Lines Matching refs:rules
111 struct aa_ruleset *rules = list_first_entry(&profile->rules, in aa_profile_af_perm() local
112 typeof(*rules), list); in aa_profile_af_perm()
122 state = RULE_MEDIATES(rules, AA_CLASS_NET); in aa_profile_af_perm()
128 state = aa_dfa_match_len(rules->policy.dfa, state, (char *) &buffer, in aa_profile_af_perm()
130 perms = *aa_lookup_perms(&rules->policy, state); in aa_profile_af_perm()
221 struct aa_ruleset *rules = list_first_entry(&profile->rules, in aa_secmark_perm() local
222 typeof(*rules), list); in aa_secmark_perm()
224 if (rules->secmark_count == 0) in aa_secmark_perm()
227 for (i = 0; i < rules->secmark_count; i++) { in aa_secmark_perm()
228 if (!rules->secmark[i].secid) { in aa_secmark_perm()
229 ret = apparmor_secmark_init(&rules->secmark[i]); in aa_secmark_perm()
234 if (rules->secmark[i].secid == secid || in aa_secmark_perm()
235 rules->secmark[i].secid == AA_SECID_WILDCARD) { in aa_secmark_perm()
236 if (rules->secmark[i].deny) in aa_secmark_perm()
241 if (rules->secmark[i].audit) in aa_secmark_perm()