kernel-aes67/security
Eric Paris eda4f69ca5 SELinux: requesting no permissions in avc_has_perm_noaudit is a BUG()
This patch turns the case where we have a call into avc_has_perm with no
requested permissions into a BUG_ON.  All callers to this should be in
the kernel and thus should be a function we need to fix if we ever hit
this.  The /selinux/access permission checking it done directly in the
security server and not through the avc, so those requests which we
cannot control from userspace should not be able to trigger this BUG_ON.

Signed-off-by: Eric Paris <eparis@redhat.com>
Acked-by: Stephen D. Smalley <sds@tycho.nsa.gov>
Signed-off-by: James Morris <jmorris@namei.org>
2008-04-18 20:26:09 +10:00
..
keys security: replace remaining __FUNCTION__ occurrences 2008-04-18 20:26:07 +10:00
selinux SELinux: requesting no permissions in avc_has_perm_noaudit is a BUG() 2008-04-18 20:26:09 +10:00
smack smackfs: remove redundant lock, fix open(,O_RDWR) 2008-03-24 19:22:19 -07:00
capability.c file capabilities: remove cap_task_kill() 2008-03-20 09:46:36 -07:00
commoncap.c security: replace remaining __FUNCTION__ occurrences 2008-04-18 20:26:07 +10:00
dummy.c LSM/SELinux: Interfaces to allow FS to control mount options 2008-03-06 08:40:53 +11:00
inode.c Kobject: convert remaining kobject_unregister() to kobject_put() 2008-01-24 20:40:40 -08:00
Kconfig security: allow Kconfig to set default mmap_min_addr protection 2008-02-06 21:39:46 +08:00
Makefile Smack: Simplified Mandatory Access Control Kernel 2008-02-05 09:44:20 -08:00
root_plug.c security: replace remaining __FUNCTION__ occurrences 2008-04-18 20:26:07 +10:00
security.c security: replace remaining __FUNCTION__ occurrences 2008-04-18 20:26:07 +10:00