forked from mirrors/linux
security: move LSM xattrnames to xattr.h
Make the security extended attributes names global. Updated to move the remaining Smack xattrs. Signed-off-by: Mimi Zohar <zohar@us.ibm.com> Acked-by: Serge Hallyn <serue@us.ibm.com> Signed-off-by: James Morris <jmorris@namei.org>
This commit is contained in:
Mimi Zohar
James Morris
parent
5ad18a0d59
commit
af4f136056
4 changed files with 14 additions and 16 deletions
|
|
@ -49,9 +49,6 @@ typedef struct __user_cap_data_struct {
|
||||||
} __user *cap_user_data_t;
|
} __user *cap_user_data_t;
|
||||||
|
|
||||||
|
|
||||||
#define XATTR_CAPS_SUFFIX "capability"
|
|
||||||
#define XATTR_NAME_CAPS XATTR_SECURITY_PREFIX XATTR_CAPS_SUFFIX
|
|
||||||
|
|
||||||
#define VFS_CAP_REVISION_MASK 0xFF000000
|
#define VFS_CAP_REVISION_MASK 0xFF000000
|
||||||
#define VFS_CAP_REVISION_SHIFT 24
|
#define VFS_CAP_REVISION_SHIFT 24
|
||||||
#define VFS_CAP_FLAGS_MASK ~VFS_CAP_REVISION_MASK
|
#define VFS_CAP_FLAGS_MASK ~VFS_CAP_REVISION_MASK
|
||||||
|
|
|
||||||
|
|
@ -33,6 +33,20 @@
|
||||||
#define XATTR_USER_PREFIX "user."
|
#define XATTR_USER_PREFIX "user."
|
||||||
#define XATTR_USER_PREFIX_LEN (sizeof (XATTR_USER_PREFIX) - 1)
|
#define XATTR_USER_PREFIX_LEN (sizeof (XATTR_USER_PREFIX) - 1)
|
||||||
|
|
||||||
|
/* Security namespace */
|
||||||
|
#define XATTR_SELINUX_SUFFIX "selinux"
|
||||||
|
#define XATTR_NAME_SELINUX XATTR_SECURITY_PREFIX XATTR_SELINUX_SUFFIX
|
||||||
|
|
||||||
|
#define XATTR_SMACK_SUFFIX "SMACK64"
|
||||||
|
#define XATTR_SMACK_IPIN "SMACK64IPIN"
|
||||||
|
#define XATTR_SMACK_IPOUT "SMACK64IPOUT"
|
||||||
|
#define XATTR_NAME_SMACK XATTR_SECURITY_PREFIX XATTR_SMACK_SUFFIX
|
||||||
|
#define XATTR_NAME_SMACKIPIN XATTR_SECURITY_PREFIX XATTR_SMACK_IPIN
|
||||||
|
#define XATTR_NAME_SMACKIPOUT XATTR_SECURITY_PREFIX XATTR_SMACK_IPOUT
|
||||||
|
|
||||||
|
#define XATTR_CAPS_SUFFIX "capability"
|
||||||
|
#define XATTR_NAME_CAPS XATTR_SECURITY_PREFIX XATTR_CAPS_SUFFIX
|
||||||
|
|
||||||
struct inode;
|
struct inode;
|
||||||
struct dentry;
|
struct dentry;
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -87,9 +87,6 @@
|
||||||
#include "netlabel.h"
|
#include "netlabel.h"
|
||||||
#include "audit.h"
|
#include "audit.h"
|
||||||
|
|
||||||
#define XATTR_SELINUX_SUFFIX "selinux"
|
|
||||||
#define XATTR_NAME_SELINUX XATTR_SECURITY_PREFIX XATTR_SELINUX_SUFFIX
|
|
||||||
|
|
||||||
#define NUM_SEL_MNT_OPTS 5
|
#define NUM_SEL_MNT_OPTS 5
|
||||||
|
|
||||||
extern int selinux_nlmsg_lookup(u16 sclass, u16 nlmsg_type, u32 *perm);
|
extern int selinux_nlmsg_lookup(u16 sclass, u16 nlmsg_type, u32 *perm);
|
||||||
|
|
|
||||||
|
|
@ -123,16 +123,6 @@ struct smack_known {
|
||||||
#define SMK_FSHAT "smackfshat="
|
#define SMK_FSHAT "smackfshat="
|
||||||
#define SMK_FSROOT "smackfsroot="
|
#define SMK_FSROOT "smackfsroot="
|
||||||
|
|
||||||
/*
|
|
||||||
* xattr names
|
|
||||||
*/
|
|
||||||
#define XATTR_SMACK_SUFFIX "SMACK64"
|
|
||||||
#define XATTR_SMACK_IPIN "SMACK64IPIN"
|
|
||||||
#define XATTR_SMACK_IPOUT "SMACK64IPOUT"
|
|
||||||
#define XATTR_NAME_SMACK XATTR_SECURITY_PREFIX XATTR_SMACK_SUFFIX
|
|
||||||
#define XATTR_NAME_SMACKIPIN XATTR_SECURITY_PREFIX XATTR_SMACK_IPIN
|
|
||||||
#define XATTR_NAME_SMACKIPOUT XATTR_SECURITY_PREFIX XATTR_SMACK_IPOUT
|
|
||||||
|
|
||||||
#define SMACK_CIPSO_OPTION "-CIPSO"
|
#define SMACK_CIPSO_OPTION "-CIPSO"
|
||||||
|
|
||||||
/*
|
/*
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue