Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 47970b1b2aa64464bc0a9543e86361a622ae7c03
commit47970b1b2aa64464bc0a9543e86361a622ae7c03[log] [tgz]
authorChris Wright <chrisw@sous-sol.org>Thu Feb 10 15:58:56 2011 -0800
committerJames Morris <jmorris@namei.org>Fri Feb 11 17:58:11 2011 +1100
tree66e5474c37ea12a28d52dc652978df0ab7a0287f
parent6037b715d6fab139742c3df8851db4c823081561 [diff]
pci: use security_capable() when checking capablities during config space read

Eric Paris noted that commit de139a3 ("pci: check caps from sysfs file
open to read device dependent config space") caused the capability check
to bypass security modules and potentially auditing.  Rectify this by
calling security_capable() when checking the open file's capabilities
for config space reads.

Reported-by: Eric Paris <eparis@redhat.com>
Signed-off-by: Chris Wright <chrisw@sous-sol.org>
Signed-off-by: James Morris <jmorris@namei.org>
1 file changed
tree: 66e5474c37ea12a28d52dc652978df0ab7a0287f
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. COPYING
  25. CREDITS
  26. Kbuild
  27. Kconfig
  28. MAINTAINERS
  29. Makefile
  30. README
  31. REPORTING-BUGS