aboutsummaryrefslogtreecommitdiffstats
path: root/security/security.c
diff options
context:
space:
mode:
Diffstat (limited to 'security/security.c')
-rw-r--r--security/security.c35
1 files changed, 5 insertions, 30 deletions
diff --git a/security/security.c b/security/security.c
index 214502c772ab..d7542493454d 100644
--- a/security/security.c
+++ b/security/security.c
@@ -155,35 +155,16 @@ int security_capset(struct cred *new, const struct cred *old,
155 effective, inheritable, permitted); 155 effective, inheritable, permitted);
156} 156}
157 157
158int security_capable(struct user_namespace *ns, const struct cred *cred, 158int security_capable(const struct cred *cred, struct user_namespace *ns,
159 int cap) 159 int cap)
160{ 160{
161 return security_ops->capable(current, cred, ns, cap, 161 return security_ops->capable(cred, ns, cap, SECURITY_CAP_AUDIT);
162 SECURITY_CAP_AUDIT);
163} 162}
164 163
165int security_real_capable(struct task_struct *tsk, struct user_namespace *ns, 164int security_capable_noaudit(const struct cred *cred, struct user_namespace *ns,
166 int cap) 165 int cap)
167{ 166{
168 const struct cred *cred; 167 return security_ops->capable(cred, ns, cap, SECURITY_CAP_NOAUDIT);
169 int ret;
170
171 cred = get_task_cred(tsk);
172 ret = security_ops->capable(tsk, cred, ns, cap, SECURITY_CAP_AUDIT);
173 put_cred(cred);
174 return ret;
175}
176
177int security_real_capable_noaudit(struct task_struct *tsk,
178 struct user_namespace *ns, int cap)
179{
180 const struct cred *cred;
181 int ret;
182
183 cred = get_task_cred(tsk);
184 ret = security_ops->capable(tsk, cred, ns, cap, SECURITY_CAP_NOAUDIT);
185 put_cred(cred);
186 return ret;
187} 168}
188 169
189int security_quotactl(int cmds, int type, int id, struct super_block *sb) 170int security_quotactl(int cmds, int type, int id, struct super_block *sb)
@@ -994,12 +975,6 @@ int security_netlink_send(struct sock *sk, struct sk_buff *skb)
994 return security_ops->netlink_send(sk, skb); 975 return security_ops->netlink_send(sk, skb);
995} 976}
996 977
997int security_netlink_recv(struct sk_buff *skb, int cap)
998{
999 return security_ops->netlink_recv(skb, cap);
1000}
1001EXPORT_SYMBOL(security_netlink_recv);
1002
1003int security_secid_to_secctx(u32 secid, char **secdata, u32 *seclen) 978int security_secid_to_secctx(u32 secid, char **secdata, u32 *seclen)
1004{ 979{
1005 return security_ops->secid_to_secctx(secid, secdata, seclen); 980 return security_ops->secid_to_secctx(secid, secdata, seclen);