aa_audit

函数名称：aa_audit - Log a profile based audit event to the audit subsystem*@type: audit type for the message*@profile: profile to check against (NOT NULL)*@sa: audit event (NOT NULL)*@cb: optional callback fn for type specific fields (MAYBE NULL)* Handle default

函数原型：int aa_audit(int type, struct aa_profile *profile, struct common_audit_data *sa, void (*cb)(struct audit_buffer *, void *))

返回类型：int

参数：

类型	参数	名称
int	type
struct aa_profile *	profile
struct common_audit_data *	sa
void (*	cb

**调用者**
名称	描述
audit_caps	audit_caps - audit a capability@sa: audit data@profile: profile being tested for confinement (NOT NULL)@cap: capability tested@error: error code returned by test* Do auditing of capability and handle, audit/complain/kill modes switching
profile_tracer_perm
audit_iface	audit_iface - do audit message for policy unpacking/load/replace/remove@new: profile if it has been allocated (MAYBE NULL)@ns_name: name of the ns the profile is to be loaded to (MAY BE NULL)*@name: name of the profile being manipulated (MAYBE
audit_resource	audit_resource - audit setting resource limit@profile: profile being enforced (NOT NULL)@resource: rlimit being auditing@value: value being set@error: error value* Returns: 0 or sa->error else other error code on failure
aa_audit_file	aa_audit_file - handle the auditing of file operations@profile: the profile being enforced (NOT NULL)@perms: the permissions computed for the request (NOT NULL)@op: operation being mediated@request: permissions requested*@name: name of object being
audit_mount	audit_mount - handle the auditing of mount operations@profile: the profile being enforced (NOT NULL)@op: operation being mediated (NOT NULL)@name: name of object being mediated (MAYBE NULL)@src_name: src_name of object being mediated

函数逻辑报告