diff options
Diffstat (limited to 'security/capability.c')
| -rw-r--r-- | security/capability.c | 30 |
1 files changed, 27 insertions, 3 deletions
diff --git a/security/capability.c b/security/capability.c index b14a30c234b8..579775088967 100644 --- a/security/capability.c +++ b/security/capability.c | |||
| @@ -395,6 +395,11 @@ static int cap_kernel_module_request(char *kmod_name) | |||
| 395 | return 0; | 395 | return 0; |
| 396 | } | 396 | } |
| 397 | 397 | ||
| 398 | static int cap_kernel_module_from_file(struct file *file) | ||
| 399 | { | ||
| 400 | return 0; | ||
| 401 | } | ||
| 402 | |||
| 398 | static int cap_task_setpgid(struct task_struct *p, pid_t pgid) | 403 | static int cap_task_setpgid(struct task_struct *p, pid_t pgid) |
| 399 | { | 404 | { |
| 400 | return 0; | 405 | return 0; |
| @@ -704,16 +709,31 @@ static void cap_req_classify_flow(const struct request_sock *req, | |||
| 704 | { | 709 | { |
| 705 | } | 710 | } |
| 706 | 711 | ||
| 712 | static int cap_tun_dev_alloc_security(void **security) | ||
| 713 | { | ||
| 714 | return 0; | ||
| 715 | } | ||
| 716 | |||
| 717 | static void cap_tun_dev_free_security(void *security) | ||
| 718 | { | ||
| 719 | } | ||
| 720 | |||
| 707 | static int cap_tun_dev_create(void) | 721 | static int cap_tun_dev_create(void) |
| 708 | { | 722 | { |
| 709 | return 0; | 723 | return 0; |
| 710 | } | 724 | } |
| 711 | 725 | ||
| 712 | static void cap_tun_dev_post_create(struct sock *sk) | 726 | static int cap_tun_dev_attach_queue(void *security) |
| 727 | { | ||
| 728 | return 0; | ||
| 729 | } | ||
| 730 | |||
| 731 | static int cap_tun_dev_attach(struct sock *sk, void *security) | ||
| 713 | { | 732 | { |
| 733 | return 0; | ||
| 714 | } | 734 | } |
| 715 | 735 | ||
| 716 | static int cap_tun_dev_attach(struct sock *sk) | 736 | static int cap_tun_dev_open(void *security) |
| 717 | { | 737 | { |
| 718 | return 0; | 738 | return 0; |
| 719 | } | 739 | } |
| @@ -967,6 +987,7 @@ void __init security_fixup_ops(struct security_operations *ops) | |||
| 967 | set_to_cap_if_null(ops, kernel_act_as); | 987 | set_to_cap_if_null(ops, kernel_act_as); |
| 968 | set_to_cap_if_null(ops, kernel_create_files_as); | 988 | set_to_cap_if_null(ops, kernel_create_files_as); |
| 969 | set_to_cap_if_null(ops, kernel_module_request); | 989 | set_to_cap_if_null(ops, kernel_module_request); |
| 990 | set_to_cap_if_null(ops, kernel_module_from_file); | ||
| 970 | set_to_cap_if_null(ops, task_fix_setuid); | 991 | set_to_cap_if_null(ops, task_fix_setuid); |
| 971 | set_to_cap_if_null(ops, task_setpgid); | 992 | set_to_cap_if_null(ops, task_setpgid); |
| 972 | set_to_cap_if_null(ops, task_getpgid); | 993 | set_to_cap_if_null(ops, task_getpgid); |
| @@ -1044,8 +1065,11 @@ void __init security_fixup_ops(struct security_operations *ops) | |||
| 1044 | set_to_cap_if_null(ops, secmark_refcount_inc); | 1065 | set_to_cap_if_null(ops, secmark_refcount_inc); |
| 1045 | set_to_cap_if_null(ops, secmark_refcount_dec); | 1066 | set_to_cap_if_null(ops, secmark_refcount_dec); |
| 1046 | set_to_cap_if_null(ops, req_classify_flow); | 1067 | set_to_cap_if_null(ops, req_classify_flow); |
| 1068 | set_to_cap_if_null(ops, tun_dev_alloc_security); | ||
| 1069 | set_to_cap_if_null(ops, tun_dev_free_security); | ||
| 1047 | set_to_cap_if_null(ops, tun_dev_create); | 1070 | set_to_cap_if_null(ops, tun_dev_create); |
| 1048 | set_to_cap_if_null(ops, tun_dev_post_create); | 1071 | set_to_cap_if_null(ops, tun_dev_open); |
| 1072 | set_to_cap_if_null(ops, tun_dev_attach_queue); | ||
| 1049 | set_to_cap_if_null(ops, tun_dev_attach); | 1073 | set_to_cap_if_null(ops, tun_dev_attach); |
| 1050 | #endif /* CONFIG_SECURITY_NETWORK */ | 1074 | #endif /* CONFIG_SECURITY_NETWORK */ |
| 1051 | #ifdef CONFIG_SECURITY_NETWORK_XFRM | 1075 | #ifdef CONFIG_SECURITY_NETWORK_XFRM |