git://ftp.safe.ca / safe / jmp / linux-2.6 / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1f29fae) | patch
SELinux: Use unknown perm handling to handle unknown netlink msg types
authorEric Paris <eparis@redhat.com>
Wed, 5 Nov 2008 14:34:42 +0000 (09:34 -0500)
committerJames Morris <jmorris@namei.org>
Sat, 8 Nov 2008 23:33:18 +0000 (07:33 +0800)
commit39c9aede2b4a252bd296c0a86be832c3d3d0a273
tree2c802930511c40a6d150166a892e68f83fee9851tree | snapshot
parent1f29fae29709b4668979e244c09b2fa78ff1ad59commit | diff
SELinux: Use unknown perm handling to handle unknown netlink msg types

Currently when SELinux has not been updated to handle a netlink message
type the operation is denied with EINVAL.  This patch will leave the
audit/warning message so things get fixed but if policy chose to allow
unknowns this will allow the netlink operation.

Signed-off-by: Eric Paris <eparis@redhat.com>
Acked-by: Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: James Morris <jmorris@namei.org>
security/selinux/hooks.c diff | blob | history
Full containers within linux kernel