diff options
| author | mo khan <mo@mokhan.ca> | 2025-07-15 16:37:08 -0600 |
|---|---|---|
| committer | mo khan <mo@mokhan.ca> | 2025-07-17 16:30:22 -0600 |
| commit | 45df4d0d9b577fecee798d672695fe24ff57fb1b (patch) | |
| tree | 1b99bf645035b58e0d6db08c7a83521f41f7a75b /vendor/rustix/src/process/rlimit.rs | |
| parent | f94f79608393d4ab127db63cc41668445ef6b243 (diff) | |
feat: migrate from Cedar to SpiceDB authorization system
This is a major architectural change that replaces the Cedar policy-based
authorization system with SpiceDB's relation-based authorization.
Key changes:
- Migrate from Rust to Go implementation
- Replace Cedar policies with SpiceDB schema and relationships
- Switch from envoy `ext_authz` with Cedar to SpiceDB permission checks
- Update build system and dependencies for Go ecosystem
- Maintain Envoy integration for external authorization
This change enables more flexible permission modeling through SpiceDB's
Google Zanzibar inspired relation-based system, supporting complex
hierarchical permissions that were difficult to express in Cedar.
Breaking change: Existing Cedar policies and Rust-based configuration
will no longer work and need to be migrated to SpiceDB schema.
Diffstat (limited to 'vendor/rustix/src/process/rlimit.rs')
| -rw-r--r-- | vendor/rustix/src/process/rlimit.rs | 53 |
1 files changed, 0 insertions, 53 deletions
diff --git a/vendor/rustix/src/process/rlimit.rs b/vendor/rustix/src/process/rlimit.rs deleted file mode 100644 index 124ca51a..00000000 --- a/vendor/rustix/src/process/rlimit.rs +++ /dev/null @@ -1,53 +0,0 @@ -#[cfg(linux_kernel)] -use crate::process::Pid; -use crate::{backend, io}; - -pub use backend::process::types::Resource; - -/// `struct rlimit`—Current and maximum values used in [`getrlimit`], -/// [`setrlimit`], and [`prlimit`]. -#[derive(Debug, Clone, Copy, PartialEq, Eq)] -pub struct Rlimit { - /// Current effective, “soft”, limit. - pub current: Option<u64>, - /// Maximum, “hard”, value that `current` may be dynamically increased to. - pub maximum: Option<u64>, -} - -/// `getrlimit(resource)`—Get a process resource limit value. -/// -/// # References -/// - [POSIX] -/// - [Linux] -/// -/// [POSIX]: https://pubs.opengroup.org/onlinepubs/9799919799/functions/getrlimit.html -/// [Linux]: https://man7.org/linux/man-pages/man2/getrlimit.2.html -#[inline] -pub fn getrlimit(resource: Resource) -> Rlimit { - backend::process::syscalls::getrlimit(resource) -} - -/// `setrlimit(resource, new)`—Set a process resource limit value. -/// -/// # References -/// - [POSIX] -/// - [Linux] -/// -/// [POSIX]: https://pubs.opengroup.org/onlinepubs/9799919799/functions/setrlimit.html -/// [Linux]: https://man7.org/linux/man-pages/man2/setrlimit.2.html -#[inline] -pub fn setrlimit(resource: Resource, new: Rlimit) -> io::Result<()> { - backend::process::syscalls::setrlimit(resource, new) -} - -/// `prlimit(pid, resource, new)`—Get and set a process resource limit value. -/// -/// # References -/// - [Linux] -/// -/// [Linux]: https://man7.org/linux/man-pages/man2/prlimit.2.html -#[cfg(linux_kernel)] -#[inline] -pub fn prlimit(pid: Option<Pid>, resource: Resource, new: Rlimit) -> io::Result<Rlimit> { - backend::process::syscalls::prlimit(pid, resource, new) -} |