diff options
Diffstat (limited to 'security/selinux/include')
| -rw-r--r-- | security/selinux/include/security.h | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/security/selinux/include/security.h b/security/selinux/include/security.h index 315b4ec1e12a..dd70aa084637 100644 --- a/security/selinux/include/security.h +++ b/security/selinux/include/security.h | |||
| @@ -26,13 +26,14 @@ | |||
| 26 | #define POLICYDB_VERSION_AVTAB 20 | 26 | #define POLICYDB_VERSION_AVTAB 20 |
| 27 | #define POLICYDB_VERSION_RANGETRANS 21 | 27 | #define POLICYDB_VERSION_RANGETRANS 21 |
| 28 | #define POLICYDB_VERSION_POLCAP 22 | 28 | #define POLICYDB_VERSION_POLCAP 22 |
| 29 | #define POLICYDB_VERSION_PERMISSIVE 23 | ||
| 29 | 30 | ||
| 30 | /* Range of policy versions we understand*/ | 31 | /* Range of policy versions we understand*/ |
| 31 | #define POLICYDB_VERSION_MIN POLICYDB_VERSION_BASE | 32 | #define POLICYDB_VERSION_MIN POLICYDB_VERSION_BASE |
| 32 | #ifdef CONFIG_SECURITY_SELINUX_POLICYDB_VERSION_MAX | 33 | #ifdef CONFIG_SECURITY_SELINUX_POLICYDB_VERSION_MAX |
| 33 | #define POLICYDB_VERSION_MAX CONFIG_SECURITY_SELINUX_POLICYDB_VERSION_MAX_VALUE | 34 | #define POLICYDB_VERSION_MAX CONFIG_SECURITY_SELINUX_POLICYDB_VERSION_MAX_VALUE |
| 34 | #else | 35 | #else |
| 35 | #define POLICYDB_VERSION_MAX POLICYDB_VERSION_POLCAP | 36 | #define POLICYDB_VERSION_MAX POLICYDB_VERSION_PERMISSIVE |
| 36 | #endif | 37 | #endif |
| 37 | 38 | ||
| 38 | #define CONTEXT_MNT 0x01 | 39 | #define CONTEXT_MNT 0x01 |
| @@ -69,6 +70,8 @@ struct av_decision { | |||
| 69 | u32 seqno; | 70 | u32 seqno; |
| 70 | }; | 71 | }; |
| 71 | 72 | ||
| 73 | int security_permissive_sid(u32 sid); | ||
| 74 | |||
| 72 | int security_compute_av(u32 ssid, u32 tsid, | 75 | int security_compute_av(u32 ssid, u32 tsid, |
| 73 | u16 tclass, u32 requested, | 76 | u16 tclass, u32 requested, |
| 74 | struct av_decision *avd); | 77 | struct av_decision *avd); |