aa_capable

Name:aa_capable - test permission to use capability*@label: label being tested for capability (NOT NULL)*@cap: capability to be tested*@opts: CAP_OPT_NOAUDIT bit determines whether audit record is generated* Look up capability in profile capability set.

Proto:int aa_capable(struct aa_label *label, int cap, unsigned int opts)

Type:int

Parameter:

Type	Parameter	Name
struct aa_label *	label
int	cap
unsigned int	opts

150

error = 0

151

TODO: cleanup audit init so we don't need _aad = {0,} (sa, LSM_AUDIT_DATA_CAP, OP_CAPABLE)

153

cap = cap

154

error = fn_for_each_confined(label, profile, profile_capable - test if profile allows use of capability @cap*@profile: profile being enforced (NOT NULL, NOT unconfined)*@cap: capability to test if allowed*@opts: CAP_OPT_NOAUDIT bit determines whether audit record is generated*@sa: audit data (MAY BE )

157

Return error

**Caller**
Name	Describe
profile_tracer_perm
apparmor_capable
aa_task_setrlimit	aa_task_setrlimit - test permission to set an rlimit@label - label confining the task (NOT NULL)@task - task the resource is being set on@resource - the resource being set@new_rlim - the new resource limit (NOT NULL)

Source code conversion tool public plug-in interface	X
Support c/c++/esqlc/java Oracle/Informix/Mysql Plug-in can realize: logical Report Code generation and batch code conversion

Function report