xref: /linux/security/apparmor/include/resource.h (revision ca55b2fef3a9373fcfc30f82fd26bc7fccbda732)
1 /*
2  * AppArmor security module
3  *
4  * This file contains AppArmor resource limits function definitions.
5  *
6  * Copyright (C) 1998-2008 Novell/SUSE
7  * Copyright 2009-2010 Canonical Ltd.
8  *
9  * This program is free software; you can redistribute it and/or
10  * modify it under the terms of the GNU General Public License as
11  * published by the Free Software Foundation, version 2 of the
12  * License.
13  */
14 
15 #ifndef __AA_RESOURCE_H
16 #define __AA_RESOURCE_H
17 
18 #include <linux/resource.h>
19 #include <linux/sched.h>
20 
21 #include "apparmorfs.h"
22 
23 struct aa_profile;
24 
25 /* struct aa_rlimit - rlimit settings for the profile
26  * @mask: which hard limits to set
27  * @limits: rlimit values that override task limits
28  *
29  * AppArmor rlimits are used to set confined task rlimits.  Only the
30  * limits specified in @mask will be controlled by apparmor.
31  */
32 struct aa_rlimit {
33 	unsigned int mask;
34 	struct rlimit limits[RLIM_NLIMITS];
35 };
36 
37 extern struct aa_fs_entry aa_fs_entry_rlimit[];
38 
39 int aa_map_resource(int resource);
40 int aa_task_setrlimit(struct aa_profile *profile, struct task_struct *,
41 		      unsigned int resource, struct rlimit *new_rlim);
42 
43 void __aa_transition_rlimits(struct aa_profile *old, struct aa_profile *new);
44 
45 static inline void aa_free_rlimit_rules(struct aa_rlimit *rlims)
46 {
47 	/* NOP */
48 }
49 
50 #endif /* __AA_RESOURCE_H */
51