summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorStephen Smalley <sds@tycho.nsa.gov>2009-05-04 21:43:18 +0200
committerJames Morris <jmorris@namei.org>2009-05-05 00:31:03 +0200
commit65c90bca0dba56f60dc4ce2a529140c3cc440f22 (patch)
treefd8f5e6338f04ba47fe91de1303b92a22da78daf
parentLinux 2.6.30-rc4 (diff)
downloadlinux-65c90bca0dba56f60dc4ce2a529140c3cc440f22.tar.xz
linux-65c90bca0dba56f60dc4ce2a529140c3cc440f22.zip
selinux: Fix send_sigiotask hook
The CRED patch incorrectly converted the SELinux send_sigiotask hook to use the current task SID rather than the target task SID in its permission check, yielding the wrong permission check. This fixes the hook function. Detected by the ltp selinux testsuite and confirmed to correct the test failure. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> Signed-off-by: James Morris <jmorris@namei.org>
-rw-r--r--security/selinux/hooks.c2
1 files changed, 1 insertions, 1 deletions
diff --git a/security/selinux/hooks.c b/security/selinux/hooks.c
index ba808ef6babb..2fcad7c33eaf 100644
--- a/security/selinux/hooks.c
+++ b/security/selinux/hooks.c
@@ -3153,7 +3153,7 @@ static int selinux_file_send_sigiotask(struct task_struct *tsk,
struct fown_struct *fown, int signum)
{
struct file *file;
- u32 sid = current_sid();
+ u32 sid = task_sid(tsk);
u32 perm;
struct file_security_struct *fsec;