diff options
| author |   Al Viro <viro@zeniv.linux.org.uk> | 2021-01-16 15:40:54 -0500 |
|---|---|---|
| committer |   Paul Moore <paul@paul-moore.com> | 2021-06-11 13:05:18 -0400 |
| commit | b17ec22fb339bfcb1eadd5f5e196dc705dcf3949 (patch) | |
| tree | 26cf2d5c9a8e4c30896413f23c600d7f1d740003 /security/selinux/include | |
| parent | selinux: Fix kernel-doc (diff) | |
| download | linux-dev-b17ec22fb339bfcb1eadd5f5e196dc705dcf3949.tar.xz linux-dev-b17ec22fb339bfcb1eadd5f5e196dc705dcf3949.zip | |
selinux: slow_avc_audit has become non-blocking
dump_common_audit_data() is safe to use under rcu_read_lock() now;
no need for AVC_NONBLOCKING and games around it
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
Signed-off-by: Paul Moore <paul@paul-moore.com>
Diffstat (limited to 'security/selinux/include')
| -rw-r--r-- | security/selinux/include/avc.h | 4 |
1 files changed, 0 insertions, 4 deletions
diff --git a/security/selinux/include/avc.h b/security/selinux/include/avc.h index cf4cc3ef959b..c3bbfc8e8b46 100644 --- a/security/selinux/include/avc.h +++ b/security/selinux/include/avc.h @@ -134,9 +134,6 @@ static inline int avc_audit(struct selinux_state *state, audited = avc_audit_required(requested, avd, result, 0, &denied); if (likely(!audited)) return 0; - /* fall back to ref-walk if we have to generate audit */ - if (flags & MAY_NOT_BLOCK) - return -ECHILD; return slow_avc_audit(state, ssid, tsid, tclass, requested, audited, denied, result, a); @@ -144,7 +141,6 @@ static inline int avc_audit(struct selinux_state *state, #define AVC_STRICT 1 /* Ignore permissive mode. */ #define AVC_EXTENDED_PERMS 2 /* update extended permissions */ -#define AVC_NONBLOCKING 4 /* non blocking */ int avc_has_perm_noaudit(struct selinux_state *state, u32 ssid, u32 tsid, u16 tclass, u32 requested, |