Lines Matching refs:profile
37 struct aa_profile *profile; member
68 static int audit_caps(struct common_audit_data *sa, struct aa_profile *profile, in audit_caps() argument
78 if (likely((AUDIT_MODE(profile) != AUDIT_ALL) && in audit_caps()
79 !cap_raised(profile->caps.audit, cap))) in audit_caps()
82 } else if (KILL_MODE(profile) || in audit_caps()
83 cap_raised(profile->caps.kill, cap)) { in audit_caps()
85 } else if (cap_raised(profile->caps.quiet, cap) && in audit_caps()
86 AUDIT_MODE(profile) != AUDIT_NOQUIET && in audit_caps()
87 AUDIT_MODE(profile) != AUDIT_ALL) { in audit_caps()
94 if (profile == ent->profile && cap_raised(ent->caps, cap)) { in audit_caps()
96 if (COMPLAIN_MODE(profile)) in audit_caps()
100 aa_put_profile(ent->profile); in audit_caps()
101 ent->profile = aa_get_profile(profile); in audit_caps()
106 return aa_audit(type, profile, sa, audit_cb); in audit_caps()
118 static int profile_capable(struct aa_profile *profile, int cap, int audit, in profile_capable() argument
123 if (cap_raised(profile->caps.allow, cap) && in profile_capable()
124 !cap_raised(profile->caps.denied, cap)) in profile_capable()
130 if (!COMPLAIN_MODE(profile)) in profile_capable()
138 return audit_caps(sa, profile, cap, error); in profile_capable()
153 struct aa_profile *profile; in aa_capable() local
158 error = fn_for_each_confined(label, profile, in aa_capable()
159 profile_capable(profile, cap, audit, &sa)); in aa_capable()