Lines Matching refs:profile
36 struct aa_profile *profile; member
65 static int audit_caps(struct aa_profile *profile, int cap, int error) in audit_caps() argument
79 if (likely((AUDIT_MODE(profile) != AUDIT_ALL) && in audit_caps()
80 !cap_raised(profile->caps.audit, cap))) in audit_caps()
83 } else if (KILL_MODE(profile) || in audit_caps()
84 cap_raised(profile->caps.kill, cap)) { in audit_caps()
86 } else if (cap_raised(profile->caps.quiet, cap) && in audit_caps()
87 AUDIT_MODE(profile) != AUDIT_NOQUIET && in audit_caps()
88 AUDIT_MODE(profile) != AUDIT_ALL) { in audit_caps()
95 if (profile == ent->profile && cap_raised(ent->caps, cap)) { in audit_caps()
97 if (COMPLAIN_MODE(profile)) in audit_caps()
101 aa_put_profile(ent->profile); in audit_caps()
102 ent->profile = aa_get_profile(profile); in audit_caps()
107 return aa_audit(type, profile, GFP_ATOMIC, &sa, audit_cb); in audit_caps()
117 static int profile_capable(struct aa_profile *profile, int cap) in profile_capable() argument
119 return cap_raised(profile->caps.allow, cap) ? 0 : -EPERM; in profile_capable()
132 int aa_capable(struct aa_profile *profile, int cap, int audit) in aa_capable() argument
134 int error = profile_capable(profile, cap); in aa_capable()
137 if (COMPLAIN_MODE(profile)) in aa_capable()
142 return audit_caps(profile, cap, error); in aa_capable()