Function report

Linux Kernel

v5.5.9

Brick Technologies Co., Ltd

Source Code:security\apparmor\policy.c Create Date:2022-07-28 19:52:00
Last Modify:2020-03-12 14:18:49 Copyright©Brick
home page Tree
Annotation kernel can get tool activityDownload SCCTChinese

Name:audit_policy - Do auditing of policy changes*@label: label to check if it can manage policy*@op: policy operation being performed*@ns_name: name of namespace being manipulated*@name: name of profile being manipulated (NOT NULL)*@info: any extra

Proto:static int audit_policy(struct aa_label *label, const char *op, const char *ns_name, const char *name, const char *info, int error)

Type:int

Parameter:

TypeParameterName
struct aa_label *label
const char *op
const char *ns_name
const char *name
const char *info
interror
621  TODO: cleanup audit init so we don't need _aad = {0,} (sa, LSM_AUDIT_DATA_NONE, op)
623  ns = ns_name
624  name = name
625  info = info
626  error = error
627  label = label
629  aa_audit_msg - Log a message to the audit subsystem*@sa: audit event structure (NOT NULL)*@cb: optional callback fn for type specific fields (MAYBE NULL)
631  Return error
Caller
NameDescribe
aa_may_manage_policyaa_may_manage_policy - can the current task manage policy*@label: label to check if it can manage policy*@op: the policy manipulation operation being done* Returns: 0 if the task is allowed to manipulate policy else error
aa_replace_profilesaa_replace_profiles - replace profile(s) on the profile list*@policy_ns: namespace load is occurring on*@label: label that is attempting to load/replace policy*@mask: permission mask*@udata: serialized data stream (NOT NULL)* unpack and replace a profile
aa_remove_profilesaa_remove_profiles - remove profile(s) from the system*@policy_ns: namespace the remove is being done from*@subj: label attempting to remove policy*@fqname: name of the profile or namespace to remove (NOT NULL)*@size: size of the name* Remove a profile or