diff options
| author | Paul Moore <paul.moore@hp.com> | 2008-01-29 08:38:08 -0500 |
|---|---|---|
| committer | James Morris <jmorris@namei.org> | 2008-01-30 08:17:21 +1100 |
| commit | e8bfdb9d0dfc1231a6a71e849dfbd4447acdfff6 (patch) | |
| tree | 0d786c0ad972e43d1128296b8e7ae47275ab3ebd /security/selinux/include/objsec.h | |
| parent | 75e22910cf0c26802b09dac2e34c13e648d3ed02 (diff) | |
| download | olio-linux-3.10-e8bfdb9d0dfc1231a6a71e849dfbd4447acdfff6.tar.xz olio-linux-3.10-e8bfdb9d0dfc1231a6a71e849dfbd4447acdfff6.zip | |
SELinux: Convert the netif code to use ifindex values
The current SELinux netif code requires the caller have a valid net_device
struct pointer to lookup network interface information. However, we don't
always have a valid net_device pointer so convert the netif code to use
the ifindex values we always have as part of the sk_buff. This patch also
removes the default message SID from the network interface record, it is
not being used and therefore is "dead code".
Signed-off-by: Paul Moore <paul.moore@hp.com>
Signed-off-by: James Morris <jmorris@namei.org>
Diffstat (limited to 'security/selinux/include/objsec.h')
| -rw-r--r-- | security/selinux/include/objsec.h | 5 |
1 files changed, 2 insertions, 3 deletions
diff --git a/security/selinux/include/objsec.h b/security/selinux/include/objsec.h index 4138a80f8e2..2d0a92e97d5 100644 --- a/security/selinux/include/objsec.h +++ b/security/selinux/include/objsec.h @@ -96,9 +96,8 @@ struct bprm_security_struct { }; struct netif_security_struct { - struct net_device *dev; /* back pointer */ - u32 if_sid; /* SID for this interface */ - u32 msg_sid; /* default SID for messages received on this interface */ + int ifindex; /* device index */ + u32 sid; /* SID for this interface */ }; struct sk_security_struct { |