KEYS: testing wrong bit for KEY_FLAG_REVOKED

The test for "if (cred->request_key_auth->flags & KEY_FLAG_REVOKED) {" should actually testing that the (1 << KEY_FLAG_REVOKED) bit is set. The current code actually checks for KEY_FLAG_DEAD. Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com> Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: James Morris <james.l.morris@oracle.com>
author: Dan Carpenter <dan.carpenter@oracle.com> 2012-03-06 08:32:16 -0500
committer: James Morris <james.l.morris@oracle.com> 2012-03-06 19:12:06 -0500
commit: f67dabbdde1fe112dfff05d02890f1e0d54117a8 (patch)
tree: 5cf73d686d39df4e9986194ff64e98fdcdd4e444 /security/keys
parent: df91e49477a9be15921cb2854e1d12a3bdb5e425 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/security/keys/process_keys.c b/security/keys/process_keys.c
index 1068cb1939b3..be7ecb2018dd 100644
--- a/security/keys/process_keys.c
+++ b/security/keys/process_keys.c
@@ -657,7 +657,8 @@ try_again:
                        goto error;
                down_read(&cred->request_key_auth->sem);
-                if (cred->request_key_auth->flags & KEY_FLAG_REVOKED) {
+                if (test_bit(KEY_FLAG_REVOKED,
+                             &cred->request_key_auth->flags)) {
                        key_ref = ERR_PTR(-EKEYREVOKED);
                        key = NULL;
                } else {
author	Dan Carpenter <dan.carpenter@oracle.com>	2012-03-06 08:32:16 -0500
committer	James Morris <james.l.morris@oracle.com>	2012-03-06 19:12:06 -0500
commit	f67dabbdde1fe112dfff05d02890f1e0d54117a8 (patch)
tree	5cf73d686d39df4e9986194ff64e98fdcdd4e444 /security/keys
parent	df91e49477a9be15921cb2854e1d12a3bdb5e425 (diff)

diff --git a/security/keys/process_keys.c b/security/keys/process_keys.c index 1068cb1939b3..be7ecb2018dd 100644 --- a/security/keys/process_keys.c +++ b/security/keys/process_keys.c
@@ -657,7 +657,8 @@ try_again:
657	goto error;	657	goto error;
658		658
659	down_read(&cred->request_key_auth->sem);	659	down_read(&cred->request_key_auth->sem);
660	if (cred->request_key_auth->flags & KEY_FLAG_REVOKED) {	660	if (test_bit(KEY_FLAG_REVOKED,
		661	&cred->request_key_auth->flags)) {
661	key_ref = ERR_PTR(-EKEYREVOKED);	662	key_ref = ERR_PTR(-EKEYREVOKED);
662	key = NULL;	663	key = NULL;
663	} else {	664	} else {