Gitiles
Code Review Sign In
gerrit-public.fairphone.software / fp2-dev / kernel / msm / 8b6a5a37f87a414ef8636e36ec75accb27bb7508
commit8b6a5a37f87a414ef8636e36ec75accb27bb7508[log] [tgz]
authorEric Paris <eparis@redhat.com>Wed Oct 29 17:06:46 2008 -0400
committerJames Morris <jmorris@namei.org>Fri Oct 31 02:00:52 2008 +1100
tree26ff1dddb3c8727118b24819e83b4b7c500ff595
parent0da939b0058742ad2d8580b7db6b966d0fc72252 [diff]
SELinux: check open perms in dentry_open not inode_permission

Some operations, like searching a directory path or connecting a unix domain
socket, make explicit calls into inode_permission.  Our choices are to
either try to come up with a signature for all of the explicit calls to
inode_permission and do not check open on those, or to move the open checks to
dentry_open where we know this is always an open operation.  This patch moves
the checks to dentry_open.

Signed-off-by: Eric Paris <eparis@redhat.com>
Acked-by:  Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: James Morris <jmorris@namei.org>
1 file changed
tree: 26ff1dddb3c8727118b24819e83b4b7c500ff595
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. usr/
  20. virt/
  21. .gitignore
  22. .mailmap
  23. COPYING
  24. CREDITS
  25. Kbuild
  26. MAINTAINERS
  27. Makefile
  28. README
  29. REPORTING-BUGS