에프에이리눅스 / 1611_0007_prime_oven

Blame view

kernel/linux-imx6_3.14.28/security/selinux/ss/mls.h 2.46 KB
edit raw normal view history
6b13f685e   김민수   BSP 최초 추가 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
 
  /*
   * Multi-level security (MLS) policy operations.
   *
   * Author : Stephen Smalley, <sds@epoch.ncsc.mil>
   */
  /*
   * Updated: Trusted Computer Solutions, Inc. <dgoeddel@trustedcs.com>
   *
   *	Support for enhanced MLS infrastructure.
   *
   * Copyright (C) 2004-2006 Trusted Computer Solutions, Inc.
   */
  /*
   * Updated: Hewlett-Packard <paul@paul-moore.com>
   *
   *	Added support to import/export the MLS label from NetLabel
   *
   * (c) Copyright Hewlett-Packard Development Company, L.P., 2006
   */
  
  #ifndef _SS_MLS_H_
  #define _SS_MLS_H_
  
  #include "context.h"
  #include "policydb.h"
  
  int mls_compute_context_len(struct context *context);
  void mls_sid_to_context(struct context *context, char **scontext);
  int mls_context_isvalid(struct policydb *p, struct context *c);
  int mls_range_isvalid(struct policydb *p, struct mls_range *r);
  int mls_level_isvalid(struct policydb *p, struct mls_level *l);
  
  int mls_context_to_sid(struct policydb *p,
  		       char oldc,
  		       char **scontext,
  		       struct context *context,
  		       struct sidtab *s,
  		       u32 def_sid);
  
  int mls_from_string(char *str, struct context *context, gfp_t gfp_mask);
  
  int mls_range_set(struct context *context, struct mls_range *range);
  
  int mls_convert_context(struct policydb *oldp,
  			struct policydb *newp,
  			struct context *context);
  
  int mls_compute_sid(struct context *scontext,
  		    struct context *tcontext,
  		    u16 tclass,
  		    u32 specified,
  		    struct context *newcontext,
  		    bool sock);
  
  int mls_setup_user_range(struct context *fromcon, struct user_datum *user,
  			 struct context *usercon);
  
  #ifdef CONFIG_NETLABEL
  void mls_export_netlbl_lvl(struct context *context,
  			   struct netlbl_lsm_secattr *secattr);
  void mls_import_netlbl_lvl(struct context *context,
  			   struct netlbl_lsm_secattr *secattr);
  int mls_export_netlbl_cat(struct context *context,
  			  struct netlbl_lsm_secattr *secattr);
  int mls_import_netlbl_cat(struct context *context,
  			  struct netlbl_lsm_secattr *secattr);
  #else
  static inline void mls_export_netlbl_lvl(struct context *context,
  					 struct netlbl_lsm_secattr *secattr)
  {
  	return;
  }
  static inline void mls_import_netlbl_lvl(struct context *context,
  					 struct netlbl_lsm_secattr *secattr)
  {
  	return;
  }
  static inline int mls_export_netlbl_cat(struct context *context,
  					struct netlbl_lsm_secattr *secattr)
  {
  	return -ENOMEM;
  }
  static inline int mls_import_netlbl_cat(struct context *context,
  					struct netlbl_lsm_secattr *secattr)
  {
  	return -ENOMEM;
  }
  #endif
  
  #endif	/* _SS_MLS_H */