pci: use security_capable() when checking capablities during config space read - kernel

diff options

author	Chris Wright <[email protected]>	2011-02-10 23:58:56 +0000
committer	James Morris <[email protected]>	2011-02-11 06:58:11 +0000
commit	47970b1b2aa64464bc0a9543e86361a622ae7c03 (patch)
tree	66e5474c37ea12a28d52dc652978df0ab7a0287f /net/unix/af_unix.c
parent	security: add cred argument to security_capable() (diff)
download	kernel-47970b1b2aa64464bc0a9543e86361a622ae7c03.tar.gz kernel-47970b1b2aa64464bc0a9543e86361a622ae7c03.zip

pci: use security_capable() when checking capablities during config space read

Eric Paris noted that commit de139a3 ("pci: check caps from sysfs file open to read device dependent config space") caused the capability check to bypass security modules and potentially auditing. Rectify this by calling security_capable() when checking the open file's capabilities for config space reads. Reported-by: Eric Paris <[email protected]> Signed-off-by: Chris Wright <[email protected]> Signed-off-by: James Morris <[email protected]>

Diffstat (limited to 'net/unix/af_unix.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: