git.baikalelectronics.ru Git - kernel.git/commit

author	Paul Moore <paul.moore@hp.com>
	Wed, 29 Nov 2006 18:18:18 +0000 (13:18 -0500)
committer	David S. Miller <davem@sunset.davemloft.net>
	Sun, 3 Dec 2006 05:31:36 +0000 (21:31 -0800)
commit	4fae86865023b9f9664c28c0e87b8c505658cb22
tree	796cd65fd4cd732b295e61dac194efbf36b78842	tree \| snapshot
parent	306ed9dd46d0b7f62f6adefb5180e7dbbb046860	commit \| diff

NetLabel: convert to an extensibile/sparse category bitmap

The original NetLabel category bitmap was a straight char bitmap which worked
fine for the initial release as it only supported 240 bits due to limitations
in the CIPSO restricted bitmap tag (tag type 0x01). This patch converts that
straight char bitmap into an extensibile/sparse bitmap in order to lay the
foundation for other CIPSO tag types and protocols.

This patch also has a nice side effect in that all of the security attributes
passed by NetLabel into the LSM are now in a format which is in the host's
native byte/bit ordering which makes the LSM specific code much simpler; look
at the changes in security/selinux/ss/ebitmap.c as an example.

Signed-off-by: Paul Moore <paul.moore@hp.com>
Signed-off-by: James Morris <jmorris@namei.org>

include/net/netlabel.h		diff \| blob \| history
net/ipv4/cipso_ipv4.c		diff \| blob \| history
net/netlabel/netlabel_kapi.c		diff \| blob \| history
security/selinux/ss/ebitmap.c		diff \| blob \| history
security/selinux/ss/ebitmap.h		diff \| blob \| history
security/selinux/ss/mls.c		diff \| blob \| history
security/selinux/ss/mls.h		diff \| blob \| history
security/selinux/ss/services.c		diff \| blob \| history