selinux: wrap AVC state

Browse Source

Wrap the AVC state within the selinux_state structure and
pass it explicitly to all AVC functions.  The AVC private state
is encapsulated in a selinux_avc structure that is referenced
from the selinux_state.

This change should have no effect on SELinux behavior or
APIs (userspace or LSM).

Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Reviewed-by: James Morris <james.morris@microsoft.com>
Signed-off-by: Paul Moore <paul@paul-moore.com>

...

This commit is contained in:

Stephen Smalley

2018-03-05 11:47:56 -05:00

committed by Paul Moore

parent 0619f0f5e3

commit 6b6bc6205d

9 changed files with 512 additions and 297 deletions

Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL

Download Patch File Download Diff File Expand all files Collapse all files

398

security/selinux/hooks.c

File diff suppressed because it is too large Load Diff