file.c - OpenGrok cross reference for /kernel/linux/linux-5.10/security/apparmor/file.c

Lines Matching defs:profile
77  * @profile: the profile being enforced  (NOT NULL)
90 int aa_audit_file(struct aa_profile *profile, struct aa_perms *perms,
111 		if (unlikely(AUDIT_MODE(profile) == AUDIT_ALL))
130 		    AUDIT_MODE(profile) != AUDIT_NOQUIET &&
131 		    AUDIT_MODE(profile) != AUDIT_ALL)
139 	return aa_audit(type, profile, &sa, file_audit_cb);
159 	struct aa_profile *profile;
166 		fn_for_each_confined(label, profile,
167 			aa_audit_file(profile, &nullperms, op, request, *name,
219 	 * done at profile load
266 int __aa_path_perm(const char *op, struct aa_profile *profile, const char *name,
272 	if (profile_unconfined(profile))
274 	aa_str_perms(profile->file.dfa, profile->file.start, name, cond, perms);
277 	return aa_audit_file(profile, perms, op, request, name, NULL, NULL,
282 static int profile_path_perm(const char *op, struct aa_profile *profile,
290 	if (profile_unconfined(profile))
293 	error = path_name(op, &profile->label, path,
294 			  flags | profile->path_flags, buffer, &name, cond,
298 	return __aa_path_perm(op, profile, name, request, cond, flags,
305  * @label: profile being enforced  (NOT NULL)
307  * @flags: any additional path flags beyond what the profile specifies
318 	struct aa_profile *profile;
327 	error = fn_for_each_confined(label, profile,
328 			profile_path_perm(op, profile, path, buffer, request,
356 static int profile_path_link(struct aa_profile *profile,
368 	error = path_name(OP_LINK, &profile->label, link, profile->path_flags,
374 	error = path_name(OP_LINK, &profile->label, target, profile->path_flags,
381 	state = aa_str_perms(profile->file.dfa, profile->file.start, lname,
388 	state = aa_dfa_null_transition(profile->file.dfa, state);
389 	aa_str_perms(profile->file.dfa, state, tname, cond, &perms);
411 	aa_str_perms(profile->file.dfa, profile->file.start, tname, cond,
433 	return aa_audit_file(profile, &lperms, OP_LINK, request, lname, tname,
465 	struct aa_profile *profile;
475 	error = fn_for_each_confined(label, profile,
476 			profile_path_link(profile, &link, buffer, &target,
509 	struct aa_profile *profile;
528 	/* check every profile in task label not in current cache */
529 	error = fn_for_each_not_in_set(flabel, label, profile,
530 			profile_path_perm(op, profile, &file->f_path, buffer,
534 		 * check every profile in file label that was not tested
542 			error = fn_for_each(label, profile,
543 				profile_path_perm(op, profile, &file->f_path,
547 			error = fn_for_each_not_in_set(label, flabel, profile,
548 				profile_path_perm(op, profile, &file->f_path,
577 		/* check every profile in file label to is cached */