Lines Matching refs:rules
113 struct aa_ruleset *rules = list_first_entry(&profile->rules, in aa_profile_af_perm() local
114 typeof(*rules), list); in aa_profile_af_perm()
124 state = RULE_MEDIATES(rules, AA_CLASS_NET); in aa_profile_af_perm()
130 state = aa_dfa_match_len(rules->policy->dfa, state, (char *) &buffer, in aa_profile_af_perm()
132 perms = *aa_lookup_perms(rules->policy, state); in aa_profile_af_perm()
226 struct aa_ruleset *rules = list_first_entry(&profile->rules, in aa_secmark_perm() local
227 typeof(*rules), list); in aa_secmark_perm()
229 if (rules->secmark_count == 0) in aa_secmark_perm()
232 for (i = 0; i < rules->secmark_count; i++) { in aa_secmark_perm()
233 if (!rules->secmark[i].secid) { in aa_secmark_perm()
234 ret = apparmor_secmark_init(&rules->secmark[i]); in aa_secmark_perm()
239 if (rules->secmark[i].secid == secid || in aa_secmark_perm()
240 rules->secmark[i].secid == AA_SECID_WILDCARD) { in aa_secmark_perm()
241 if (rules->secmark[i].deny) in aa_secmark_perm()
246 if (rules->secmark[i].audit) in aa_secmark_perm()