Eric Paris d09ca73979 security: make LSMs explicitly mask off permissions ... SELinux needs to pass the MAY_ACCESS flag so it can handle auditting correctly. Presently the masking of MAY_* flags is done in the VFS. In order to allow LSMs to decide what flags they care about and what flags they don't just pass them all and the each LSM mask off what they don't need. This patch should contain no functional changes to either the VFS or any LSM. Signed-off-by: Eric Paris <eparis@redhat.com> Acked-by: Stephen D. Smalley <sds@tycho.nsa.gov> Signed-off-by: James Morris <jmorris@namei.org>		2010-08-02 15:35:07 +10:00
..
integrity/ima	ima: use generic_file_llseek for securityfs	2010-08-02 15:34:58 +10:00
keys	KEYS: Reinstate lost passing of process keyring ID in call_sbin_request_key()	2010-08-02 15:34:56 +10:00
selinux	security: make LSMs explicitly mask off permissions	2010-08-02 15:35:07 +10:00
smack	security: make LSMs explicitly mask off permissions	2010-08-02 15:35:07 +10:00
tomoyo	TOMOYO: Explicitly set file_operations->llseek pointer.	2010-08-02 15:34:57 +10:00
capability.c	Security: capability: code style issue	2010-08-02 15:35:00 +10:00
commoncap.c	security: whitespace coding style fixes	2010-04-23 10:10:23 +10:00
device_cgroup.c	Merge branch 'master' into next	2010-05-06 10:56:07 +10:00
inode.c	securityfs: Drop dentry reference count when mknod fails	2010-08-02 15:34:59 +10:00
Kconfig	remove CONFIG_SECURITY_FILE_CAPABILITIES compile option	2009-11-24 15:06:47 +11:00
lsm_audit.c	Merge branch 'master' into next	2010-05-06 10:56:07 +10:00
Makefile	NOMMU: Optimise away the {dac_,}mmap_min_addr tests	2009-12-17 09:25:19 +11:00
min_addr.c	mmap_min_addr check CAP_SYS_RAWIO only for write	2010-04-23 08:56:31 +10:00
security.c	LSM: Remove unused arguments from security_path_truncate().	2010-08-02 15:33:40 +10:00