diff options
| author | Linus Torvalds <torvalds@linux-foundation.org> | 2013-09-07 17:34:07 -0400 |
|---|---|---|
| committer | Linus Torvalds <torvalds@linux-foundation.org> | 2013-09-07 17:34:07 -0400 |
| commit | 11c7b03d42a847db90862d0f9d8be6ce9b2f0553 (patch) | |
| tree | 9c1d9e95c8ae09b4ee44821a9e570247d5a85a72 /security/apparmor/include/capability.h | |
| parent | 6be48f2940af9ea8d93c23a0dd8e322672c92efd (diff) | |
| parent | 73203361468894c3c017bfbdd9ddcbb468039604 (diff) | |
Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
Pull security subsystem updates from James Morris:
"Nothing major for this kernel, just maintenance updates"
* 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security: (21 commits)
apparmor: add the ability to report a sha1 hash of loaded policy
apparmor: export set of capabilities supported by the apparmor module
apparmor: add the profile introspection file to interface
apparmor: add an optional profile attachment string for profiles
apparmor: add interface files for profiles and namespaces
apparmor: allow setting any profile into the unconfined state
apparmor: make free_profile available outside of policy.c
apparmor: rework namespace free path
apparmor: update how unconfined is handled
apparmor: change how profile replacement update is done
apparmor: convert profile lists to RCU based locking
apparmor: provide base for multiple profiles to be replaced at once
apparmor: add a features/policy dir to interface
apparmor: enable users to query whether apparmor is enabled
apparmor: remove minimum size check for vmalloc()
Smack: parse multiple rules per write to load2, up to PAGE_SIZE-1 bytes
Smack: network label match fix
security: smack: add a hash table to quicken smk_find_entry()
security: smack: fix memleak in smk_write_rules_list()
xattr: Constify ->name member of "struct xattr".
...
Diffstat (limited to 'security/apparmor/include/capability.h')
| -rw-r--r-- | security/apparmor/include/capability.h | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/security/apparmor/include/capability.h b/security/apparmor/include/capability.h index c24d2959ea02..2e7c9d6a2f3b 100644 --- a/security/apparmor/include/capability.h +++ b/security/apparmor/include/capability.h | |||
| @@ -17,6 +17,8 @@ | |||
| 17 | 17 | ||
| 18 | #include <linux/sched.h> | 18 | #include <linux/sched.h> |
| 19 | 19 | ||
| 20 | #include "apparmorfs.h" | ||
| 21 | |||
| 20 | struct aa_profile; | 22 | struct aa_profile; |
| 21 | 23 | ||
| 22 | /* aa_caps - confinement data for capabilities | 24 | /* aa_caps - confinement data for capabilities |
| @@ -34,6 +36,8 @@ struct aa_caps { | |||
| 34 | kernel_cap_t extended; | 36 | kernel_cap_t extended; |
| 35 | }; | 37 | }; |
| 36 | 38 | ||
| 39 | extern struct aa_fs_entry aa_fs_entry_caps[]; | ||
| 40 | |||
| 37 | int aa_capable(struct task_struct *task, struct aa_profile *profile, int cap, | 41 | int aa_capable(struct task_struct *task, struct aa_profile *profile, int cap, |
| 38 | int audit); | 42 | int audit); |
| 39 | 43 | ||