98 				      struct av_decision *avd);
218 static void map_decision(u16 tclass, struct av_decision *avd,  in map_decision()  argument
226 			if (avd->allowed & current_mapping[tclass].perms[i])  in map_decision()
231 		avd->allowed = result;  in map_decision()
234 			if (avd->auditallow & current_mapping[tclass].perms[i])  in map_decision()
236 		avd->auditallow = result;  in map_decision()
239 			if (avd->auditdeny & current_mapping[tclass].perms[i])  in map_decision()
251 		avd->auditdeny = result;  in map_decision()
542 				     struct av_decision *avd)  in type_attribute_bounds_av()  argument
569 		if ((lo_avd.allowed & avd->allowed) == avd->allowed)  in type_attribute_bounds_av()
571 		masked = ~lo_avd.allowed & avd->allowed;  in type_attribute_bounds_av()
584 		if ((lo_avd.allowed & avd->allowed) == avd->allowed)  in type_attribute_bounds_av()
586 		masked = ~lo_avd.allowed & avd->allowed;  in type_attribute_bounds_av()
600 		if ((lo_avd.allowed & avd->allowed) == avd->allowed)  in type_attribute_bounds_av()
602 		masked = ~lo_avd.allowed & avd->allowed;  in type_attribute_bounds_av()
607 		avd->allowed &= ~masked;  in type_attribute_bounds_av()
622 				      struct av_decision *avd)  in context_struct_compute_av()  argument
633 	avd->allowed = 0;  in context_struct_compute_av()
634 	avd->auditallow = 0;  in context_struct_compute_av()
635 	avd->auditdeny = 0xffffffff;  in context_struct_compute_av()
663 					avd->allowed |= node->datum.data;  in context_struct_compute_av()
665 					avd->auditallow |= node->datum.data;  in context_struct_compute_av()
667 					avd->auditdeny &= node->datum.data;  in context_struct_compute_av()
671 			cond_compute_av(&policydb.te_cond_avtab, &avkey, avd);  in context_struct_compute_av()
682 		if ((constraint->permissions & (avd->allowed)) &&  in context_struct_compute_av()
685 			avd->allowed &= ~(constraint->permissions);  in context_struct_compute_av()
696 	    (avd->allowed & policydb.process_trans_perms) &&  in context_struct_compute_av()
704 			avd->allowed &= ~policydb.process_trans_perms;  in context_struct_compute_av()
713 				 tclass, avd);  in context_struct_compute_av()
893 static void avd_init(struct av_decision *avd)  in avd_init()  argument
895 	avd->allowed = 0;  in avd_init()
896 	avd->auditallow = 0;  in avd_init()
897 	avd->auditdeny = 0xffffffff;  in avd_init()
898 	avd->seqno = latest_granting;  in avd_init()
899 	avd->flags = 0;  in avd_init()
916 			 struct av_decision *avd)  in security_compute_av()  argument
922 	avd_init(avd);  in security_compute_av()
935 		avd->flags |= AVD_FLAGS_PERMISSIVE;  in security_compute_av()
950 	context_struct_compute_av(scontext, tcontext, tclass, avd);  in security_compute_av()
951 	map_decision(orig_tclass, avd, policydb.allow_unknown);  in security_compute_av()
956 	avd->allowed = 0xffffffff;  in security_compute_av()
963 			      struct av_decision *avd)  in security_compute_av_user()  argument
968 	avd_init(avd);  in security_compute_av_user()
981 		avd->flags |= AVD_FLAGS_PERMISSIVE;  in security_compute_av_user()
996 	context_struct_compute_av(scontext, tcontext, tclass, avd);  in security_compute_av_user()
1001 	avd->allowed = 0xffffffff;  in security_compute_av_user()