diff options
| author | Paul Moore | 2008-01-29 14:38:08 +0100 |
|---|---|---|
| committer | James Morris | 2008-01-29 22:17:21 +0100 |
| commit | e8bfdb9d0dfc1231a6a71e849dfbd4447acdfff6 (patch) | |
| tree | 0d786c0ad972e43d1128296b8e7ae47275ab3ebd /security/selinux/include/objsec.h | |
| parent | NetLabel: Add IP address family information to the netlbl_skbuff_getattr() fu... (diff) | |
| download | kernel-qcow2-linux-e8bfdb9d0dfc1231a6a71e849dfbd4447acdfff6.tar.gz kernel-qcow2-linux-e8bfdb9d0dfc1231a6a71e849dfbd4447acdfff6.tar.xz kernel-qcow2-linux-e8bfdb9d0dfc1231a6a71e849dfbd4447acdfff6.zip | |
SELinux: Convert the netif code to use ifindex values
The current SELinux netif code requires the caller have a valid net_device
struct pointer to lookup network interface information. However, we don't
always have a valid net_device pointer so convert the netif code to use
the ifindex values we always have as part of the sk_buff. This patch also
removes the default message SID from the network interface record, it is
not being used and therefore is "dead code".
Signed-off-by: Paul Moore <paul.moore@hp.com>
Signed-off-by: James Morris <jmorris@namei.org>
Diffstat (limited to 'security/selinux/include/objsec.h')
| -rw-r--r-- | security/selinux/include/objsec.h | 5 |
1 files changed, 2 insertions, 3 deletions
diff --git a/security/selinux/include/objsec.h b/security/selinux/include/objsec.h index 4138a80f8e27..2d0a92e97d5a 100644 --- a/security/selinux/include/objsec.h +++ b/security/selinux/include/objsec.h @@ -96,9 +96,8 @@ struct bprm_security_struct { }; struct netif_security_struct { - struct net_device *dev; /* back pointer */ - u32 if_sid; /* SID for this interface */ - u32 msg_sid; /* default SID for messages received on this interface */ + int ifindex; /* device index */ + u32 sid; /* SID for this interface */ }; struct sk_security_struct { |