]> Git Repo - linux.git/commit
projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0e81a8a) | patch
selinux: handle files opened with flags 3 by checking ioctl permission
authorStephen Smalley <[email protected]>
Mon, 17 Mar 2008 12:55:18 +0000 (08:55 -0400)
committerJames Morris <[email protected]>
Wed, 2 Apr 2008 05:05:52 +0000 (16:05 +1100)
commit0794c66d49885a2f615618ce4940434b5b067d84
treeb01be53c424c7d4793f5673539c11d09fbbe2b5atree | snapshot
parent0e81a8ae37687845f7cdfa2adce14ea6a5f1dd34commit | diff
selinux: handle files opened with flags 3 by checking ioctl permission

Handle files opened with flags 3 by checking ioctl permission.

Default to returning FILE__IOCTL from file_to_av() if the f_mode has neither
FMODE_READ nor FMODE_WRITE, and thus check ioctl permission on exec or
transfer, thereby validating such descriptors early as with normal r/w
descriptors and catching leaks of them prior to attempted usage.

Signed-off-by: Stephen Smalley <[email protected]>
Acked-by: Eric Paris <[email protected]>
Signed-off-by: James Morris <[email protected]>
security/selinux/hooks.c diff | blob | blame | history
Empty description
This page took 0.057276 seconds and 4 git commands to generate.