selinux: remove userland security class and permission definitions

Remove userland security class and permission definitions from the kernel as the kernel only needs to use and validate its own class and permission definitions and userland definitions may change. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> Signed-off-by: James Morris <jmorris@namei.org>
author: Stephen Smalley <sds@tycho.nsa.gov> 2007-03-26 19:36:26 +0200
committer: James Morris <jmorris@namei.org> 2007-04-26 07:35:58 +0200
commit: a764ae4b0781fac75f9657bc737c37ae59888389 (patch)
tree: eaff75fefa79a5db1713bf37d465ecc6dfbb2be4 /security/selinux/avc.c
parent: SELinux: move security_skb_extlbl_sid() out of the security server (diff)
download: linux-a764ae4b0781fac75f9657bc737c37ae59888389.tar.xz
linux-a764ae4b0781fac75f9657bc737c37ae59888389.zip
1 files changed, 2 insertions, 0 deletions
diff --git a/security/selinux/avc.c b/security/selinux/avc.c
index da8caf10ef97..e4396a89edc6 100644
--- a/security/selinux/avc.c
+++ b/security/selinux/avc.c
@@ -217,6 +217,8 @@ static void avc_dump_query(struct audit_buffer *ab, u32 ssid, u32 tsid, u16 tcla
 		audit_log_format(ab, " tcontext=%s", scontext);
 		kfree(scontext);
 	}
+
+	BUG_ON(tclass >= ARRAY_SIZE(class_to_string) || !class_to_string[tclass]);
 	audit_log_format(ab, " tclass=%s", class_to_string[tclass]);
 }
author	Stephen Smalley <sds@tycho.nsa.gov>	2007-03-26 19:36:26 +0200
committer	James Morris <jmorris@namei.org>	2007-04-26 07:35:58 +0200
commit	a764ae4b0781fac75f9657bc737c37ae59888389 (patch)
tree	eaff75fefa79a5db1713bf37d465ecc6dfbb2be4 /security/selinux/avc.c
parent	SELinux: move security_skb_extlbl_sid() out of the security server (diff)
download	linux-a764ae4b0781fac75f9657bc737c37ae59888389.tar.xz linux-a764ae4b0781fac75f9657bc737c37ae59888389.zip