diff options
author | Stephen Smalley <sds@tycho.nsa.gov> | 2008-06-05 15:21:28 +0200 |
---|---|---|
committer | James Morris <jmorris@namei.org> | 2008-07-14 07:01:53 +0200 |
commit | 242631c49d4cf39642741d6627750151b058233b (patch) | |
tree | 26756c2b256cf5b14ca279a634d5bcc5e67b2b41 /include | |
parent | SELinux: enable processes with mac_admin to get the raw inode contexts (diff) | |
download | linux-242631c49d4cf39642741d6627750151b058233b.tar.xz linux-242631c49d4cf39642741d6627750151b058233b.zip |
selinux: simplify ioctl checking
Simplify and improve the robustness of the SELinux ioctl checking by
using the "access mode" bits of the ioctl command to determine the
permission check rather than dealing with individual command values.
This removes any knowledge of specific ioctl commands from SELinux
and follows the same guidance we gave to Smack earlier.
Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: James Morris <jmorris@namei.org>
Diffstat (limited to 'include')
0 files changed, 0 insertions, 0 deletions