diff options
| author | Paul Moore | 2007-02-28 21:14:22 +0100 |
|---|---|---|
| committer | James Morris | 2007-04-26 07:35:48 +0200 |
| commit | 5778eabd9cdbf16ea3e40248c452b4fd25554d11 (patch) | |
| tree | a488fd5fc07c01b93fe38621888cc50c64cfc0a1 /security/selinux/include/security.h | |
| parent | NetLabel: convert a BUG_ON in the CIPSO code to a runtime check (diff) | |
| download | kernel-qcow2-linux-5778eabd9cdbf16ea3e40248c452b4fd25554d11.tar.gz kernel-qcow2-linux-5778eabd9cdbf16ea3e40248c452b4fd25554d11.tar.xz kernel-qcow2-linux-5778eabd9cdbf16ea3e40248c452b4fd25554d11.zip | |
SELinux: extract the NetLabel SELinux support from the security server
Up until this patch the functions which have provided NetLabel support to
SELinux have been integrated into the SELinux security server, which for
various reasons is not really ideal. This patch makes an effort to extract as
much of the NetLabel support from the security server as possibile and move it
into it's own file within the SELinux directory structure.
Signed-off-by: Paul Moore <paul.moore@hp.com>
Signed-off-by: James Morris <jmorris@namei.org>
Diffstat (limited to 'security/selinux/include/security.h')
| -rw-r--r-- | security/selinux/include/security.h | 24 |
1 files changed, 24 insertions, 0 deletions
diff --git a/security/selinux/include/security.h b/security/selinux/include/security.h index 210eec77e7ff..605b07165af8 100644 --- a/security/selinux/include/security.h +++ b/security/selinux/include/security.h @@ -35,6 +35,7 @@ #endif struct sk_buff; +struct netlbl_lsm_secattr; extern int selinux_enabled; extern int selinux_mls_enabled; @@ -102,5 +103,28 @@ int security_fs_use(const char *fstype, unsigned int *behavior, int security_genfs_sid(const char *fstype, char *name, u16 sclass, u32 *sid); +#ifdef CONFIG_NETLABEL +int security_netlbl_secattr_to_sid(struct netlbl_lsm_secattr *secattr, + u32 base_sid, + u32 *sid); + +int security_netlbl_sid_to_secattr(u32 sid, + struct netlbl_lsm_secattr *secattr); +#else +static inline int security_netlbl_secattr_to_sid( + struct netlbl_lsm_secattr *secattr, + u32 base_sid, + u32 *sid) +{ + return -EIDRM; +} + +static inline int security_netlbl_sid_to_secattr(u32 sid, + struct netlbl_lsm_secattr *secattr) +{ + return -ENOENT; +} +#endif /* CONFIG_NETLABEL */ + #endif /* _SELINUX_SECURITY_H_ */ |