diff options
author | Eric Paris | 2012-01-03 18:25:15 +0100 |
---|---|---|
committer | Eric Paris | 2012-01-06 00:52:53 +0100 |
commit | b7e724d303b684655e4ca3dabd5a6840ad19012d (patch) | |
tree | 5474d8d49d61ade4c5e306a0485a835587237bf4 /include/linux/security.h | |
parent | capabilities: remove the task from capable LSM hook entirely (diff) | |
download | kernel-qcow2-linux-b7e724d303b684655e4ca3dabd5a6840ad19012d.tar.gz kernel-qcow2-linux-b7e724d303b684655e4ca3dabd5a6840ad19012d.tar.xz kernel-qcow2-linux-b7e724d303b684655e4ca3dabd5a6840ad19012d.zip |
capabilities: reverse arguments to security_capable
security_capable takes ns, cred, cap. But the LSM capable() hook takes
cred, ns, cap. The capability helper functions also take cred, ns, cap.
Rather than flip argument order just to flip it back, leave them alone.
Heck, this should be a little faster since argument will be in the right
place!
Signed-off-by: Eric Paris <eparis@redhat.com>
Diffstat (limited to 'include/linux/security.h')
-rw-r--r-- | include/linux/security.h | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/include/linux/security.h b/include/linux/security.h index 4921163b2752..ee969ff40a26 100644 --- a/include/linux/security.h +++ b/include/linux/security.h @@ -1666,7 +1666,7 @@ int security_capset(struct cred *new, const struct cred *old, const kernel_cap_t *effective, const kernel_cap_t *inheritable, const kernel_cap_t *permitted); -int security_capable(struct user_namespace *ns, const struct cred *cred, +int security_capable(const struct cred *cred, struct user_namespace *ns, int cap); int security_real_capable(struct task_struct *tsk, struct user_namespace *ns, int cap); @@ -1863,8 +1863,8 @@ static inline int security_capset(struct cred *new, return cap_capset(new, old, effective, inheritable, permitted); } -static inline int security_capable(struct user_namespace *ns, - const struct cred *cred, int cap) +static inline int security_capable(const struct cred *cred, + struct user_namespace *ns, int cap) { return cap_capable(cred, ns, cap, SECURITY_CAP_AUDIT); } |