Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / kernel / shift / mainline / 2057bdfb7184e9833182bf9ffcb234988f545f41 / . / security / apparmor / include / resource.h
blob: 961d85d328ea942e2e545c1fd929e5a8b17e31e5 [file] [log] [blame]
Thomas Gleixnerb886d83c2019-06-01 10:08:55 +0200[diff] [blame]1/* SPDX-License-Identifier: GPL-2.0-only */
John Johansen0ed3b282010-07-29 14:48:05 -0700[diff] [blame]2/*
3 * AppArmor security module
4 *
5 * This file contains AppArmor resource limits function definitions.
6 *
7 * Copyright (C) 1998-2008 Novell/SUSE
8 * Copyright 2009-2010 Canonical Ltd.
John Johansen0ed3b282010-07-29 14:48:05 -0700[diff] [blame]9 */
10
11#ifndef __AA_RESOURCE_H
12#define __AA_RESOURCE_H
13
14#include <linux/resource.h>
15#include <linux/sched.h>
16
Kees Cookd384b0a2012-01-26 16:29:23 -0800[diff] [blame]17#include "apparmorfs.h"
18
John Johansen0ed3b282010-07-29 14:48:05 -0700[diff] [blame]19struct aa_profile;
20
21/* struct aa_rlimit - rlimit settings for the profile
22 * @mask: which hard limits to set
23 * @limits: rlimit values that override task limits
24 *
25 * AppArmor rlimits are used to set confined task rlimits. Only the
26 * limits specified in @mask will be controlled by apparmor.
27 */
28struct aa_rlimit {
29 unsigned int mask;
30 struct rlimit limits[RLIM_NLIMITS];
31};
32
John Johansenc97204b2017-05-25 06:23:42 -0700[diff] [blame]33extern struct aa_sfs_entry aa_sfs_entry_rlimit[];
Kees Cookd384b0a2012-01-26 16:29:23 -0800[diff] [blame]34
John Johansen0ed3b282010-07-29 14:48:05 -0700[diff] [blame]35int aa_map_resource(int resource);
John Johansen86b92cb2017-06-09 14:15:20 -0700[diff] [blame]36int aa_task_setrlimit(struct aa_label *label, struct task_struct *task,
John Johansen3a2dc832010-09-06 10:10:20 -0700[diff] [blame]37 unsigned int resource, struct rlimit *new_rlim);
John Johansen0ed3b282010-07-29 14:48:05 -0700[diff] [blame]38
John Johansen86b92cb2017-06-09 14:15:20 -0700[diff] [blame]39void __aa_transition_rlimits(struct aa_label *old, struct aa_label *new);
John Johansen0ed3b282010-07-29 14:48:05 -0700[diff] [blame]40
41static inline void aa_free_rlimit_rules(struct aa_rlimit *rlims)
42{
43 /* NOP */
44}
45
46#endif /* __AA_RESOURCE_H */