apparmor: remove sid from profiles

The sid is not going to be a direct property of a profile anymore, instead it will be directly related to the label, and the profile will pickup a label back reference. For null-profiles replace the use of sid with a per namespace unique id. Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-by: Kees Cook <kees@ubuntu.com>
author: John Johansen <john.johansen@canonical.com> 2013-02-19 04:10:34 +0400
committer: John Johansen <john.johansen@canonical.com> 2013-04-28 11:37:13 +0400
commit: a4987857d2c958b93b2faafe0811eea1a63ff59a (patch)
tree: aa140446d01ddecc209415720ef77dc9c7777ca2 /security/apparmor/include/sid.h
parent: 180a6f5965a49535a7704c07691a6d1209904971 (diff)
download: linux-a4987857d2c958b93b2faafe0811eea1a63ff59a.tar.xz
1 files changed, 3 insertions, 1 deletions
diff --git a/security/apparmor/include/sid.h b/security/apparmor/include/sid.h
index 020db35c3010..513ca0e48965 100644
--- a/security/apparmor/include/sid.h
+++ b/security/apparmor/include/sid.h
@@ -16,7 +16,9 @@
 
 #include <linux/types.h>
 
-struct aa_profile;
+/* sid value that will not be allocated */
+#define AA_SID_INVALID 0
+#define AA_SID_ALLOC AA_SID_INVALID
 
 u32 aa_alloc_sid(void);
 void aa_free_sid(u32 sid);
author	John Johansen <john.johansen@canonical.com>	2013-02-19 04:10:34 +0400
committer	John Johansen <john.johansen@canonical.com>	2013-04-28 11:37:13 +0400
commit	a4987857d2c958b93b2faafe0811eea1a63ff59a (patch)
tree	aa140446d01ddecc209415720ef77dc9c7777ca2 /security/apparmor/include/sid.h
parent	180a6f5965a49535a7704c07691a6d1209904971 (diff)
download	linux-a4987857d2c958b93b2faafe0811eea1a63ff59a.tar.xz