]> err.no Git - linux-2.6/commit
Audit: use new LSM hooks instead of SELinux exports
authorAhmed S. Darwish <darwish.07@gmail.com>
Sat, 1 Mar 2008 19:54:38 +0000 (21:54 +0200)
committerJames Morris <jmorris@namei.org>
Fri, 18 Apr 2008 23:52:34 +0000 (09:52 +1000)
commit2a862b32f3da5a2120043921ad301322ad526084
treebb97054b2f648504f670e3eaed2626b547c4d081
parent713a04aeaba35bb95d442cdeb52055498519be25
Audit: use new LSM hooks instead of SELinux exports

Stop using the following exported SELinux interfaces:
selinux_get_inode_sid(inode, sid)
selinux_get_ipc_sid(ipcp, sid)
selinux_get_task_sid(tsk, sid)
selinux_sid_to_string(sid, ctx, len)
kfree(ctx)

and use following generic LSM equivalents respectively:
security_inode_getsecid(inode, secid)
security_ipc_getsecid*(ipcp, secid)
security_task_getsecid(tsk, secid)
security_sid_to_secctx(sid, ctx, len)
security_release_secctx(ctx, len)

Call security_release_secctx only if security_secid_to_secctx
succeeded.

Signed-off-by: Casey Schaufler <casey@schaufler-ca.com>
Signed-off-by: Ahmed S. Darwish <darwish.07@gmail.com>
Acked-by: James Morris <jmorris@namei.org>
Reviewed-by: Paul Moore <paul.moore@hp.com>
kernel/audit.c
kernel/auditfilter.c
kernel/auditsc.c