Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/security-testing-2.6

* 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/security-testing-2.6: (33 commits) AppArmor: kill unused macros in lsm.c AppArmor: cleanup generated files correctly KEYS: Add an iovec version of KEYCTL_INSTANTIATE KEYS: Add a new keyctl op to reject a key with a specified error code KEYS: Add a key type op to permit the key description to be vetted KEYS: Add an RCU payload dereference macro AppArmor: Cleanup make file to remove cruft and make it easier to read SELinux: implement the new sb_remount LSM hook LSM: Pass -o remount options to the LSM SELinux: Compute SID for the newly created socket SELinux: Socket retains creator role and MLS attribute SELinux: Auto-generate security_is_socket_class TOMOYO: Fix memory leak upon file open. Revert "selinux: simplify ioctl checking" selinux: drop unused packet flow permissions selinux: Fix packet forwarding checks on postrouting selinux: Fix wrong checks for selinux_policycap_netpeer selinux: Fix check for xfrm selinux context algorithm ima: remove unnecessary call to ima_must_measure IMA: remove IMA imbalance checking ...
author: Linus Torvalds <torvalds@linux-foundation.org> 2011-03-16 12:15:43 -0400
committer: Linus Torvalds <torvalds@linux-foundation.org> 2011-03-16 12:15:43 -0400
commit: 0f6e0e8448a16d8d22119ce91d8dd24b44865b51 (patch)
tree: 7c295c02db035fc6a0b867465911a2bc9dc6b1ef /security/selinux/include/security.h
parent: 0d2ecee2bdb2a19d04bc5cefac0f86e790f1aad4 (diff)
parent: a002951c97ff8da49938c982a4c236bf2fafdc9f (diff)
1 files changed, 5 insertions, 3 deletions
diff --git a/security/selinux/include/security.h b/security/selinux/include/security.h
index 671273eb1115..348eb00cb668 100644
--- a/security/selinux/include/security.h
+++ b/security/selinux/include/security.h
@@ -8,6 +8,7 @@
 #ifndef _SELINUX_SECURITY_H_
 #define _SELINUX_SECURITY_H_
+#include <linux/dcache.h>
 #include <linux/magic.h>
 #include <linux/types.h>
 #include "flask.h"
@@ -28,13 +29,14 @@
 #define POLICYDB_VERSION_POLCAP         22
 #define POLICYDB_VERSION_PERMISSIVE     23
 #define POLICYDB_VERSION_BOUNDARY       24
+#define POLICYDB_VERSION_FILENAME_TRANS 25
 /* Range of policy versions we understand*/
 #define POLICYDB_VERSION_MIN   POLICYDB_VERSION_BASE
 #ifdef CONFIG_SECURITY_SELINUX_POLICYDB_VERSION_MAX
 #define POLICYDB_VERSION_MAX    CONFIG_SECURITY_SELINUX_POLICYDB_VERSION_MAX_VALUE
 #else
-#define POLICYDB_VERSION_MAX    POLICYDB_VERSION_BOUNDARY
+#define POLICYDB_VERSION_MAX    POLICYDB_VERSION_FILENAME_TRANS
 #endif
 /* Mask for just the mount related flags */
@@ -106,8 +108,8 @@ void security_compute_av(u32 ssid, u32 tsid,
 void security_compute_av_user(u32 ssid, u32 tsid,
                             u16 tclass, struct av_decision *avd);
-int security_transition_sid(u32 ssid, u32 tsid,
+int security_transition_sid(u32 ssid, u32 tsid, u16 tclass,
-                            u16 tclass, u32 *out_sid);
+                            const struct qstr *qstr, u32 *out_sid);
 int security_transition_sid_user(u32 ssid, u32 tsid,
                                 u16 tclass, u32 *out_sid);
author	Linus Torvalds <torvalds@linux-foundation.org>	2011-03-16 12:15:43 -0400
committer	Linus Torvalds <torvalds@linux-foundation.org>	2011-03-16 12:15:43 -0400
commit	0f6e0e8448a16d8d22119ce91d8dd24b44865b51 (patch)
tree	7c295c02db035fc6a0b867465911a2bc9dc6b1ef /security/selinux/include/security.h
parent	0d2ecee2bdb2a19d04bc5cefac0f86e790f1aad4 (diff)
parent	a002951c97ff8da49938c982a4c236bf2fafdc9f (diff)