Eric Paris eda4f69ca5 SELinux: requesting no permissions in avc_has_perm_noaudit is a BUG() ... This patch turns the case where we have a call into avc_has_perm with no requested permissions into a BUG_ON. All callers to this should be in the kernel and thus should be a function we need to fix if we ever hit this. The /selinux/access permission checking it done directly in the security server and not through the avc, so those requests which we cannot control from userspace should not be able to trigger this BUG_ON. Signed-off-by: Eric Paris <eparis@redhat.com> Acked-by: Stephen D. Smalley <sds@tycho.nsa.gov> Signed-off-by: James Morris <jmorris@namei.org>		2008-04-18 20:26:09 +10:00
..
include	SELinux: create new open permission	2008-04-18 20:26:06 +10:00
ss	security: replace remaining __FUNCTION__ occurrences	2008-04-18 20:26:07 +10:00
Kconfig	SELinux: Add a capabilities bitmap to SELinux policy version 22	2008-01-30 08:17:23 +11:00
Makefile	SELinux: Add a network node caching mechanism similar to the sel_netif_*() functions	2008-01-30 08:17:23 +11:00
avc.c	SELinux: requesting no permissions in avc_has_perm_noaudit is a BUG()	2008-04-18 20:26:09 +10:00
exports.c	SELinux: Enable dynamic enable/disable of the network access checks	2008-01-30 08:17:26 +11:00
hooks.c	security: code cleanup	2008-04-18 20:26:08 +10:00
netif.c	SELinux: Add warning messages on network denial due to error	2008-01-30 08:17:30 +11:00
netlabel.c	selinux: selinux/netlabel.c should #include "netlabel.h"	2008-04-18 20:26:06 +10:00
netlink.c	security: replace remaining __FUNCTION__ occurrences	2008-04-18 20:26:07 +10:00
netnode.c	SELinux: Add warning messages on network denial due to error	2008-01-30 08:17:30 +11:00
nlmsgtab.c	Audit: add TTY input auditing	2007-07-16 09:05:47 -07:00
selinuxfs.c	security: replace remaining __FUNCTION__ occurrences	2008-04-18 20:26:07 +10:00
xfrm.c	SELinux: Enable dynamic enable/disable of the network access checks	2008-01-30 08:17:26 +11:00