Function report |
Source Code:kernel\auditsc.c |
Create Date:2022-07-28 11:27:02 |
| Last Modify:2020-03-17 16:31:21 | Copyright©Brick |
| home page | Tree |
| Annotation kernel can get tool activity | Download SCCT | Chinese |
Name:audit_in_mask
Proto:static int audit_in_mask(const struct audit_krule *rule, unsigned long val)
Type:int
Parameter:
| Type | Parameter | Name |
|---|---|---|
| const struct audit_krule * | rule | |
| unsigned long | val |
| 763 | If val > 0xffffffff Then Return false |
| 766 | word = AUDIT_WORD(val) |
| 767 | If word >= AUDIT_BITMASK_SIZE Then Return false |
| Name | Describe |
|---|---|
| audit_filter_syscall | At syscall entry and exit time, this filter is called if the* audit_state is not low enough that auditing cannot take place, but is* also not high enough that we already know we have to write an audit* record (i |
| audit_filter_inode_name | Given an audit_name check the inode hash table to see if they match.* Called holding the rcu read lock to protect the use of audit_inode_hash |
| Source code conversion tool public plug-in interface | X |
|---|---|
| Support c/c++/esqlc/java Oracle/Informix/Mysql Plug-in can realize: logical Report Code generation and batch code conversion |