Linux kernel mirror (for testing)
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
tjh.dev
kernel
os
linux
1/*
2 * AppArmor security module
3 *
4 * This file contains AppArmor security identifier (secid) manipulation fns
5 *
6 * Copyright 2009-2010 Canonical Ltd.
7 *
8 * This program is free software; you can redistribute it and/or
9 * modify it under the terms of the GNU General Public License as
10 * published by the Free Software Foundation, version 2 of the
11 * License.
12 *
13 *
14 * AppArmor allocates a unique secid for every profile loaded. If a profile
15 * is replaced it receives the secid of the profile it is replacing.
16 *
17 * The secid value of 0 is invalid.
18 */
19
20#include <linux/spinlock.h>
21#include <linux/errno.h>
22#include <linux/err.h>
23
24#include "include/secid.h"
25
26/* global counter from which secids are allocated */
27static u32 global_secid;
28static DEFINE_SPINLOCK(secid_lock);
29
30/* TODO FIXME: add secid to profile mapping, and secid recycling */
31
32/**
33 * aa_alloc_secid - allocate a new secid for a profile
34 */
35u32 aa_alloc_secid(void)
36{
37 u32 secid;
38
39 /*
40 * TODO FIXME: secid recycling - part of profile mapping table
41 */
42 spin_lock(&secid_lock);
43 secid = (++global_secid);
44 spin_unlock(&secid_lock);
45 return secid;
46}
47
48/**
49 * aa_free_secid - free a secid
50 * @secid: secid to free
51 */
52void aa_free_secid(u32 secid)
53{
54 ; /* NOP ATM */
55}