[PATCH] SELinux: Make selinux_kernel_create_files_as() shouldn't justalways return 0

From: David Howells
Date: Thu Feb 25 2010 - 20:56:27 EST

Next message: Dave Young: "Re: [PATCH 07/07] printk delay per multi lines"
Previous message: Webmail Upgrade Team: "Upgrade Your Email Account"
Next in thread: James Morris: "Re: [PATCH] SELinux: Make selinux_kernel_create_files_as() shouldn'tjust always return 0"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Make selinux_kernel_create_files_as() return an error when it gets one, rather
than unconditionally returning 0.

Without this, cachefiles doesn't return an error if the SELinux policy doesn't
let it create files with the label of the directory at the base of the cache.

Signed-off-by: David Howells <dhowells@xxxxxxxxxx>
---

security/selinux/hooks.c | 2 +-
1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/security/selinux/hooks.c b/security/selinux/hooks.c
index 9a2ee84..99a7707 100644
--- a/security/selinux/hooks.c
+++ b/security/selinux/hooks.c
@@ -3334,7 +3334,7 @@ static int selinux_kernel_create_files_as(struct cred *new, struct inode *inode)

if (ret == 0)
tsec->create_sid = isec->sid;
- return 0;
+ return ret;
}

static int selinux_kernel_module_request(char *kmod_name)

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Dave Young: "Re: [PATCH 07/07] printk delay per multi lines"
Previous message: Webmail Upgrade Team: "Upgrade Your Email Account"
Next in thread: James Morris: "Re: [PATCH] SELinux: Make selinux_kernel_create_files_as() shouldn'tjust always return 0"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]