aboutsummaryrefslogtreecommitdiffstats
path: root/security/selinux/ss/services.c
diff options
context:
space:
mode:
authorStephen Smalley <sds@tycho.nsa.gov>2007-03-26 13:36:26 -0400
committerJames Morris <jmorris@namei.org>2007-04-26 01:35:58 -0400
commita764ae4b0781fac75f9657bc737c37ae59888389 (patch)
treeeaff75fefa79a5db1713bf37d465ecc6dfbb2be4 /security/selinux/ss/services.c
parent4f6a993f96a256e83b9be7612f958c7bc4ca9f00 (diff)
selinux: remove userland security class and permission definitions
Remove userland security class and permission definitions from the kernel as the kernel only needs to use and validate its own class and permission definitions and userland definitions may change. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> Signed-off-by: James Morris <jmorris@namei.org>
Diffstat (limited to 'security/selinux/ss/services.c')
-rw-r--r--security/selinux/ss/services.c2
1 files changed, 2 insertions, 0 deletions
diff --git a/security/selinux/ss/services.c b/security/selinux/ss/services.c
index 8ee4aaef1094..d3698568a213 100644
--- a/security/selinux/ss/services.c
+++ b/security/selinux/ss/services.c
@@ -1049,6 +1049,8 @@ static int validate_classes(struct policydb *p)
1049 1049
1050 for (i = 1; i < kdefs->cts_len; i++) { 1050 for (i = 1; i < kdefs->cts_len; i++) {
1051 def_class = kdefs->class_to_string[i]; 1051 def_class = kdefs->class_to_string[i];
1052 if (!def_class)
1053 continue;
1052 if (i > p->p_classes.nprim) { 1054 if (i > p->p_classes.nprim) {
1053 printk(KERN_INFO 1055 printk(KERN_INFO
1054 "security: class %s not defined in policy\n", 1056 "security: class %s not defined in policy\n",
generated by cgit v1.2.2 (git 2.25.0) at 2024-11-12 22:15:30 -0500