函数逻辑报告

Linux Kernel

v5.5.9

Brick Technologies Co., Ltd

Source Code:security\apparmor\capability.c Create Date:2022-07-27 21:26:15
Last Modify:2020-03-12 14:18:49 Copyright©Brick
首页 函数Tree
注解内核,赢得工具下载SCCTEnglish

函数名称:aa_capable - test permission to use capability*@label: label being tested for capability (NOT NULL)*@cap: capability to be tested*@opts: CAP_OPT_NOAUDIT bit determines whether audit record is generated* Look up capability in profile capability set.

函数原型:int aa_capable(struct aa_label *label, int cap, unsigned int opts)

返回类型:int

参数:

类型参数名称
struct aa_label *label
intcap
unsigned intopts
150  error等于0
151  TODO: cleanup audit init so we don't need _aad = {0,} (sa, LSM_AUDIT_DATA_CAP, OP_CAPABLE)
153  cap等于cap
154  error等于fn_for_each_confined(label, profile, profile_capable - test if profile allows use of capability @cap*@profile: profile being enforced (NOT NULL, NOT unconfined)*@cap: capability to test if allowed*@opts: CAP_OPT_NOAUDIT bit determines whether audit record is generated*@sa: audit data (MAY BE )
157  返回:error
调用者
名称描述
profile_tracer_perm
apparmor_capable
aa_task_setrlimitaa_task_setrlimit - test permission to set an rlimit*@label - label confining the task (NOT NULL)*@task - task the resource is being set on*@resource - the resource being set*@new_rlim - the new resource limit (NOT NULL)