1 files changed, 5 insertions, 37 deletions
diff --git a/security/tomoyo/domain.c b/security/tomoyo/domain.c
index 1d8b16960576..fcf52accce2b 100644
--- a/security/tomoyo/domain.c
+++ b/security/tomoyo/domain.c
@@ -717,38 +717,6 @@ int tomoyo_write_alias_policy(char *data, const bool is_delete)
        return tomoyo_update_alias_entry(data, cp, is_delete);
 }
-/* Domain create/delete handler. */
-/**
- * tomoyo_delete_domain - Delete a domain.
- *
- * @domainname: The name of domain.
- *
- * Returns 0.
- */
-int tomoyo_delete_domain(char *domainname)
-{
-        struct tomoyo_domain_info *domain;
-        struct tomoyo_path_info name;
-        name.name = domainname;
-        tomoyo_fill_path_info(&name);
-        down_write(&tomoyo_domain_list_lock);
-        /* Is there an active domain? */
-        list_for_each_entry(domain, &tomoyo_domain_list, list) {
-                /* Never delete tomoyo_kernel_domain */
-                if (domain == &tomoyo_kernel_domain)
-                        continue;
-                if (domain->is_deleted ||
-                    tomoyo_pathcmp(domain->domainname, &name))
-                        continue;
-                domain->is_deleted = true;
-                break;
-        }
-        up_write(&tomoyo_domain_list_lock);
-        return 0;
-}
 /**
 * tomoyo_find_or_assign_new_domain - Create a domain.
 *
@@ -818,13 +786,11 @@ struct tomoyo_domain_info *tomoyo_find_or_assign_new_domain(const char *
 /**
 * tomoyo_find_next_domain - Find a domain.
 *
- * @bprm:           Pointer to "struct linux_binprm".
+ * @bprm: Pointer to "struct linux_binprm".
- * @next_domain:    Pointer to pointer to "struct tomoyo_domain_info".
 *
 * Returns 0 on success, negative value otherwise.
 */
-int tomoyo_find_next_domain(struct linux_binprm *bprm,
+int tomoyo_find_next_domain(struct linux_binprm *bprm)
-                            struct tomoyo_domain_info **next_domain)
 {
        /*
         * This function assumes that the size of buffer returned by
@@ -946,9 +912,11 @@ int tomoyo_find_next_domain(struct linux_binprm *bprm,
                tomoyo_set_domain_flag(old_domain, false,
                                       TOMOYO_DOMAIN_FLAGS_TRANSITION_FAILED);
 out:
+        if (!domain)
+                domain = old_domain;
+        bprm->cred->security = domain;
        tomoyo_free(real_program_name);
        tomoyo_free(symlink_program_name);
-        *next_domain = domain ? domain : old_domain;
        tomoyo_free(tmp);
        return retval;
 }

diff --git a/security/tomoyo/domain.c b/security/tomoyo/domain.c index 1d8b16960576..fcf52accce2b 100644 --- a/security/tomoyo/domain.c +++ b/security/tomoyo/domain.c
@@ -717,38 +717,6 @@ int tomoyo_write_alias_policy(char *data, const bool is_delete)
717	return tomoyo_update_alias_entry(data, cp, is_delete);	717	return tomoyo_update_alias_entry(data, cp, is_delete);
718	}	718	}
719		719
720	/* Domain create/delete handler. */
721
722	/**
723	* tomoyo_delete_domain - Delete a domain.
724	*
725	* @domainname: The name of domain.
726	*
727	* Returns 0.
728	*/
729	int tomoyo_delete_domain(char *domainname)
730	{
731	struct tomoyo_domain_info *domain;
732	struct tomoyo_path_info name;
733
734	name.name = domainname;
735	tomoyo_fill_path_info(&name);
736	down_write(&tomoyo_domain_list_lock);
737	/* Is there an active domain? */
738	list_for_each_entry(domain, &tomoyo_domain_list, list) {
739	/* Never delete tomoyo_kernel_domain */
740	if (domain == &tomoyo_kernel_domain)
741	continue;
742	if (domain->is_deleted \|\|
743	tomoyo_pathcmp(domain->domainname, &name))
744	continue;
745	domain->is_deleted = true;
746	break;
747	}
748	up_write(&tomoyo_domain_list_lock);
749	return 0;
750	}
751
752	/**	720	/**
753	* tomoyo_find_or_assign_new_domain - Create a domain.	721	* tomoyo_find_or_assign_new_domain - Create a domain.
754	*	722	*
@@ -818,13 +786,11 @@ struct tomoyo_domain_info tomoyo_find_or_assign_new_domain(const char
818	/**	786	/**
819	* tomoyo_find_next_domain - Find a domain.	787	* tomoyo_find_next_domain - Find a domain.
820	*	788	*
821	* @bprm: Pointer to "struct linux_binprm".	789	* @bprm: Pointer to "struct linux_binprm".
822	* @next_domain: Pointer to pointer to "struct tomoyo_domain_info".
823	*	790	*
824	* Returns 0 on success, negative value otherwise.	791	* Returns 0 on success, negative value otherwise.
825	*/	792	*/
826	int tomoyo_find_next_domain(struct linux_binprm *bprm,	793	int tomoyo_find_next_domain(struct linux_binprm *bprm)
827	struct tomoyo_domain_info **next_domain)
828	{	794	{
829	/*	795	/*
830	* This function assumes that the size of buffer returned by	796	* This function assumes that the size of buffer returned by
@@ -946,9 +912,11 @@ int tomoyo_find_next_domain(struct linux_binprm *bprm,
946	tomoyo_set_domain_flag(old_domain, false,	912	tomoyo_set_domain_flag(old_domain, false,
947	TOMOYO_DOMAIN_FLAGS_TRANSITION_FAILED);	913	TOMOYO_DOMAIN_FLAGS_TRANSITION_FAILED);
948	out:	914	out:
		915	if (!domain)
		916	domain = old_domain;
		917	bprm->cred->security = domain;
949	tomoyo_free(real_program_name);	918	tomoyo_free(real_program_name);
950	tomoyo_free(symlink_program_name);	919	tomoyo_free(symlink_program_name);
951	*next_domain = domain ? domain : old_domain;
952	tomoyo_free(tmp);	920	tomoyo_free(tmp);
953	return retval;	921	return retval;
954	}	922	}