Commit | Line | Data |
---|---|---|
1da177e4 LT |
1 | /* |
2 | * Multi-level security (MLS) policy operations. | |
3 | * | |
4 | * Author : Stephen Smalley, <sds@epoch.ncsc.mil> | |
5 | */ | |
6 | /* | |
7 | * Updated: Trusted Computer Solutions, Inc. <dgoeddel@trustedcs.com> | |
8 | * | |
9 | * Support for enhanced MLS infrastructure. | |
10 | * | |
376bd9cb | 11 | * Copyright (C) 2004-2006 Trusted Computer Solutions, Inc. |
1da177e4 | 12 | */ |
7420ed23 VY |
13 | /* |
14 | * Updated: Hewlett-Packard <paul.moore@hp.com> | |
15 | * | |
02752760 | 16 | * Added support to import/export the MLS label from NetLabel |
7420ed23 VY |
17 | * |
18 | * (c) Copyright Hewlett-Packard Development Company, L.P., 2006 | |
19 | */ | |
1da177e4 LT |
20 | |
21 | #ifndef _SS_MLS_H_ | |
22 | #define _SS_MLS_H_ | |
23 | ||
24 | #include "context.h" | |
25 | #include "policydb.h" | |
26 | ||
08554d6b VY |
27 | /* |
28 | * Copies the MLS range from `src' into `dst'. | |
29 | */ | |
30 | static inline int mls_copy_context(struct context *dst, | |
31 | struct context *src) | |
32 | { | |
33 | int l, rc = 0; | |
34 | ||
35 | /* Copy the MLS range from the source context */ | |
36 | for (l = 0; l < 2; l++) { | |
37 | dst->range.level[l].sens = src->range.level[l].sens; | |
38 | rc = ebitmap_cpy(&dst->range.level[l].cat, | |
39 | &src->range.level[l].cat); | |
40 | if (rc) | |
41 | break; | |
42 | } | |
43 | ||
44 | return rc; | |
45 | } | |
46 | ||
1da177e4 LT |
47 | int mls_compute_context_len(struct context *context); |
48 | void mls_sid_to_context(struct context *context, char **scontext); | |
49 | int mls_context_isvalid(struct policydb *p, struct context *c); | |
50 | ||
51 | int mls_context_to_sid(char oldc, | |
52 | char **scontext, | |
f5c1d5b2 JM |
53 | struct context *context, |
54 | struct sidtab *s, | |
55 | u32 def_sid); | |
1da177e4 | 56 | |
376bd9cb DG |
57 | int mls_from_string(char *str, struct context *context, gfp_t gfp_mask); |
58 | ||
1da177e4 LT |
59 | int mls_convert_context(struct policydb *oldp, |
60 | struct policydb *newp, | |
61 | struct context *context); | |
62 | ||
63 | int mls_compute_sid(struct context *scontext, | |
64 | struct context *tcontext, | |
65 | u16 tclass, | |
66 | u32 specified, | |
67 | struct context *newcontext); | |
68 | ||
69 | int mls_setup_user_range(struct context *fromcon, struct user_datum *user, | |
70 | struct context *usercon); | |
71 | ||
02752760 PM |
72 | #ifdef CONFIG_NETLABEL |
73 | void mls_export_netlbl_lvl(struct context *context, | |
74 | struct netlbl_lsm_secattr *secattr); | |
75 | void mls_import_netlbl_lvl(struct context *context, | |
76 | struct netlbl_lsm_secattr *secattr); | |
77 | int mls_export_netlbl_cat(struct context *context, | |
78 | struct netlbl_lsm_secattr *secattr); | |
79 | int mls_import_netlbl_cat(struct context *context, | |
80 | struct netlbl_lsm_secattr *secattr); | |
81 | #else | |
82 | static inline void mls_export_netlbl_lvl(struct context *context, | |
83 | struct netlbl_lsm_secattr *secattr) | |
84 | { | |
85 | return; | |
86 | } | |
87 | static inline void mls_import_netlbl_lvl(struct context *context, | |
88 | struct netlbl_lsm_secattr *secattr) | |
89 | { | |
90 | return; | |
91 | } | |
92 | static inline int mls_export_netlbl_cat(struct context *context, | |
93 | struct netlbl_lsm_secattr *secattr) | |
94 | { | |
95 | return -ENOMEM; | |
96 | } | |
97 | static inline int mls_import_netlbl_cat(struct context *context, | |
98 | struct netlbl_lsm_secattr *secattr) | |
99 | { | |
100 | return -ENOMEM; | |
101 | } | |
102 | #endif | |
7420ed23 | 103 | |
1da177e4 LT |
104 | #endif /* _SS_MLS_H */ |
105 |