linux_dsm_epyc7002/security
Stephen Smalley b1aa5301b9 selinux: fix labeling of /proc/net inodes
The proc net rewrite had a side effect on selinux, leading it to mislabel
the /proc/net inodes, thereby leading to incorrect denials.  Fix
security_genfs_sid to ignore extra leading / characters in the path supplied
by selinux_proc_get_sid since we now get "//net/..." rather than "/net/...".

Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: James Morris <jmorris@namei.org>
2008-01-26 12:16:16 +11:00
..
keys security/selinux: constify function pointer tables and fields 2008-01-25 11:29:54 +11:00
selinux selinux: fix labeling of /proc/net inodes 2008-01-26 12:16:16 +11:00
capability.c Implement file posix capabilities 2007-10-17 08:43:07 -07:00
commoncap.c Fix filesystem capability support 2008-01-21 19:39:41 -08:00
dummy.c security: add a secctx_to_secid() hook 2008-01-25 11:29:53 +11:00
inode.c Kobject: convert remaining kobject_unregister() to kobject_put() 2008-01-24 20:40:40 -08:00
Kconfig Implement file posix capabilities 2007-10-17 08:43:07 -07:00
Makefile [PATCH] LSM: remove BSD secure level security module 2006-09-29 09:18:10 -07:00
root_plug.c security: Convert LSM into a static interface 2007-10-17 08:43:07 -07:00
security.c security: add a secctx_to_secid() hook 2008-01-25 11:29:53 +11:00