| security.h (e5a5ca96a42ca7eee19cf8694377308771350950) | security.h (6b6bc6205d98796361962ee282a063f18ba8dc57) |
|---|---|
| 1/* SPDX-License-Identifier: GPL-2.0 */ 2/* 3 * Security server interface. 4 * 5 * Author : Stephen Smalley, <sds@tycho.nsa.gov> 6 * 7 */ 8 --- 79 unchanged lines hidden (view full) --- 88 * available at the kernel policy version >= POLICYDB_VERSION_BOUNDARY 89 */ 90#define TYPEDATUM_PROPERTY_PRIMARY 0x0001 91#define TYPEDATUM_PROPERTY_ATTRIBUTE 0x0002 92 93/* limitation of boundary depth */ 94#define POLICYDB_BOUNDS_MAXDEPTH 4 95 | 1/* SPDX-License-Identifier: GPL-2.0 */ 2/* 3 * Security server interface. 4 * 5 * Author : Stephen Smalley, <sds@tycho.nsa.gov> 6 * 7 */ 8 --- 79 unchanged lines hidden (view full) --- 88 * available at the kernel policy version >= POLICYDB_VERSION_BOUNDARY 89 */ 90#define TYPEDATUM_PROPERTY_PRIMARY 0x0001 91#define TYPEDATUM_PROPERTY_ATTRIBUTE 0x0002 92 93/* limitation of boundary depth */ 94#define POLICYDB_BOUNDS_MAXDEPTH 4 95 |
| 96struct selinux_avc; |
|
| 96struct selinux_ss; 97 98struct selinux_state { 99 bool disabled; 100#ifdef CONFIG_SECURITY_SELINUX_DEVELOP 101 bool enforcing; 102#endif 103 bool checkreqprot; 104 bool initialized; 105 bool policycap[__POLICYDB_CAPABILITY_MAX]; | 97struct selinux_ss; 98 99struct selinux_state { 100 bool disabled; 101#ifdef CONFIG_SECURITY_SELINUX_DEVELOP 102 bool enforcing; 103#endif 104 bool checkreqprot; 105 bool initialized; 106 bool policycap[__POLICYDB_CAPABILITY_MAX]; |
| 107 struct selinux_avc *avc; |
|
| 106 struct selinux_ss *ss; 107}; 108 109void selinux_ss_init(struct selinux_ss **ss); | 108 struct selinux_ss *ss; 109}; 110 111void selinux_ss_init(struct selinux_ss **ss); |
| 112void selinux_avc_init(struct selinux_avc **avc); |
|
| 110 111extern struct selinux_state selinux_state; 112 113#ifdef CONFIG_SECURITY_SELINUX_DEVELOP 114static inline bool enforcing_enabled(struct selinux_state *state) 115{ 116 return state->enforcing; 117} --- 274 unchanged lines hidden --- | 113 114extern struct selinux_state selinux_state; 115 116#ifdef CONFIG_SECURITY_SELINUX_DEVELOP 117static inline bool enforcing_enabled(struct selinux_state *state) 118{ 119 return state->enforcing; 120} --- 274 unchanged lines hidden --- |