SAFE public projects git trees. - safe/jmp/linux-2.6/commit

git://ftp.safe.ca / safe / jmp / linux-2.6 / commit

author	Stephen Smalley <sds@tycho.nsa.gov>
	Thu, 5 Jun 2008 13:21:28 +0000 (09:21 -0400)
committer	James Morris <jmorris@namei.org>
	Mon, 14 Jul 2008 05:01:53 +0000 (15:01 +1000)
commit	242631c49d4cf39642741d6627750151b058233b
tree	26756c2b256cf5b14ca279a634d5bcc5e67b2b41	tree \| snapshot
parent	abc69bb633931bf54c6db798bcdc6fd1e0284742	commit \| diff

selinux: simplify ioctl checking

Simplify and improve the robustness of the SELinux ioctl checking by
using the "access mode" bits of the ioctl command to determine the
permission check rather than dealing with individual command values.
This removes any knowledge of specific ioctl commands from SELinux
and follows the same guidance we gave to Smack earlier.

Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: James Morris <jmorris@namei.org>

security/selinux/hooks.c

diff | blob | history

Full containers within linux kernel

RSS Atom