selinux: export initial SID contexts via selinuxfs

Make the initial SID contexts accessible to userspace via selinuxfs. An initial use of this support will be to make the unlabeled context available to libselinux for use for invalidated userspace SIDs. Signed-off-by: James Carter <jwcart2@tycho.nsa.gov> Acked-by: Stephen Smalley <sds@tycho.nsa.gov> Signed-off-by: James Morris <jmorris@namei.org>
author: James Carter <jwcart2@tycho.nsa.gov> 2007-04-04 10:11:29 -0400
committer: James Morris <jmorris@namei.org> 2007-04-26 01:36:00 -0400
commit: f0ee2e467ffa68c3122128b704c1540ee294b748 (patch)
tree: 1fb9bf27386233b88406b50ff69b83a2c9cdbe38 /security/selinux/ss
parent: a764ae4b0781fac75f9657bc737c37ae59888389 (diff)
1 files changed, 7 insertions, 0 deletions
diff --git a/security/selinux/ss/services.c b/security/selinux/ss/services.c
index d3698568a213..21b8318979e3 100644
--- a/security/selinux/ss/services.c
+++ b/security/selinux/ss/services.c
@@ -593,6 +593,13 @@ static int context_struct_to_string(struct context *context, char **scontext, u3
 #include "initial_sid_to_string.h"
+const char *security_get_initial_sid_context(u32 sid)
+{
+        if (unlikely(sid > SECINITSID_NUM))
+                return NULL;
+        return initial_sid_to_string[sid];
+}
 /**
 * security_sid_to_context - Obtain a context for a given SID.
 * @sid: security identifier, SID
author	James Carter <jwcart2@tycho.nsa.gov>	2007-04-04 10:11:29 -0400
committer	James Morris <jmorris@namei.org>	2007-04-26 01:36:00 -0400
commit	f0ee2e467ffa68c3122128b704c1540ee294b748 (patch)
tree	1fb9bf27386233b88406b50ff69b83a2c9cdbe38 /security/selinux/ss
parent	a764ae4b0781fac75f9657bc737c37ae59888389 (diff)

diff --git a/security/selinux/ss/services.c b/security/selinux/ss/services.c index d3698568a213..21b8318979e3 100644 --- a/security/selinux/ss/services.c +++ b/security/selinux/ss/services.c
@@ -593,6 +593,13 @@ static int context_struct_to_string(struct context context, char *scontext, u3
593		593
594	#include "initial_sid_to_string.h"	594	#include "initial_sid_to_string.h"
595		595
		596	const char *security_get_initial_sid_context(u32 sid)
		597	{
		598	if (unlikely(sid > SECINITSID_NUM))
		599	return NULL;
		600	return initial_sid_to_string[sid];
		601	}
		602
596	/**	603	/**
597	* security_sid_to_context - Obtain a context for a given SID.	604	* security_sid_to_context - Obtain a context for a given SID.
598	* @sid: security identifier, SID	605	* @sid: security identifier, SID