LSM: Introduce inode_getsecid and ipc_getsecid hooks
authorAhmed S. Darwish <darwish.07@gmail.com>
Sat, 1 Mar 2008 19:51:09 +0000 (21:51 +0200)
committerJames Morris <jmorris@namei.org>
Fri, 18 Apr 2008 23:52:32 +0000 (09:52 +1000)
commit8a076191f373abaeb4aa5f6755d22e49db98940f
tree1311a11332abb0828999a7347a07509a68dffb5f
parentd1a4be630fb068f251d64b62919f143c49ca8057
LSM: Introduce inode_getsecid and ipc_getsecid hooks

Introduce inode_getsecid(inode, secid) and ipc_getsecid(ipcp, secid)
LSM hooks. These hooks will be used instead of similar exported
SELinux interfaces.

Let {inode,ipc,task}_getsecid hooks set the secid to 0 by default
if CONFIG_SECURITY is not defined or if the hook is set to
NULL (dummy). This is done to notify the caller that no valid
secid exists.

Signed-off-by: Casey Schaufler <casey@schaufler-ca.com>
Signed-off-by: Ahmed S. Darwish <darwish.07@gmail.com>
Acked-by: James Morris <jmorris@namei.org>
Reviewed-by: Paul Moore <paul.moore@hp.com>
include/linux/security.h
security/dummy.c
security/security.c