selinux: use separate table for initial SID lookup
This moves handling of initial SIDs into a separate table. Note that the SIDs stored in the main table are now shifted by SECINITSID_NUM and converted to/from the actual SIDs transparently by helper functions. This change doesn't make much sense on its own, but it simplifies further sidtab overhaul in a succeeding patch. Signed-off-by:Ondrej Mosnacek <omosnace@redhat.com> Reviewed-by:
Stephen Smalley <sds@tycho.nsa.gov> [PM: fixed some checkpatch warnings on line length, whitespace] Signed-off-by:
Paul Moore <paul@paul-moore.com>
Showing
- security/selinux/ss/policydb.c 9 additions, 1 deletionsecurity/selinux/ss/policydb.c
- security/selinux/ss/services.c 50 additions, 38 deletionssecurity/selinux/ss/services.c
- security/selinux/ss/services.h 1 addition, 1 deletionsecurity/selinux/ss/services.h
- security/selinux/ss/sidtab.c 103 additions, 65 deletionssecurity/selinux/ss/sidtab.c
- security/selinux/ss/sidtab.h 10 additions, 5 deletionssecurity/selinux/ss/sidtab.h
Loading
Please register or sign in to comment