[PATCH] fix for netlink_send hook

• Previous message: David Wagner: "Re: get_write_access hook"
• Next in thread: Greg KH: "Re: [PATCH] fix for netlink_send hook"
• Reply: Greg KH: "Re: [PATCH] fix for netlink_send hook"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

The patch below appears to fix a problem in the netlink_send hook for the
LSM dummy plug, where the eff_cap field was not being treated as bitmap.

Stephen has OK'd it and asked me to send it to the list.

- James
-- 
James Morris
<jmorrisat_private>

diff -ur --exclude ChangeSet --exclude BitKeeper --exclude SCCS -X /usr/src/misc/xkdiff lsm/security/dummy.c lsm-w1/security/dummy.c
--- lsm/security/dummy.c	Fri Sep 28 10:16:17 2001
+++ lsm-w1/security/dummy.c	Thu Oct  4 01:10:11 2001
@@ -135,7 +135,7 @@
 static int dummy_netlink_send (struct sk_buff *skb)
 {
 	if (current->euid == 0)
-		NETLINK_CB (skb).eff_cap = CAP_NET_ADMIN;
+		cap_raise (NETLINK_CB (skb).eff_cap, CAP_NET_ADMIN);
 	else
 		NETLINK_CB (skb).eff_cap = 0;
 	return 0;



_______________________________________________
linux-security-module mailing list
linux-security-moduleat_private
http://mail.wirex.com/mailman/listinfo/linux-security-module

• Next message: Greg KH: "Re: [PATCH] fix for netlink_send hook"
• Previous message: David Wagner: "Re: get_write_access hook"
• Next in thread: Greg KH: "Re: [PATCH] fix for netlink_send hook"
• Reply: Greg KH: "Re: [PATCH] fix for netlink_send hook"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Oct 03 2001 - 08:51:57 PDT