diff options
author | Stephen Smalley <sds@tycho.nsa.gov> | 2009-05-04 21:43:18 +0200 |
---|---|---|
committer | James Morris <jmorris@namei.org> | 2009-05-05 00:31:03 +0200 |
commit | 65c90bca0dba56f60dc4ce2a529140c3cc440f22 (patch) | |
tree | fd8f5e6338f04ba47fe91de1303b92a22da78daf | |
parent | Linux 2.6.30-rc4 (diff) | |
download | linux-65c90bca0dba56f60dc4ce2a529140c3cc440f22.tar.xz linux-65c90bca0dba56f60dc4ce2a529140c3cc440f22.zip |
selinux: Fix send_sigiotask hook
The CRED patch incorrectly converted the SELinux send_sigiotask hook to
use the current task SID rather than the target task SID in its
permission check, yielding the wrong permission check. This fixes the
hook function. Detected by the ltp selinux testsuite and confirmed to
correct the test failure.
Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: James Morris <jmorris@namei.org>
-rw-r--r-- | security/selinux/hooks.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/security/selinux/hooks.c b/security/selinux/hooks.c index ba808ef6babb..2fcad7c33eaf 100644 --- a/security/selinux/hooks.c +++ b/security/selinux/hooks.c @@ -3153,7 +3153,7 @@ static int selinux_file_send_sigiotask(struct task_struct *tsk, struct fown_struct *fown, int signum) { struct file *file; - u32 sid = current_sid(); + u32 sid = task_sid(tsk); u32 perm; struct file_security_struct *fsec; |