1 files changed, 35 insertions, 4 deletions
diff --git a/security/selinux/xfrm.c b/security/selinux/xfrm.c
index abe99d881376..0e24df41099f 100644
--- a/security/selinux/xfrm.c
+++ b/security/selinux/xfrm.c
@@ -132,10 +132,7 @@ static int selinux_xfrm_sec_ctx_alloc(struct xfrm_sec_ctx **ctxp, struct xfrm_us
                goto out;
        /*
-         * Does the subject have permission to set security or permission to
+         * Does the subject have permission to set security context?
-         * do the relabel?
-         * Must be permitted to relabel from default socket type (process type)
-         * to specified context
         */
        rc = avc_has_perm(tsec->sid, ctx->ctx_sid,
                          SECCLASS_ASSOCIATION,
@@ -201,6 +198,23 @@ void selinux_xfrm_policy_free(struct xfrm_policy *xp)
 }
 /*
+ * LSM hook implementation that authorizes deletion of labeled policies.
+ */
+int selinux_xfrm_policy_delete(struct xfrm_policy *xp)
+{
+        struct task_security_struct *tsec = current->security;
+        struct xfrm_sec_ctx *ctx = xp->security;
+        int rc = 0;
+        if (ctx)
+                rc = avc_has_perm(tsec->sid, ctx->ctx_sid,
+                                  SECCLASS_ASSOCIATION,
+                                  ASSOCIATION__SETCONTEXT, NULL);
+        return rc;
+}
+/*
 * LSM hook implementation that allocs and transfers sec_ctx spec to
 * xfrm_state.
 */
@@ -292,6 +306,23 @@ u32 selinux_socket_getpeer_dgram(struct sk_buff *skb)
        return SECSID_NULL;
 }
+ /*
+  * LSM hook implementation that authorizes deletion of labeled SAs.
+  */
+int selinux_xfrm_state_delete(struct xfrm_state *x)
+{
+        struct task_security_struct *tsec = current->security;
+        struct xfrm_sec_ctx *ctx = x->security;
+        int rc = 0;
+        if (ctx)
+                rc = avc_has_perm(tsec->sid, ctx->ctx_sid,
+                                  SECCLASS_ASSOCIATION,
+                                  ASSOCIATION__SETCONTEXT, NULL);
+        return rc;
+}
 /*
 * LSM hook that controls access to unlabelled packets.  If
 * a xfrm_state is authorizable (defined by macro) then it was

diff --git a/security/selinux/xfrm.c b/security/selinux/xfrm.c index abe99d881376..0e24df41099f 100644 --- a/security/selinux/xfrm.c +++ b/security/selinux/xfrm.c
@@ -132,10 +132,7 @@ static int selinux_xfrm_sec_ctx_alloc(struct xfrm_sec_ctx **ctxp, struct xfrm_us
132	goto out;	132	goto out;
133		133
134	/*	134	/*
135	* Does the subject have permission to set security or permission to	135	* Does the subject have permission to set security context?
136	* do the relabel?
137	* Must be permitted to relabel from default socket type (process type)
138	* to specified context
139	*/	136	*/
140	rc = avc_has_perm(tsec->sid, ctx->ctx_sid,	137	rc = avc_has_perm(tsec->sid, ctx->ctx_sid,
141	SECCLASS_ASSOCIATION,	138	SECCLASS_ASSOCIATION,
@@ -201,6 +198,23 @@ void selinux_xfrm_policy_free(struct xfrm_policy *xp)
201	}	198	}
202		199
203	/*	200	/*
		201	* LSM hook implementation that authorizes deletion of labeled policies.
		202	*/
		203	int selinux_xfrm_policy_delete(struct xfrm_policy *xp)
		204	{
		205	struct task_security_struct *tsec = current->security;
		206	struct xfrm_sec_ctx *ctx = xp->security;
		207	int rc = 0;
		208
		209	if (ctx)
		210	rc = avc_has_perm(tsec->sid, ctx->ctx_sid,
		211	SECCLASS_ASSOCIATION,
		212	ASSOCIATION__SETCONTEXT, NULL);
		213
		214	return rc;
		215	}
		216
		217	/*
204	* LSM hook implementation that allocs and transfers sec_ctx spec to	218	* LSM hook implementation that allocs and transfers sec_ctx spec to
205	* xfrm_state.	219	* xfrm_state.
206	*/	220	*/
@@ -292,6 +306,23 @@ u32 selinux_socket_getpeer_dgram(struct sk_buff *skb)
292	return SECSID_NULL;	306	return SECSID_NULL;
293	}	307	}
294		308
		309	/*
		310	* LSM hook implementation that authorizes deletion of labeled SAs.
		311	*/
		312	int selinux_xfrm_state_delete(struct xfrm_state *x)
		313	{
		314	struct task_security_struct *tsec = current->security;
		315	struct xfrm_sec_ctx *ctx = x->security;
		316	int rc = 0;
		317
		318	if (ctx)
		319	rc = avc_has_perm(tsec->sid, ctx->ctx_sid,
		320	SECCLASS_ASSOCIATION,
		321	ASSOCIATION__SETCONTEXT, NULL);
		322
		323	return rc;
		324	}
		325
295	/*	326	/*
296	* LSM hook that controls access to unlabelled packets. If	327	* LSM hook that controls access to unlabelled packets. If
297	* a xfrm_state is authorizable (defined by macro) then it was	328	* a xfrm_state is authorizable (defined by macro) then it was