security: make LSMs explicitly mask off permissions SELinux needs to pass the MAY_ACCESS flag so it can handle auditting correctly. Presently the masking of MAY_* flags is done in the VFS. In order to allow LSMs to decide what flags they care about and what flags they don't just pass them all and the each LSM mask off what they don't need. This patch should contain no functional changes to either the VFS or any LSM. Signed-off-by: Eric Paris <eparis@redhat.com> Acked-by: Stephen D. Smalley <sds@tycho.nsa.gov> Signed-off-by: James Morris <jmorris@namei.org>

commit: d09ca73979460b96d5d4684d588b188be9a1f57d [log] [tgz]
author: Eric Paris <eparis@redhat.com> Fri Jul 23 11:43:57 2010 -0400
committer: James Morris <jmorris@namei.org> Mon Aug 02 15:35:07 2010 +1000
tree: 217543affc5c1c76181ffca00c23cfa69f1dd4f6
parent: 9cfcac810e8993fa7a5bfd24b1a21f1dbbb03a7b [diff] [blame]
diff --git a/security/selinux/hooks.c b/security/selinux/hooks.c
index 85338f0..0c98846 100644
--- a/security/selinux/hooks.c
+++ b/security/selinux/hooks.c

@@ -2645,6 +2645,8 @@
 {
 	const struct cred *cred = current_cred();
 
+	mask &= (MAY_READ|MAY_WRITE|MAY_EXEC|MAY_APPEND);
+
 	if (!mask) {
 		/* No permission to check.  Existence test. */
 		return 0;
commit	d09ca73979460b96d5d4684d588b188be9a1f57d	[log] [tgz]
author	Eric Paris <eparis@redhat.com>	Fri Jul 23 11:43:57 2010 -0400
committer	James Morris <jmorris@namei.org>	Mon Aug 02 15:35:07 2010 +1000
tree	217543affc5c1c76181ffca00c23cfa69f1dd4f6
parent	9cfcac810e8993fa7a5bfd24b1a21f1dbbb03a7b [diff] [blame]