102 				      struct av_decision *avd,
210 			 u16 tclass, struct av_decision *avd,  in map_decision()  argument
219 			if (avd->allowed & mapping->perms[i])  in map_decision()
224 		avd->allowed = result;  in map_decision()
227 			if (avd->auditallow & mapping->perms[i])  in map_decision()
229 		avd->auditallow = result;  in map_decision()
232 			if (avd->auditdeny & mapping->perms[i])  in map_decision()
244 		avd->auditdeny = result;  in map_decision()
540 				     struct av_decision *avd)  in type_attribute_bounds_av()  argument
577 	masked = ~lo_avd.allowed & avd->allowed;  in type_attribute_bounds_av()
583 	avd->allowed &= ~masked;  in type_attribute_bounds_av()
623 				      struct av_decision *avd,  in context_struct_compute_av()  argument
635 	avd->allowed = 0;  in context_struct_compute_av()
636 	avd->auditallow = 0;  in context_struct_compute_av()
637 	avd->auditdeny = 0xffffffff;  in context_struct_compute_av()
672 					avd->allowed |= node->datum.u.data;  in context_struct_compute_av()
674 					avd->auditallow |= node->datum.u.data;  in context_struct_compute_av()
676 					avd->auditdeny &= node->datum.u.data;  in context_struct_compute_av()
683 					avd, xperms);  in context_struct_compute_av()
694 		if ((constraint->permissions & (avd->allowed)) &&  in context_struct_compute_av()
697 			avd->allowed &= ~(constraint->permissions);  in context_struct_compute_av()
708 	    (avd->allowed & policydb->process_trans_perms) &&  in context_struct_compute_av()
716 			avd->allowed &= ~policydb->process_trans_perms;  in context_struct_compute_av()
725 				 tclass, avd);  in context_struct_compute_av()
946 static void avd_init(struct selinux_state *state, struct av_decision *avd)  in avd_init()  argument
948 	avd->allowed = 0;  in avd_init()
949 	avd->auditallow = 0;  in avd_init()
950 	avd->auditdeny = 0xffffffff;  in avd_init()
951 	avd->seqno = state->ss->latest_granting;  in avd_init()
952 	avd->flags = 0;  in avd_init()
1111 			 struct av_decision *avd,  in security_compute_av()  argument
1120 	avd_init(state, avd);  in security_compute_av()
1137 		avd->flags |= AVD_FLAGS_PERMISSIVE;  in security_compute_av()
1152 	context_struct_compute_av(policydb, scontext, tcontext, tclass, avd,  in security_compute_av()
1154 	map_decision(&state->ss->map, orig_tclass, avd,  in security_compute_av()
1160 	avd->allowed = 0xffffffff;  in security_compute_av()
1168 			      struct av_decision *avd)  in security_compute_av_user()  argument
1175 	avd_init(state, avd);  in security_compute_av_user()
1191 		avd->flags |= AVD_FLAGS_PERMISSIVE;  in security_compute_av_user()
1206 	context_struct_compute_av(policydb, scontext, tcontext, tclass, avd,  in security_compute_av_user()
1212 	avd->allowed = 0xffffffff;  in security_compute_av_user()