On Sat, 1 Mar 2008, Ahmed S. Darwish wrote: > Stop using the following exported SELinux interfaces: > selinux_get_inode_sid(inode, sid) > selinux_get_ipc_sid(ipcp, sid) > selinux_get_task_sid(tsk, sid) > selinux_sid_to_string(sid, ctx, len) > kfree(ctx) > > and use following generic LSM equivalents respectively: > security_inode_getsecid(inode, secid) > security_ipc_getsecid*(ipcp, secid) > security_task_getsecid(tsk, secid) > security_sid_to_secctx(sid, ctx, len) > security_release_secctx(ctx, len) > > Call security_release_secctx only if security_secid_to_secctx > succeeded. > > Signed-off-by: Casey Schaufler <[EMAIL PROTECTED]> > Signed-off-by: Ahmed S. Darwish <[EMAIL PROTECTED]>
Acked-by: James Morris <[EMAIL PROTECTED]> -- James Morris <[EMAIL PROTECTED]> -- Linux-audit mailing list [email protected] https://www.redhat.com/mailman/listinfo/linux-audit
