1 files changed, 0 insertions, 134 deletions
diff --git a/include/linux/selinux.h b/include/linux/selinux.h
index 8c2cc4c02526..20f965d4b041 100644
--- a/include/linux/selinux.h
+++ b/include/linux/selinux.h
@@ -16,99 +16,11 @@
 struct selinux_audit_rule;
 struct audit_context;
-struct inode;
 struct kern_ipc_perm;
 #ifdef CONFIG_SECURITY_SELINUX
 /**
- *      selinux_audit_rule_init - alloc/init an selinux audit rule structure.
- *      @field: the field this rule refers to
- *      @op: the operater the rule uses
- *      @rulestr: the text "target" of the rule
- *      @rule: pointer to the new rule structure returned via this
- *
- *      Returns 0 if successful, -errno if not.  On success, the rule structure
- *      will be allocated internally.  The caller must free this structure with
- *      selinux_audit_rule_free() after use.
- */
-int selinux_audit_rule_init(u32 field, u32 op, char *rulestr,
-                            struct selinux_audit_rule **rule);
-/**
- *      selinux_audit_rule_free - free an selinux audit rule structure.
- *      @rule: pointer to the audit rule to be freed
- *
- *      This will free all memory associated with the given rule.
- *      If @rule is NULL, no operation is performed.
- */
-void selinux_audit_rule_free(struct selinux_audit_rule *rule);
-/**
- *      selinux_audit_rule_match - determine if a context ID matches a rule.
- *      @sid: the context ID to check
- *      @field: the field this rule refers to
- *      @op: the operater the rule uses
- *      @rule: pointer to the audit rule to check against
- *      @actx: the audit context (can be NULL) associated with the check
- *
- *      Returns 1 if the context id matches the rule, 0 if it does not, and
- *      -errno on failure.
- */
-int selinux_audit_rule_match(u32 sid, u32 field, u32 op,
-                             struct selinux_audit_rule *rule,
-                             struct audit_context *actx);
-/**
- *      selinux_audit_set_callback - set the callback for policy reloads.
- *      @callback: the function to call when the policy is reloaded
- *
- *      This sets the function callback function that will update the rules
- *      upon policy reloads.  This callback should rebuild all existing rules
- *      using selinux_audit_rule_init().
- */
-void selinux_audit_set_callback(int (*callback)(void));
-/**
- *     selinux_sid_to_string - map a security context ID to a string
- *     @sid: security context ID to be converted.
- *     @ctx: address of context string to be returned
- *     @ctxlen: length of returned context string.
- *
- *     Returns 0 if successful, -errno if not.  On success, the context
- *     string will be allocated internally, and the caller must call
- *     kfree() on it after use.
- */
-int selinux_sid_to_string(u32 sid, char **ctx, u32 *ctxlen);
-/**
- *     selinux_get_inode_sid - get the inode's security context ID
- *     @inode: inode structure to get the sid from.
- *     @sid: pointer to security context ID to be filled in.
- *
- *     Returns nothing
- */
-void selinux_get_inode_sid(const struct inode *inode, u32 *sid);
-/**
- *     selinux_get_ipc_sid - get the ipc security context ID
- *     @ipcp: ipc structure to get the sid from.
- *     @sid: pointer to security context ID to be filled in.
- *
- *     Returns nothing
- */
-void selinux_get_ipc_sid(const struct kern_ipc_perm *ipcp, u32 *sid);
-/**
- *     selinux_get_task_sid - return the SID of task
- *     @tsk: the task whose SID will be returned
- *     @sid: pointer to security context ID to be filled in.
- *
- *     Returns nothing
- */
-void selinux_get_task_sid(struct task_struct *tsk, u32 *sid);
-/**
 *     selinux_string_to_sid - map a security context string to a security ID
 *     @str: the security context string to be mapped
 *     @sid: ID value returned via this.
@@ -151,52 +63,6 @@ void selinux_secmark_refcount_inc(void);
 void selinux_secmark_refcount_dec(void);
 #else
-static inline int selinux_audit_rule_init(u32 field, u32 op,
-                                          char *rulestr,
-                                          struct selinux_audit_rule **rule)
-{
-        return -EOPNOTSUPP;
-}
-static inline void selinux_audit_rule_free(struct selinux_audit_rule *rule)
-{
-        return;
-}
-static inline int selinux_audit_rule_match(u32 sid, u32 field, u32 op,
-                                           struct selinux_audit_rule *rule,
-                                           struct audit_context *actx)
-{
-        return 0;
-}
-static inline void selinux_audit_set_callback(int (*callback)(void))
-{
-        return;
-}
-static inline int selinux_sid_to_string(u32 sid, char **ctx, u32 *ctxlen)
-{
-       *ctx = NULL;
-       *ctxlen = 0;
-       return 0;
-}
-static inline void selinux_get_inode_sid(const struct inode *inode, u32 *sid)
-{
-        *sid = 0;
-}
-static inline void selinux_get_ipc_sid(const struct kern_ipc_perm *ipcp, u32 *sid)
-{
-        *sid = 0;
-}
-static inline void selinux_get_task_sid(struct task_struct *tsk, u32 *sid)
-{
-        *sid = 0;
-}
 static inline int selinux_string_to_sid(const char *str, u32 *sid)
 {
       *sid = 0;

diff --git a/include/linux/selinux.h b/include/linux/selinux.h index 8c2cc4c02526..20f965d4b041 100644 --- a/include/linux/selinux.h +++ b/include/linux/selinux.h
@@ -16,99 +16,11 @@
16		16
17	struct selinux_audit_rule;	17	struct selinux_audit_rule;
18	struct audit_context;	18	struct audit_context;
19	struct inode;
20	struct kern_ipc_perm;	19	struct kern_ipc_perm;
21		20
22	#ifdef CONFIG_SECURITY_SELINUX	21	#ifdef CONFIG_SECURITY_SELINUX
23		22
24	/**	23	/**
25	* selinux_audit_rule_init - alloc/init an selinux audit rule structure.
26	* @field: the field this rule refers to
27	* @op: the operater the rule uses
28	* @rulestr: the text "target" of the rule
29	* @rule: pointer to the new rule structure returned via this
30	*
31	* Returns 0 if successful, -errno if not. On success, the rule structure
32	* will be allocated internally. The caller must free this structure with
33	* selinux_audit_rule_free() after use.
34	*/
35	int selinux_audit_rule_init(u32 field, u32 op, char *rulestr,
36	struct selinux_audit_rule **rule);
37
38	/**
39	* selinux_audit_rule_free - free an selinux audit rule structure.
40	* @rule: pointer to the audit rule to be freed
41	*
42	* This will free all memory associated with the given rule.
43	* If @rule is NULL, no operation is performed.
44	*/
45	void selinux_audit_rule_free(struct selinux_audit_rule *rule);
46
47	/**
48	* selinux_audit_rule_match - determine if a context ID matches a rule.
49	* @sid: the context ID to check
50	* @field: the field this rule refers to
51	* @op: the operater the rule uses
52	* @rule: pointer to the audit rule to check against
53	* @actx: the audit context (can be NULL) associated with the check
54	*
55	* Returns 1 if the context id matches the rule, 0 if it does not, and
56	* -errno on failure.
57	*/
58	int selinux_audit_rule_match(u32 sid, u32 field, u32 op,
59	struct selinux_audit_rule *rule,
60	struct audit_context *actx);
61
62	/**
63	* selinux_audit_set_callback - set the callback for policy reloads.
64	* @callback: the function to call when the policy is reloaded
65	*
66	* This sets the function callback function that will update the rules
67	* upon policy reloads. This callback should rebuild all existing rules
68	* using selinux_audit_rule_init().
69	*/
70	void selinux_audit_set_callback(int (*callback)(void));
71
72	/**
73	* selinux_sid_to_string - map a security context ID to a string
74	* @sid: security context ID to be converted.
75	* @ctx: address of context string to be returned
76	* @ctxlen: length of returned context string.
77	*
78	* Returns 0 if successful, -errno if not. On success, the context
79	* string will be allocated internally, and the caller must call
80	* kfree() on it after use.
81	*/
82	int selinux_sid_to_string(u32 sid, char *ctx, u32 ctxlen);
83
84	/**
85	* selinux_get_inode_sid - get the inode's security context ID
86	* @inode: inode structure to get the sid from.
87	* @sid: pointer to security context ID to be filled in.
88	*
89	* Returns nothing
90	*/
91	void selinux_get_inode_sid(const struct inode inode, u32 sid);
92
93	/**
94	* selinux_get_ipc_sid - get the ipc security context ID
95	* @ipcp: ipc structure to get the sid from.
96	* @sid: pointer to security context ID to be filled in.
97	*
98	* Returns nothing
99	*/
100	void selinux_get_ipc_sid(const struct kern_ipc_perm ipcp, u32 sid);
101
102	/**
103	* selinux_get_task_sid - return the SID of task
104	* @tsk: the task whose SID will be returned
105	* @sid: pointer to security context ID to be filled in.
106	*
107	* Returns nothing
108	*/
109	void selinux_get_task_sid(struct task_struct tsk, u32 sid);
110
111	/**
112	* selinux_string_to_sid - map a security context string to a security ID	24	* selinux_string_to_sid - map a security context string to a security ID
113	* @str: the security context string to be mapped	25	* @str: the security context string to be mapped
114	* @sid: ID value returned via this.	26	* @sid: ID value returned via this.
@@ -151,52 +63,6 @@ void selinux_secmark_refcount_inc(void);
151	void selinux_secmark_refcount_dec(void);	63	void selinux_secmark_refcount_dec(void);
152	#else	64	#else
153		65
154	static inline int selinux_audit_rule_init(u32 field, u32 op,
155	char *rulestr,
156	struct selinux_audit_rule **rule)
157	{
158	return -EOPNOTSUPP;
159	}
160
161	static inline void selinux_audit_rule_free(struct selinux_audit_rule *rule)
162	{
163	return;
164	}
165
166	static inline int selinux_audit_rule_match(u32 sid, u32 field, u32 op,
167	struct selinux_audit_rule *rule,
168	struct audit_context *actx)
169	{
170	return 0;
171	}
172
173	static inline void selinux_audit_set_callback(int (*callback)(void))
174	{
175	return;
176	}
177
178	static inline int selinux_sid_to_string(u32 sid, char *ctx, u32 ctxlen)
179	{
180	*ctx = NULL;
181	*ctxlen = 0;
182	return 0;
183	}
184
185	static inline void selinux_get_inode_sid(const struct inode inode, u32 sid)
186	{
187	*sid = 0;
188	}
189
190	static inline void selinux_get_ipc_sid(const struct kern_ipc_perm ipcp, u32 sid)
191	{
192	*sid = 0;
193	}
194
195	static inline void selinux_get_task_sid(struct task_struct tsk, u32 sid)
196	{
197	*sid = 0;
198	}
199
200	static inline int selinux_string_to_sid(const char str, u32 sid)	66	static inline int selinux_string_to_sid(const char str, u32 sid)
201	{	67	{
202	*sid = 0;	68	*sid = 0;