ded34574d4
The arrays for the policy capability names, the initial sid identifiers and the class and permission names are not changed at runtime. Declare them const to avoid accidental modification. Do not override the classmap and the initial sid list in the build time script genheaders. Check flose(3) is successful in genheaders.c, otherwise the written data might be corrupted or incomplete. Signed-off-by: Christian Göttsche <cgzones@googlemail.com> [PM: manual merge due to fuzz, minor style tweaks] Signed-off-by: Paul Moore <paul@paul-moore.com>
25 lines
534 B
C
25 lines
534 B
C
/* SPDX-License-Identifier: GPL-2.0 */
|
|
/*
|
|
* Access vector cache interface for the security server.
|
|
*
|
|
* Author : Stephen Smalley, <sds@tycho.nsa.gov>
|
|
*/
|
|
#ifndef _SELINUX_AVC_SS_H_
|
|
#define _SELINUX_AVC_SS_H_
|
|
|
|
#include <linux/types.h>
|
|
|
|
struct selinux_avc;
|
|
int avc_ss_reset(struct selinux_avc *avc, u32 seqno);
|
|
|
|
/* Class/perm mapping support */
|
|
struct security_class_mapping {
|
|
const char *name;
|
|
const char *perms[sizeof(u32) * 8 + 1];
|
|
};
|
|
|
|
extern const struct security_class_mapping secclass_map[];
|
|
|
|
#endif /* _SELINUX_AVC_SS_H_ */
|
|
|