Displaying 2 results from an estimated 2 matches for "secclass_resource".
2011 Nov 21
0
[PATCH] xsm/flask: fix resource list range checks
...-EPERM;
+};
- struct domain_security_struct *ssec, *tsec;
+static int _iomem_has_perm(void *v, u32 sid, unsigned long start, unsigned long end)
+{
+ struct iomem_has_perm_data *data = v;
struct avc_audit_data ad;
+ int rc = -EPERM;
- rc = domain_has_perm(current->domain, d, SECCLASS_RESOURCE,
- resource_to_perm(access));
- if ( rc )
- return rc;
-
- if ( access )
- perm = RESOURCE__ADD_IOMEM;
- else
- perm = RESOURCE__REMOVE_IOMEM;
+ AVC_AUDIT_DATA_INIT(&ad, DEV);
+ ad.device = start;
- ssec = current->domain->s...
2012 Jan 31
26
[PATCH 00/10] FLASK updates: MSI interrupts, cleanups
This patch set adds XSM security labels to useful debugging output
locations, and fixes some assumptions that all interrupts behaved like
GSI interrupts (which had useful non-dynamic IDs). It also cleans up the
policy build process and adds an example of how to use the user field in
the security context.
Debug output:
[PATCH 01/10] xsm: Add security labels to event-channel dump
[PATCH 02/10] xsm: