policy.h - OpenGrok cross reference for /Linux-v6.1/security/apparmor/include/policy.h

Lines Matching full:profile
69 	APPARMOR_UNCONFINED,	/* profile set to unconfined */
99  * @base - base components of the profile (name, refcount, lists, lock ...)
100  * @label - label this profile is an extension of
101  * @parent: parent of profile
102  * @ns: namespace the profile is in
103  * @rename: optional profile name that this profile renamed
107  * @audit: the auditing mode of the profile
108  * @mode: the enforcement mode of the profile
114  * @caps: capabilities for the profile
115  * @rlimits: rlimits for the profile
118  * @dirname: name of the profile dir in apparmorfs
121  * The AppArmor profile contains the basic confinement data.  Each profile
123  * used to determine profile attachment against unconfined tasks.  All other
124  * attachments are determined by profile X transition rules.
129  * Profile names can not begin with a : and can not contain the \0
130  * character.  If a profile name begins with / it will be considered when
131  * determining profile attachment on "unconfined" tasks.
178 void aa_add_profile(struct aa_policy *common, struct aa_profile *profile);
186 void aa_free_profile(struct aa_profile *profile);
209  * @p: profile (NOT NULL)
211  * Returns refcount to newest version of the profile (maybe @p)
220 static inline unsigned int PROFILE_MEDIATES(struct aa_profile *profile,  in PROFILE_MEDIATES()  argument
224 		return profile->policy.start[class];  in PROFILE_MEDIATES()
226 		return aa_dfa_match_len(profile->policy.dfa,  in PROFILE_MEDIATES()
227 					profile->policy.start[0], &class, 1);  in PROFILE_MEDIATES()
230 static inline unsigned int PROFILE_MEDIATES_AF(struct aa_profile *profile,  in PROFILE_MEDIATES_AF()  argument
232 	unsigned int state = PROFILE_MEDIATES(profile, AA_CLASS_NET);  in PROFILE_MEDIATES_AF()
237 	return aa_dfa_match_len(profile->policy.dfa, state, (char *) &be_af, 2);  in PROFILE_MEDIATES_AF()
241  * aa_get_profile - increment refcount on profile @p
242  * @p: profile  (MAYBE NULL)
256  * aa_get_profile_not0 - increment refcount on profile @p found via lookup
257  * @p: profile  (MAYBE NULL)
271  * aa_get_profile_rcu - increment a refcount profile that can be replaced
272  * @p: pointer to profile that can be replaced (NOT NULL)
274  * Returns: pointer to a refcounted profile.
275  *     else NULL if no profile
291  * aa_put_profile - decrement refcount on profile @p
292  * @p: profile  (MAYBE NULL)
300 static inline int AUDIT_MODE(struct aa_profile *profile)  in AUDIT_MODE()  argument
305 	return profile->audit;  in AUDIT_MODE()