6b6bc6205d
Wrap the AVC state within the selinux_state structure and pass it explicitly to all AVC functions. The AVC private state is encapsulated in a selinux_avc structure that is referenced from the selinux_state. This change should have no effect on SELinux behavior or APIs (userspace or LSM). Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> Reviewed-by: James Morris <james.morris@microsoft.com> Signed-off-by: Paul Moore <paul@paul-moore.com>
25 lines
522 B
C
25 lines
522 B
C
/* SPDX-License-Identifier: GPL-2.0 */
|
|
/*
|
|
* Access vector cache interface for the security server.
|
|
*
|
|
* Author : Stephen Smalley, <sds@tycho.nsa.gov>
|
|
*/
|
|
#ifndef _SELINUX_AVC_SS_H_
|
|
#define _SELINUX_AVC_SS_H_
|
|
|
|
#include "flask.h"
|
|
|
|
struct selinux_avc;
|
|
int avc_ss_reset(struct selinux_avc *avc, u32 seqno);
|
|
|
|
/* Class/perm mapping support */
|
|
struct security_class_mapping {
|
|
const char *name;
|
|
const char *perms[sizeof(u32) * 8 + 1];
|
|
};
|
|
|
|
extern struct security_class_mapping secclass_map[];
|
|
|
|
#endif /* _SELINUX_AVC_SS_H_ */
|
|
|