]> err.no Git - linux-2.6/commit
projects / linux-2.6 / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 75e2291) | patch
SELinux: Convert the netif code to use ifindex values
authorPaul Moore <paul.moore@hp.com>
Tue, 29 Jan 2008 13:38:08 +0000 (08:38 -0500)
committerJames Morris <jmorris@namei.org>
Tue, 29 Jan 2008 21:17:21 +0000 (08:17 +1100)
commite8bfdb9d0dfc1231a6a71e849dfbd4447acdfff6
tree0d786c0ad972e43d1128296b8e7ae47275ab3ebdtree | snapshot
parent75e22910cf0c26802b09dac2e34c13e648d3ed02commit | diff
SELinux: Convert the netif code to use ifindex values

The current SELinux netif code requires the caller have a valid net_device
struct pointer to lookup network interface information.  However, we don't
always have a valid net_device pointer so convert the netif code to use
the ifindex values we always have as part of the sk_buff.  This patch also
removes the default message SID from the network interface record, it is
not being used and therefore is "dead code".

Signed-off-by: Paul Moore <paul.moore@hp.com>
Signed-off-by: James Morris <jmorris@namei.org>
security/selinux/hooks.c diff | blob | history
security/selinux/include/netif.h diff | blob | history
security/selinux/include/objsec.h diff | blob | history
security/selinux/include/security.h diff | blob | history
security/selinux/netif.c diff | blob | history
security/selinux/ss/services.c diff | blob | history
Linux 2.6 source tree