Function report |
Source Code:security\apparmor\mount.c |
Create Date:2022-07-28 19:54:42 |
Last Modify:2020-03-12 14:18:49 | Copyright©Brick |
home page | Tree |
Annotation kernel can get tool activity | Download SCCT | Chinese |
Name:audit_mount - handle the auditing of mount operations*@profile: the profile being enforced (NOT NULL)*@op: operation being mediated (NOT NULL)*@name: name of object being mediated (MAYBE NULL)*@src_name: src_name of object being mediated
Proto:static int audit_mount(struct aa_profile *profile, const char *op, const char *name, const char *src_name, const char *type, const char *trans, unsigned long flags, const void *data, unsigned int request, struct aa_perms *perms, const char *info, int error)
Type:int
Parameter:
Type | Parameter | Name |
---|---|---|
struct aa_profile * | profile | |
const char * | op | |
const char * | name | |
const char * | src_name | |
const char * | type | |
const char * | trans | |
unsigned long | flags | |
const void * | data | |
unsigned int | request | |
struct aa_perms * | perms | |
const char * | info | |
int | error |
139 | If Value is more likely to compile time(!error) Then |
142 | If Value for the false possibility is greater at compile time(AUDIT_MODE(profile) == AUDIT_ALL) Then mask = 0xffff |
148 | If Value is more likely to compile time(!request) Then Return 0 |
151 | Else |
155 | If request & set only when ~allow | deny Then audit_type = AUDIT_APPARMOR_KILL |
159 | If request & set only when ~allow | deny && AUDIT_MODE(profile) != do not quiet audit messages && AUDIT_MODE(profile) != AUDIT_ALL Then request &= ~ set only when ~allow | deny |
173 | If data && set only when allow is set & AA_AUDIT_DATA Then data = data |
Name | Describe |
---|---|
match_mnt_path_str | match_mnt_path_str - handle path matching for mount*@profile: the confining profile*@mntpath: for the mntpnt (NOT NULL)*@buffer: buffer to be used to lookup mntpath*@devnme: string for the devname/src_name (MAY BE NULL OR ERRPTR)*@type: string for the dev |
profile_umount | |
build_pivotroot | helper fn for transition on pivotroot* Returns: label for transition or ERR_PTR. Does not return NULL |
aa_pivotroot |
Source code conversion tool public plug-in interface | X |
---|---|
Support c/c++/esqlc/java Oracle/Informix/Mysql Plug-in can realize: logical Report Code generation and batch code conversion |