/*
 * AppArmor security module
 *
 * This file contains AppArmor capability mediation definitions.
 *
 * Copyright (C) 1998-2008 Novell/SUSE
 * Copyright 2009-2013 Canonical Ltd.
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License as
 * published by the Free Software Foundation, version 2 of the
 * License.
 */

#ifndef __AA_CAPABILITY_H
#define __AA_CAPABILITY_H

#include <linux/sched.h>

#include "apparmorfs.h"

struct aa_profile;

/* aa_caps - confinement data for capabilities
 * @allowed: capabilities mask
 * @audit: caps that are to be audited
 * @quiet: caps that should not be audited
 * @kill: caps that when requested will result in the task being killed
 * @extended: caps that are subject finer grained mediation
 */
struct aa_caps {
	kernel_cap_t allow;
	kernel_cap_t audit;
	kernel_cap_t quiet;
	kernel_cap_t kill;
	kernel_cap_t extended;
};

extern struct aa_fs_entry aa_fs_entry_caps[];

int aa_capable(struct aa_profile *profile, int cap, int audit);

static inline void aa_free_cap_rules(struct aa_caps *caps)
{
	/* NOP */
}

#endif /* __AA_CAPBILITY_H */
n>
<option value='nds-private-remove'>nds-private-remove</option>
<option value='packet-loop-back'>packet-loop-back</option>
<option value='packet-rx-pump-back'>packet-rx-pump-back</option>
</select> <input type='submit' value='switch'/></form></td></tr>
<tr><td class='sub'>net-next plumbings</td><td class='sub right'>Tobias Klauser</td></tr></table>
<table class='tabs'><tr><td>
<a href='/cgit.cgi/linux/net-next.git/'>summary</a><a href='/cgit.cgi/linux/net-next.git/refs/?id=2bd137de531367fb573d90150d1872cb2a2095f7'>refs</a><a class='active' href='/cgit.cgi/linux/net-next.git/log/include/net/netns/nftables.h?showmsg=1'>log</a><a href='/cgit.cgi/linux/net-next.git/tree/include/net/netns/nftables.h?id=2bd137de531367fb573d90150d1872cb2a2095f7'>tree</a><a href='/cgit.cgi/linux/net-next.git/commit/include/net/netns/nftables.h?id=2bd137de531367fb573d90150d1872cb2a2095f7'>commit</a><a href='/cgit.cgi/linux/net-next.git/diff/include/net/netns/nftables.h?id=2bd137de531367fb573d90150d1872cb2a2095f7'>diff</a></td><td class='form'><form class='right' method='get' action='/cgit.cgi/linux/net-next.git/log/include/net/netns/nftables.h'>
<input type='hidden' name='id' value='2bd137de531367fb573d90150d1872cb2a2095f7'/><input type='hidden' name='showmsg' value='1'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/cgit.cgi/linux/net-next.git/log/?id=2bd137de531367fb573d90150d1872cb2a2095f7&amp;showmsg=1'>root</a>/<a href='/cgit.cgi/linux/net-next.git/log/include?id=2bd137de531367fb573d90150d1872cb2a2095f7&amp;showmsg=1'>include</a>/<a href='/cgit.cgi/linux/net-next.git/log/include/net?id=2bd137de531367fb573d90150d1872cb2a2095f7&amp;showmsg=1'>net</a>/<a href='/cgit.cgi/linux/net-next.git/log/include/net/netns?id=2bd137de531367fb573d90150d1872cb2a2095f7&amp;showmsg=1'>netns</a>/<a href='/cgit.cgi/linux/net-next.git/log/include/net/netns/nftables.h?id=2bd137de531367fb573d90150d1872cb2a2095f7&amp;showmsg=1'>nftables.h</a></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/cgit.cgi/linux/net-next.git/log/include/net/netns/nftables.h?id=2bd137de531367fb573d90150d1872cb2a2095f7'>Collapse</a>)</th><th class='left'>Author</th><th class='left'>Files</th><th class='left'>Lines</th></tr>