýµ  h²hubj   )”}”(hhh]”hÌ)”}”(hŒFree a xfrm security context”h]”hŒFree a xfrm security context”…””}”(hjÈ¶  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MfhjÅ¶  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjýµ  h²hh³j¶  h´Mfubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jà¶  j#  jà¶  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒ‚**Parameters**

``struct xfrm_sec_ctx *ctx``
  xfrm security context

**Description**

Free LSM resources associated with **ctx**.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjê¶  h]”hŒ
Parameters”…””}”(hjì¶  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjè¶  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mjhjä¶  ubjH  )”}”(hhh]”jM  )”}”(hŒ3``struct xfrm_sec_ctx *ctx``
xfrm security context
”h]”(jS  )”}”(hŒ``struct xfrm_sec_ctx *ctx``”h]”hë)”}”(hj	·  h]”hŒstruct xfrm_sec_ctx *ctx”…””}”(hj·  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj·  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mghj·  ubjm  )”}”(hhh]”hÌ)”}”(hŒxfrm security context”h]”hŒxfrm security context”…””}”(hj"·  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j·  h´Mghj·  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj·  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j·  h´Mghj ·  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjä¶  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjD·  h]”hŒDescription”…””}”(hjF·  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjB·  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mihjä¶  ubhÌ)”}”(hŒ+Free LSM resources associated with **ctx**.”h]”(hŒ#Free LSM resources associated with ”…””}”(hjZ·  h²hh³Nh´Nubj2  )”}”(hŒ**ctx**”h]”hŒctx”…””}”(hjb·  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjZ·  ubhŒ.”…””}”(hjZ·  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhhjä¶  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ&security_xfrm_state_alloc (C function)”Œc.security_xfrm_state_alloc”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒWint security_xfrm_state_alloc (struct xfrm_state *x, struct xfrm_user_sec_ctx *sec_ctx)”h]”jA  )”}”(hŒVint security_xfrm_state_alloc(struct xfrm_state *x, struct xfrm_user_sec_ctx *sec_ctx)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj›·  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj—·  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjª·  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj—·  h²hh³j©·  h´Mubjj  )”}”(hŒsecurity_xfrm_state_alloc”h]”jp  )”}”(hŒsecurity_xfrm_state_alloc”h]”hŒsecurity_xfrm_state_alloc”…””}”(hj¼·  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¸·  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj—·  h²hh³j©·  h´Mubj‹  )”}”(hŒ9(struct xfrm_state *x, struct xfrm_user_sec_ctx *sec_ctx)”h]”(j‘  )”}”(hŒstruct xfrm_state *x”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjØ·  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjÔ·  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjå·  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÔ·  ubh)”}”(hhh]”jp  )”}”(hŒ
xfrm_state”h]”hŒ
xfrm_state”…””}”(hjö·  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjó·  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jø·  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j¾·  sbŒc.security_xfrm_state_alloc”†”asbuh1hhjÔ·  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¸  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjÔ·  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj$¸  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjÔ·  ubjp  )”}”(hŒx”h]”hŒx”…””}”(hj1¸  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÔ·  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÐ·  ubj‘  )”}”(hŒ!struct xfrm_user_sec_ctx *sec_ctx”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjJ¸  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjF¸  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjW¸  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjF¸  ubh)”}”(hhh]”jp  )”}”(hŒxfrm_user_sec_ctx”h]”hŒxfrm_user_sec_ctx”…””}”(hjh¸  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hje¸  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jj¸  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j¸  Œc.security_xfrm_state_alloc”†”asbuh1hhjF¸  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj†¸  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjF¸  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj”¸  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjF¸  ubjp  )”}”(hŒsec_ctx”h]”hŒsec_ctx”…””}”(hj¡¸  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjF¸  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÐ·  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj—·  h²hh³j©·  h´Mubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj“·  h²hh³j©·  h´Mubah}”(h]”jŽ·  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j©·  h´Mhj·  h²hubj   )”}”(hhh]”hÌ)”}”(hŒAllocate a xfrm state LSM blob”h]”hŒAllocate a xfrm state LSM blob”…””}”(hjË¸  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MhjÈ¸  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj·  h²hh³j©·  h´Mubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jã¸  j#  jã¸  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX•  **Parameters**

``struct xfrm_state *x``
  xfrm state being added to the SAD

``struct xfrm_user_sec_ctx *sec_ctx``
  security label provided by userspace

**Description**

Allocate a security structure to the **x->security** field; the security field
is initialized to NULL when the xfrm_state is allocated. Set the context to
correspond to **sec_ctx**.

**Return**

Return 0 if operation was successful.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjí¸  h]”hŒ
Parameters”…””}”(hjï¸  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjë¸  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mƒhjç¸  ubjH  )”}”(hhh]”(jM  )”}”(hŒ;``struct xfrm_state *x``
xfrm state being added to the SAD
”h]”(jS  )”}”(hŒ``struct xfrm_state *x``”h]”hë)”}”(hj¹  h]”hŒstruct xfrm_state *x”…””}”(hj¹  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj
¹  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M€hj¹  ubjm  )”}”(hhh]”hÌ)”}”(hŒ!xfrm state being added to the SAD”h]”hŒ!xfrm state being added to the SAD”…””}”(hj%¹  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j!¹  h´M€hj"¹  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj¹  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j!¹  h´M€hj¹  ubjM  )”}”(hŒK``struct xfrm_user_sec_ctx *sec_ctx``
security label provided by userspace
”h]”(jS  )”}”(hŒ%``struct xfrm_user_sec_ctx *sec_ctx``”h]”hë)”}”(hjE¹  h]”hŒ!struct xfrm_user_sec_ctx *sec_ctx”…””}”(hjG¹  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjC¹  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj?¹  ubjm  )”}”(hhh]”hÌ)”}”(hŒ$security label provided by userspace”h]”hŒ$security label provided by userspace”…””}”(hj^¹  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jZ¹  h´Mhj[¹  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj?¹  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jZ¹  h´Mhj¹  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjç¸  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hj€¹  h]”hŒDescription”…””}”(hj‚¹  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj~¹  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mƒhjç¸  ubhÌ)”}”(hŒµAllocate a security structure to the **x->security** field; the security field
is initialized to NULL when the xfrm_state is allocated. Set the context to
correspond to **sec_ctx**.”h]”(hŒ%Allocate a security structure to the ”…””}”(hj–¹  h²hh³Nh´Nubj2  )”}”(hŒ**x->security**”h]”hŒx->security”…””}”(hjž¹  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj–¹  ubhŒu field; the security field
is initialized to NULL when the xfrm_state is allocated. Set the context to
correspond to ”…””}”(hj–¹  h²hh³Nh´Nubj2  )”}”(hŒ**sec_ctx**”h]”hŒsec_ctx”…””}”(hj°¹  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj–¹  ubhŒ.”…””}”(hj–¹  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M‚hjç¸  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjË¹  h]”hŒReturn”…””}”(hjÍ¹  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÉ¹  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M†hjç¸  ubhÌ)”}”(hŒ%Return 0 if operation was successful.”h]”hŒ%Return 0 if operation was successful.”…””}”(hjá¹  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M‡hjç¸  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ'security_xfrm_state_delete (C function)”Œc.security_xfrm_state_delete”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ5int security_xfrm_state_delete (struct xfrm_state *x)”h]”jA  )”}”(hŒ4int security_xfrm_state_delete(struct xfrm_state *x)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjº  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjº  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M£ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjº  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjº  h²hh³jº  h´M£ubjj  )”}”(hŒsecurity_xfrm_state_delete”h]”jp  )”}”(hŒsecurity_xfrm_state_delete”h]”hŒsecurity_xfrm_state_delete”…””}”(hj1º  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj-º  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjº  h²hh³jº  h´M£ubj‹  )”}”(hŒ(struct xfrm_state *x)”h]”j‘  )”}”(hŒstruct xfrm_state *x”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjMº  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjIº  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjZº  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjIº  ubh)”}”(hhh]”jp  )”}”(hŒ
xfrm_state”h]”hŒ
xfrm_state”…””}”(hjkº  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjhº  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jmº  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j3º  sbŒc.security_xfrm_state_delete”†”asbuh1hhjIº  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj‹º  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjIº  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj™º  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjIº  ubjp  )”}”(hj3¸  h]”hŒx”…””}”(hj¦º  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjIº  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjEº  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjº  h²hh³jº  h´M£ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjº  h²hh³jº  h´M£ubah}”(h]”jº  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jº  h´M£hjº  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ)Check if deleting a xfrm state is allowed”h]”hŒ)Check if deleting a xfrm state is allowed”…””}”(hjÏº  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M£hjÌº  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjº  h²hh³jº  h´M£ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jçº  j#  jçº  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒ›**Parameters**

``struct xfrm_state *x``
  xfrm state

**Description**

Authorize deletion of x->security.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjñº  h]”hŒ
Parameters”…””}”(hjóº  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjïº  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M§hjëº  ubjH  )”}”(hhh]”jM  )”}”(hŒ$``struct xfrm_state *x``
xfrm state
”h]”(jS  )”}”(hŒ``struct xfrm_state *x``”h]”hë)”}”(hj»  h]”hŒstruct xfrm_state *x”…””}”(hj»  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj»  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¤hj
»  ubjm  )”}”(hhh]”hÌ)”}”(hŒ
xfrm state”h]”hŒ
xfrm state”…””}”(hj)»  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j%»  h´M¤hj&»  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj
»  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j%»  h´M¤hj»  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjëº  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjK»  h]”hŒDescription”…””}”(hjM»  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjI»  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¦hjëº  ubhÌ)”}”(hŒ"Authorize deletion of x->security.”h]”hŒ"Authorize deletion of x->security.”…””}”(hja»  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¥hjëº  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjr»  h]”hŒReturn”…””}”(hjt»  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjp»  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M§hjëº  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hjˆ»  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¨hjëº  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ!security_locked_down (C function)”Œc.security_locked_down”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ4int security_locked_down (enum lockdown_reason what)”h]”jA  )”}”(hŒ3int security_locked_down(enum lockdown_reason what)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hj·»  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj³»  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MmubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÆ»  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj³»  h²hh³jÅ»  h´Mmubjj  )”}”(hŒsecurity_locked_down”h]”jp  )”}”(hŒsecurity_locked_down”h]”hŒsecurity_locked_down”…””}”(hjØ»  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÔ»  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj³»  h²hh³jÅ»  h´Mmubj‹  )”}”(hŒ(enum lockdown_reason what)”h]”j‘  )”}”(hŒenum lockdown_reason what”h]”(jL  )”}”(hjk;  h]”hŒenum”…””}”(hjô»  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjð»  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¼  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjð»  ubh)”}”(hhh]”jp  )”}”(hŒlockdown_reason”h]”hŒlockdown_reason”…””}”(hj¼  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¼  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j¼  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jÚ»  sbŒc.security_locked_down”†”asbuh1hhjð»  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj2¼  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjð»  ubjp  )”}”(hŒwhat”h]”hŒwhat”…””}”(hj@¼  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjð»  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjì»  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj³»  h²hh³jÅ»  h´Mmubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj¯»  h²hh³jÅ»  h´Mmubah}”(h]”jª»  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³jÅ»  h´Mmhj¬»  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ$Check if a kernel feature is allowed”h]”hŒ$Check if a kernel feature is allowed”…””}”(hjj¼  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mmhjg¼  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj¬»  h²hh³jÅ»  h´Mmubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j‚¼  j#  j‚¼  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX  **Parameters**

``enum lockdown_reason what``
  requested kernel feature

**Description**

Determine whether a kernel feature that potentially enables arbitrary code
execution in kernel space should be permitted.

**Return**

Returns 0 if permission is granted.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjŒ¼  h]”hŒ
Parameters”…””}”(hjŽ¼  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjŠ¼  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mqhj†¼  ubjH  )”}”(hhh]”jM  )”}”(hŒ7``enum lockdown_reason what``
requested kernel feature
”h]”(jS  )”}”(hŒ``enum lockdown_reason what``”h]”hë)”}”(hj«¼  h]”hŒenum lockdown_reason what”…””}”(hj­¼  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj©¼  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mnhj¥¼  ubjm  )”}”(hhh]”hÌ)”}”(hŒrequested kernel feature”h]”hŒrequested kernel feature”…””}”(hjÄ¼  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jÀ¼  h´MnhjÁ¼  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj¥¼  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jÀ¼  h´Mnhj¢¼  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj†¼  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjæ¼  h]”hŒDescription”…””}”(hjè¼  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjä¼  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mphj†¼  ubhÌ)”}”(hŒyDetermine whether a kernel feature that potentially enables arbitrary code
execution in kernel space should be permitted.”h]”hŒyDetermine whether a kernel feature that potentially enables arbitrary code
execution in kernel space should be permitted.”…””}”(hjü¼  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mohj†¼  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hj½  h]”hŒReturn”…””}”(hj½  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj½  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mrhj†¼  ubhÌ)”}”(hŒ#Returns 0 if permission is granted.”h]”hŒ#Returns 0 if permission is granted.”…””}”(hj#½  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mshj†¼  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ security_bdev_alloc (C function)”Œc.security_bdev_alloc”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ3int security_bdev_alloc (struct block_device *bdev)”h]”jA  )”}”(hŒ2int security_bdev_alloc(struct block_device *bdev)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjR½  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hjN½  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M|ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hja½  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjN½  h²hh³j`½  h´M|ubjj  )”}”(hŒsecurity_bdev_alloc”h]”jp  )”}”(hŒsecurity_bdev_alloc”h]”hŒsecurity_bdev_alloc”…””}”(hjs½  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjo½  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hjN½  h²hh³j`½  h´M|ubj‹  )”}”(hŒ(struct block_device *bdev)”h]”j‘  )”}”(hŒstruct block_device *bdev”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hj½  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj‹½  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjœ½  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj‹½  ubh)”}”(hhh]”jp  )”}”(hŒblock_device”h]”hŒblock_device”…””}”(hj­½  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjª½  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”j¯½  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  ju½  sbŒc.security_bdev_alloc”†”asbuh1hhj‹½  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÍ½  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj‹½  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjÛ½  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj‹½  ubjp  )”}”(hŒbdev”h]”hŒbdev”…””}”(hjè½  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj‹½  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hj‡½  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hjN½  h²hh³j`½  h´M|ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hjJ½  h²hh³j`½  h´M|ubah}”(h]”jE½  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j`½  h´M|hjG½  h²hubj   )”}”(hhh]”hÌ)”}”(hŒ Allocate a block device LSM blob”h]”hŒ Allocate a block device LSM blob”…””}”(hj¾  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M|hj¾  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hjG½  h²hh³j`½  h´M|ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  j*¾  j#  j*¾  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hX  **Parameters**

``struct block_device *bdev``
  block device

**Description**

Allocate and attach a security structure to **bdev->bd_security**.  The
security field is initialized to NULL when the bdev structure is
allocated.

**Return**

Return 0 if operation was successful.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj4¾  h]”hŒ
Parameters”…””}”(hj6¾  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj2¾  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M€hj.¾  ubjH  )”}”(hhh]”jM  )”}”(hŒ+``struct block_device *bdev``
block device
”h]”(jS  )”}”(hŒ``struct block_device *bdev``”h]”hë)”}”(hjS¾  h]”hŒstruct block_device *bdev”…””}”(hjU¾  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjQ¾  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M}hjM¾  ubjm  )”}”(hhh]”hÌ)”}”(hŒblock device”h]”hŒblock device”…””}”(hjl¾  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jh¾  h´M}hji¾  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjM¾  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jh¾  h´M}hjJ¾  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hj.¾  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjŽ¾  h]”hŒDescription”…””}”(hj¾  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjŒ¾  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mhj.¾  ubhÌ)”}”(hŒ“Allocate and attach a security structure to **bdev->bd_security**.  The
security field is initialized to NULL when the bdev structure is
allocated.”h]”(hŒ,Allocate and attach a security structure to ”…””}”(hj¤¾  h²hh³Nh´Nubj2  )”}”(hŒ**bdev->bd_security**”h]”hŒbdev->bd_security”…””}”(hj¬¾  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj¤¾  ubhŒR.  The
security field is initialized to NULL when the bdev structure is
allocated.”…””}”(hj¤¾  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M~hj.¾  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjÇ¾  h]”hŒReturn”…””}”(hjÉ¾  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÅ¾  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M‚hj.¾  ubhÌ)”}”(hŒ%Return 0 if operation was successful.”h]”hŒ%Return 0 if operation was successful.”…””}”(hjÝ¾  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mƒhj.¾  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œsecurity_bdev_free (C function)”Œc.security_bdev_free”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒ3void security_bdev_free (struct block_device *bdev)”h]”jA  )”}”(hŒ2void security_bdev_free(struct block_device *bdev)”h]”(jG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hj¿  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj¿  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M–ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¿  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj¿  h²hh³j¿  h´M–ubjj  )”}”(hŒsecurity_bdev_free”h]”jp  )”}”(hŒsecurity_bdev_free”h]”hŒsecurity_bdev_free”…””}”(hj-¿  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj)¿  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj¿  h²hh³j¿  h´M–ubj‹  )”}”(hŒ(struct block_device *bdev)”h]”j‘  )”}”(hŒstruct block_device *bdev”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjI¿  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjE¿  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjV¿  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjE¿  ubh)”}”(hhh]”jp  )”}”(hŒblock_device”h]”hŒblock_device”…””}”(hjg¿  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjd¿  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”ji¿  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  j/¿  sbŒc.security_bdev_free”†”asbuh1hhjE¿  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj‡¿  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjE¿  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj•¿  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjE¿  ubjp  )”}”(hŒbdev”h]”hŒbdev”…””}”(hj¢¿  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjE¿  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjA¿  ubah}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj¿  h²hh³j¿  h´M–ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj¿  h²hh³j¿  h´M–ubah}”(h]”jÿ¾  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j¿  h´M–hj¿  h²hubj   )”}”(hhh]”hÌ)”}”(hŒFree a block device's LSM blob”h]”hŒ Free a block deviceâ€™s LSM blob”…””}”(hjÌ¿  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M–hjÉ¿  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj¿  h²hh³j¿  h´M–ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jä¿  j#  jä¿  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hŒœ**Parameters**

``struct block_device *bdev``
  block device

**Description**

Deallocate the bdev security structure and set **bdev->bd_security** to NULL.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hjî¿  h]”hŒ
Parameters”…””}”(hjð¿  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjì¿  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´Mšhjè¿  ubjH  )”}”(hhh]”jM  )”}”(hŒ+``struct block_device *bdev``
block device
”h]”(jS  )”}”(hŒ``struct block_device *bdev``”h]”hë)”}”(hjÀ  h]”hŒstruct block_device *bdev”…””}”(hjÀ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjÀ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M—hjÀ  ubjm  )”}”(hhh]”hÌ)”}”(hŒblock device”h]”hŒblock device”…””}”(hj&À  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j"À  h´M—hj#À  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÀ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j"À  h´M—hjÀ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjè¿  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjHÀ  h]”hŒDescription”…””}”(hjJÀ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjFÀ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M™hjè¿  ubhÌ)”}”(hŒMDeallocate the bdev security structure and set **bdev->bd_security** to NULL.”h]”(hŒ/Deallocate the bdev security structure and set ”…””}”(hj^À  h²hh³Nh´Nubj2  )”}”(hŒ**bdev->bd_security**”h]”hŒbdev->bd_security”…””}”(hjfÀ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj^À  ubhŒ	 to NULL.”…””}”(hj^À  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M˜hjè¿  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubj%  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œentries”]”(j1  Œ'security_bdev_setintegrity (C function)”Œc.security_bdev_setintegrity”hNt”auh1j$  hh·h²hh³Nh´Nubj6  )”}”(hhh]”(j;  )”}”(hŒxint security_bdev_setintegrity (struct block_device *bdev, enum lsm_integrity_type type, const void *value, size_t size)”h]”jA  )”}”(hŒwint security_bdev_setintegrity(struct block_device *bdev, enum lsm_integrity_type type, const void *value, size_t size)”h]”(jG  )”}”(hŒint”h]”hŒint”…””}”(hjŸÀ  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj›À  h²hh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¨ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj®À  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj›À  h²hh³j­À  h´M¨ubjj  )”}”(hŒsecurity_bdev_setintegrity”h]”jp  )”}”(hŒsecurity_bdev_setintegrity”h]”hŒsecurity_bdev_setintegrity”…””}”(hjÀÀ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj¼À  ubah}”(h]”h ]”(jƒ  j„  eh"]”h$]”h&]”jˆ  j‰  uh1ji  hj›À  h²hh³j­À  h´M¨ubj‹  )”}”(hŒY(struct block_device *bdev, enum lsm_integrity_type type, const void *value, size_t size)”h]”(j‘  )”}”(hŒstruct block_device *bdev”h]”(jL  )”}”(hjO  h]”hŒstruct”…””}”(hjÜÀ  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjØÀ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjéÀ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjØÀ  ubh)”}”(hhh]”jp  )”}”(hŒblock_device”h]”hŒblock_device”…””}”(hjúÀ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj÷À  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jüÀ  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”j  )”}”jƒ  jÂÀ  sbŒc.security_bdev_setintegrity”†”asbuh1hhjØÀ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÁ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjØÀ  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hj(Á  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hjØÀ  ubjp  )”}”(hŒbdev”h]”hŒbdev”…””}”(hj5Á  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjØÀ  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÔÀ  ubj‘  )”}”(hŒenum lsm_integrity_type type”h]”(jL  )”}”(hjk;  h]”hŒenum”…””}”(hjNÁ  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hjJÁ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj[Á  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjJÁ  ubh)”}”(hhh]”jp  )”}”(hŒlsm_integrity_type”h]”hŒlsm_integrity_type”…””}”(hjlÁ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjiÁ  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jnÁ  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jÁ  Œc.security_bdev_setintegrity”†”asbuh1hhjJÁ  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjŠÁ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hjJÁ  ubjp  )”}”(hŒtype”h]”hŒtype”…””}”(hj˜Á  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjJÁ  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÔÀ  ubj‘  )”}”(hŒconst void *value”h]”(jL  )”}”(hj  h]”hŒconst”…””}”(hj±Á  h²hh³Nh´Nubah}”(h]”h ]”jX  ah"]”h$]”h&]”uh1jK  hj­Á  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj¾Á  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj­Á  ubjG  )”}”(hŒvoid”h]”hŒvoid”…””}”(hjÌÁ  h²hh³Nh´Nubah}”(h]”h ]”jS  ah"]”h$]”h&]”uh1jF  hj­Á  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hjÚÁ  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj­Á  ubj³  )”}”(hj¶  h]”hŒ*”…””}”(hjèÁ  h²hh³Nh´Nubah}”(h]”h ]”j¿  ah"]”h$]”h&]”uh1j²  hj­Á  ubjp  )”}”(hŒvalue”h]”hŒvalue”…””}”(hjõÁ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj­Á  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÔÀ  ubj‘  )”}”(hŒsize_t size”h]”(h)”}”(hhh]”jp  )”}”(hŒsize_t”h]”hŒsize_t”…””}”(hjÂ  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hjÂ  ubah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”j  Œreftype”jƒ  Œ	reftarget”jÂ  Œmodname”NŒ	classname”Nj‡  jŠ  )”}”j  ]”jÁ  Œc.security_bdev_setintegrity”†”asbuh1hhj
Â  ubjY  )”}”(hŒ ”h]”hŒ ”…””}”(hj/Â  h²hh³Nh´Nubah}”(h]”h ]”je  ah"]”h$]”h&]”uh1jX  hj
Â  ubjp  )”}”(hŒsize”h]”hŒsize”…””}”(hj=Â  h²hh³Nh´Nubah}”(h]”h ]”j|  ah"]”h$]”h&]”uh1jo  hj
Â  ubeh}”(h]”h ]”h"]”h$]”h&]”Œnoemph”ˆjˆ  j‰  uh1j  hjÔÀ  ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  uh1jŠ  hj›À  h²hh³j­À  h´M¨ubeh}”(h]”h ]”h"]”h$]”h&]”jˆ  j‰  jñ  ˆuh1j@  jò  jó  hj—À  h²hh³j­À  h´M¨ubah}”(h]”j’À  ah ]”(j÷  jø  eh"]”h$]”h&]”jü  ˆjý  )jþ  huh1j:  h³j­À  h´M¨hj”À  h²hubj   )”}”(hhh]”hÌ)”}”(hŒSet the device's integrity data”h]”hŒ!Set the deviceâ€™s integrity data”…””}”(hjgÂ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¨hjdÂ  h²hubah}”(h]”h ]”h"]”h$]”h&]”uh1jÿ  hj”À  h²hh³j­À  h´M¨ubeh}”(h]”h ]”(j  Œfunction”eh"]”h$]”h&]”j!  j  j"  jÂ  j#  jÂ  j$  ‰j%  ‰j&  ‰uh1j5  h²hhh·h³Nh´Nubj(  )”}”(hXê  **Parameters**

``struct block_device *bdev``
  block device

``enum lsm_integrity_type type``
  type of integrity, e.g. hash digest, signature, etc

``const void *value``
  the integrity value

``size_t size``
  size of the integrity value

**Description**

Register a verified integrity measurement of a bdev with LSMs.
LSMs should free the previously saved data if **value** is NULL.
Please note that the new hook should be invoked every time the security
information is updated to keep these data current. For example, in dm-verity,
if the mapping table is reloaded and configured to use a different dm-verity
target with a new roothash and signing information, the previously stored
data in the LSM blob will become obsolete. It is crucial to re-invoke the
hook to refresh these data and ensure they are up to date. This necessity
arises from the design of device-mapper, where a device-mapper device is
first created, and then targets are subsequently loaded into it. These
targets can be modified multiple times during the device's lifetime.
Therefore, while the LSM blob is allocated during the creation of the block
device, its actual contents are not initialized at this stage and can change
substantially over time. This includes alterations from data that the LSMs
'trusts' to those they do not, making it essential to handle these changes
correctly. Failure to address this dynamic aspect could potentially allow
for bypassing LSM checks.

**Return**

Returns 0 on success, negative values on failure.”h]”(hÌ)”}”(hŒ**Parameters**”h]”j2  )”}”(hj‰Â  h]”hŒ
Parameters”…””}”(hj‹Â  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj‡Â  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¬hjƒÂ  ubjH  )”}”(hhh]”(jM  )”}”(hŒ+``struct block_device *bdev``
block device
”h]”(jS  )”}”(hŒ``struct block_device *bdev``”h]”hë)”}”(hj¨Â  h]”hŒstruct block_device *bdev”…””}”(hjªÂ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhj¦Â  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M©hj¢Â  ubjm  )”}”(hhh]”hÌ)”}”(hŒblock device”h]”hŒblock device”…””}”(hjÁÂ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j½Â  h´M©hj¾Â  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hj¢Â  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j½Â  h´M©hjŸÂ  ubjM  )”}”(hŒU``enum lsm_integrity_type type``
type of integrity, e.g. hash digest, signature, etc
”h]”(jS  )”}”(hŒ ``enum lsm_integrity_type type``”h]”hë)”}”(hjáÂ  h]”hŒenum lsm_integrity_type type”…””}”(hjãÂ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjßÂ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MªhjÛÂ  ubjm  )”}”(hhh]”hÌ)”}”(hŒ3type of integrity, e.g. hash digest, signature, etc”h]”hŒ3type of integrity, e.g. hash digest, signature, etc”…””}”(hjúÂ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jöÂ  h´Mªhj÷Â  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÛÂ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jöÂ  h´MªhjŸÂ  ubjM  )”}”(hŒ*``const void *value``
the integrity value
”h]”(jS  )”}”(hŒ``const void *value``”h]”hë)”}”(hjÃ  h]”hŒconst void *value”…””}”(hjÃ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjÃ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M«hjÃ  ubjm  )”}”(hhh]”hÌ)”}”(hŒthe integrity value”h]”hŒthe integrity value”…””}”(hj3Ã  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³j/Ã  h´M«hj0Ã  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjÃ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³j/Ã  h´M«hjŸÂ  ubjM  )”}”(hŒ,``size_t size``
size of the integrity value
”h]”(jS  )”}”(hŒ``size_t size``”h]”hë)”}”(hjSÃ  h]”hŒsize_t size”…””}”(hjUÃ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhjQÃ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jR  h³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¬hjMÃ  ubjm  )”}”(hhh]”hÌ)”}”(hŒsize of the integrity value”h]”hŒsize of the integrity value”…””}”(hjlÃ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³jhÃ  h´M¬hjiÃ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jl  hjMÃ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jL  h³jhÃ  h´M¬hjŸÂ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jG  hjƒÂ  ubhÌ)”}”(hŒ**Description**”h]”j2  )”}”(hjŽÃ  h]”hŒDescription”…””}”(hjÃ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjŒÃ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M®hjƒÂ  ubhÌ)”}”(hX¨  Register a verified integrity measurement of a bdev with LSMs.
LSMs should free the previously saved data if **value** is NULL.
Please note that the new hook should be invoked every time the security
information is updated to keep these data current. For example, in dm-verity,
if the mapping table is reloaded and configured to use a different dm-verity
target with a new roothash and signing information, the previously stored
data in the LSM blob will become obsolete. It is crucial to re-invoke the
hook to refresh these data and ensure they are up to date. This necessity
arises from the design of device-mapper, where a device-mapper device is
first created, and then targets are subsequently loaded into it. These
targets can be modified multiple times during the device's lifetime.
Therefore, while the LSM blob is allocated during the creation of the block
device, its actual contents are not initialized at this stage and can change
substantially over time. This includes alterations from data that the LSMs
'trusts' to those they do not, making it essential to handle these changes
correctly. Failure to address this dynamic aspect could potentially allow
for bypassing LSM checks.”h]”(hŒmRegister a verified integrity measurement of a bdev with LSMs.
LSMs should free the previously saved data if ”…””}”(hj¤Ã  h²hh³Nh´Nubj2  )”}”(hŒ	**value**”h]”hŒvalue”…””}”(hj¬Ã  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hj¤Ã  ubhX8   is NULL.
Please note that the new hook should be invoked every time the security
information is updated to keep these data current. For example, in dm-verity,
if the mapping table is reloaded and configured to use a different dm-verity
target with a new roothash and signing information, the previously stored
data in the LSM blob will become obsolete. It is crucial to re-invoke the
hook to refresh these data and ensure they are up to date. This necessity
arises from the design of device-mapper, where a device-mapper device is
first created, and then targets are subsequently loaded into it. These
targets can be modified multiple times during the deviceâ€™s lifetime.
Therefore, while the LSM blob is allocated during the creation of the block
device, its actual contents are not initialized at this stage and can change
substantially over time. This includes alterations from data that the LSMs
â€˜trustsâ€™ to those they do not, making it essential to handle these changes
correctly. Failure to address this dynamic aspect could potentially allow
for bypassing LSM checks.”…””}”(hj¤Ã  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M­hjƒÂ  ubhÌ)”}”(hŒ
**Return**”h]”j2  )”}”(hjÇÃ  h]”hŒReturn”…””}”(hjÉÃ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j1  hjÅÃ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´M¿hjƒÂ  ubhÌ)”}”(hŒ1Returns 0 on success, negative values on failure.”h]”hŒ1Returns 0 on success, negative values on failure.”…””}”(hjÝÃ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³Œ\/var/lib/git/docbuild/linux/Documentation/security/lsm-development:16: ./security/security.c”h´MÀhjƒÂ  ubeh}”(h]”h ]”Œkernelindent”ah"]”h$]”h&]”uh1j'  hh·h²hh³Nh´Nubeh}”(h]”Œ!linux-security-module-development”ah ]”h"]”Œ!linux security module development”ah$]”h&]”uh1hµhhh²hh³hÊh´Kubeh}”(h]”h ]”h"]”h$]”h&]”Œsource”hÊuh1hŒcurrent_source”NŒcurrent_line”NŒsettings”Œdocutils.frontend”ŒValues”“”)”}”(hºNŒ	generator”NŒ	datestamp”NŒsource_link”NŒ
source_url”NŒtoc_backlinks”Œentry”Œfootnote_backlinks”KŒsectnum_xform”KŒstrip_comments”NŒstrip_elements_with_classes”NŒstrip_classes”NŒreport_level”KŒ
halt_level”KŒexit_status_level”KŒdebug”NŒwarning_stream”NŒ	traceback”ˆŒinput_encoding”Œ	utf-8-sig”Œinput_encoding_error_handler”Œstrict”Œoutput_encoding”Œutf-8”Œoutput_encoding_error_handler”jÄ  Œerror_encoding”Œutf-8”Œerror_encoding_error_handler”Œbackslashreplace”Œlanguage_code”Œen”Œrecord_dependencies”NŒconfig”NŒ	id_prefix”hŒauto_id_prefix”Œid”Œdump_settings”NŒdump_internals”NŒdump_transforms”NŒdump_pseudo_xml”NŒexpose_internals”NŒstrict_visitor”NŒ_disable_config”NŒ_source”hÊŒ_destination”NŒ_config_files”]”Œ7/var/lib/git/docbuild/linux/Documentation/docutils.conf”aŒfile_insertion_enabled”ˆŒraw_enabled”KŒline_length_limit”M'Œpep_references”NŒpep_base_url”Œhttps://peps.python.org/”Œpep_file_url_template”Œpep-%04d”Œrfc_references”NŒrfc_base_url”Œ&https://datatracker.ietf.org/doc/html/”Œ	tab_width”KŒtrim_footnote_reference_space”‰Œsyntax_highlight”Œlong”Œsmart_quotes”ˆŒsmartquotes_locales”]”Œcharacter_level_inline_markup”‰Œdoctitle_xform”‰Œdocinfo_xform”KŒsectsubtitle_xform”‰Œimage_loading”Œlink”Œembed_stylesheet”‰Œcloak_email_addresses”ˆŒsection_self_link”‰Œenv”NubŒreporter”NŒindirect_targets”]”Œsubstitution_defs”}”Œsubstitution_names”}”Œrefnames”}”Œrefids”}”Œnameids”}”jøÃ  jõÃ  sŒ	nametypes”}”jøÃ  ‰sh}”(jõÃ  h·j3  j<  jÝ  jâ  j  j  jf  jk  j‰	  jŽ	  jÍ  jÒ  j[  j`  j“  j˜  jÚ  jß  j  j  jŒ   j‘   jy#  j~#  jå%  jê%  jH*  jM*  j-  j-  jþ/  j0  jø2  jý2  jö5  jû5  jT8  jY8  j’:  j—:  j>  j >  jA  jA  jÉC  jÎC  jG  jG  j!I  j&I  jnK  jsK  jÖM  jÛM  jˆP  jP  jÈS  jÍS  jÐU  jÕU  jâX  jçX  juZ  jzZ  jÂ\  jÇ\  j_  j_  jµ`  jº`  jðb  jõb  jf  jf  j¦h  j«h  j'j  j,j  j¨k  j­k  jLn  jQn  jðp  jõp  jes  jjs  j¶v  j»v  j^y  jcy  j¯{  j´{  j$~  j)~  j  j  jHƒ  jMƒ  j…  j’…  jö‡  jû‡  jhŠ  jmŠ  j³  j¸  j  j  j“‘  j˜‘  j»’  jÀ’  jã“  jè“  jz•  j•  jË–  jÐ–  j˜  j˜  j’™  j—™  jµ›  jº›  j-  j2  j¢Ÿ  j§Ÿ  j£  j
£  jØ¥  jÝ¥  jM¨  jR¨  j9«  j>«  jµ­  jº­  jF°  jK°  jË±  jÐ±  j³  j!³  jûµ  j ¶  jŽ·  j“·  jº  jº  jª»  j¯»  jE½  jJ½  jÿ¾  j¿  j’À  j—À  uŒfootnote_refs”}”Œcitation_refs”}”Œautofootnotes”]”Œautofootnote_refs”]”Œsymbol_footnotes”]”Œsymbol_footnote_refs”]”Œ	footnotes”]”Œ	citations”]”Œautofootnote_start”KŒsymbol_footnote_start”K Œ
id_counter”Œcollections”ŒCounter”“”}”…”R”Œparse_messages”]”Œtransform_messages”]”Œtransformer”NŒinclude_log”]”Œ
decoration”Nh²hub.