• Home
  • Raw
  • Download

Lines Matching full:profile

65 	APPARMOR_UNCONFINED,	/* profile set to unconfined */
95  * @base - base components of the profile (name, refcount, lists, lock ...)
96  * @label - label this profile is an extension of
97  * @parent: parent of profile
98  * @ns: namespace the profile is in
99  * @rename: optional profile name that this profile renamed
103  * @audit: the auditing mode of the profile
104  * @mode: the enforcement mode of the profile
110  * @caps: capabilities for the profile
111  * @rlimits: rlimits for the profile
114  * @dirname: name of the profile dir in apparmorfs
117  * The AppArmor profile contains the basic confinement data.  Each profile
119  * used to determine profile attachment against unconfined tasks.  All other
120  * attachments are determined by profile X transition rules.
125  * Profile names can not begin with a : and can not contain the \0
126  * character.  If a profile name begins with / it will be considered when
127  * determining profile attachment on "unconfined" tasks.
174 void aa_add_profile(struct aa_policy *common, struct aa_profile *profile);
182 void aa_free_profile(struct aa_profile *profile);
205  * @p: profile (NOT NULL)
207  * Returns refcount to newest version of the profile (maybe @p)
216 static inline unsigned int PROFILE_MEDIATES(struct aa_profile *profile,  in PROFILE_MEDIATES()  argument
220 		return profile->policy.start[class];  in PROFILE_MEDIATES()
222 		return aa_dfa_match_len(profile->policy.dfa,  in PROFILE_MEDIATES()
223 					profile->policy.start[0], &class, 1);  in PROFILE_MEDIATES()
226 static inline unsigned int PROFILE_MEDIATES_AF(struct aa_profile *profile,  in PROFILE_MEDIATES_AF()  argument
228 	unsigned int state = PROFILE_MEDIATES(profile, AA_CLASS_NET);  in PROFILE_MEDIATES_AF()
233 	return aa_dfa_match_len(profile->policy.dfa, state, (char *) &be_af, 2);  in PROFILE_MEDIATES_AF()
237  * aa_get_profile - increment refcount on profile @p
238  * @p: profile  (MAYBE NULL)
252  * aa_get_profile_not0 - increment refcount on profile @p found via lookup
253  * @p: profile  (MAYBE NULL)
267  * aa_get_profile_rcu - increment a refcount profile that can be replaced
268  * @p: pointer to profile that can be replaced (NOT NULL)
270  * Returns: pointer to a refcounted profile.
271  *     else NULL if no profile
287  * aa_put_profile - decrement refcount on profile @p
288  * @p: profile  (MAYBE NULL)
296 static inline int AUDIT_MODE(struct aa_profile *profile)  in AUDIT_MODE()  argument
301 	return profile->audit;  in AUDIT_MODE()