SELinux: Correct the NetLabel locking for the sk_security_struct

The RCU/spinlock locking approach for the nlbl_state in the sk_security_struct was almost certainly overkill. This patch removes both the RCU and spinlock locking, relying on the existing socket locks to handle the case of multiple writers. This change also makes several code reductions possible. Less locking, less code - it's a Good Thing. Signed-off-by: Paul Moore <paul.moore@hp.com> Signed-off-by: James Morris <jmorris@namei.org>
author: Paul Moore <paul.moore@hp.com> 2008-02-25 11:40:33 -0500
committer: James Morris <jmorris@namei.org> 2008-04-18 06:26:03 -0400
commit: f74af6e816c940c678c235d49486fe40d7e49ce9 (patch)
tree: 06f2fa54bd7ceabac2ad29a6ab0aca1deb87c032 /security/selinux/include
parent: 4b119e21d0c66c22e8ca03df05d9de623d0eb50f (diff)
2 files changed, 0 insertions, 17 deletions
diff --git a/security/selinux/include/netlabel.h b/security/selinux/include/netlabel.h
index 00a2809c8506..9a9e7cd9a379 100644
--- a/security/selinux/include/netlabel.h
+++ b/security/selinux/include/netlabel.h
@@ -41,10 +41,6 @@ void selinux_netlbl_cache_invalidate(void);
 void selinux_netlbl_sk_security_reset(struct sk_security_struct *ssec,
                                      int family);
-void selinux_netlbl_sk_security_init(struct sk_security_struct *ssec,
-                                     int family);
-void selinux_netlbl_sk_security_clone(struct sk_security_struct *ssec,
-                                      struct sk_security_struct *newssec);
 int selinux_netlbl_skbuff_getsid(struct sk_buff *skb,
                                 u16 family,
@@ -73,18 +69,6 @@ static inline void selinux_netlbl_sk_security_reset(
 {
        return;
 }
-static inline void selinux_netlbl_sk_security_init(
-                                               struct sk_security_struct *ssec,
-                                               int family)
-{
-        return;
-}
-static inline void selinux_netlbl_sk_security_clone(
-                                            struct sk_security_struct *ssec,
-                                            struct sk_security_struct *newssec)
-{
-        return;
-}
 static inline int selinux_netlbl_skbuff_getsid(struct sk_buff *skb,
                                               u16 family,
diff --git a/security/selinux/include/objsec.h b/security/selinux/include/objsec.h
index c6c2bb4ebacc..0b74077eed4f 100644
--- a/security/selinux/include/objsec.h
+++ b/security/selinux/include/objsec.h
@@ -120,7 +120,6 @@ struct sk_security_struct {
                NLBL_REQUIRE,
                NLBL_LABELED,
        } nlbl_state;
-        spinlock_t nlbl_lock;           /* protects nlbl_state */
 #endif
 };
author	Paul Moore <paul.moore@hp.com>	2008-02-25 11:40:33 -0500
committer	James Morris <jmorris@namei.org>	2008-04-18 06:26:03 -0400
commit	f74af6e816c940c678c235d49486fe40d7e49ce9 (patch)
tree	06f2fa54bd7ceabac2ad29a6ab0aca1deb87c032 /security/selinux/include
parent	4b119e21d0c66c22e8ca03df05d9de623d0eb50f (diff)