|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [Xen-changelog] [xen stable-4.2] flask: check permissions first thing in flask_security_set_bool()
commit 640b31535ab8fe07911d0b90ae4adbe6078026c9
Author: Jan Beulich <jbeulich@xxxxxxxx>
AuthorDate: Thu Feb 13 10:21:42 2014 +0100
Commit: Jan Beulich <jbeulich@xxxxxxxx>
CommitDate: Thu Feb 13 10:21:42 2014 +0100
flask: check permissions first thing in flask_security_set_bool()
Nothing else should be done if the caller isn't permitted to set
boolean values.
Signed-off-by: Jan Beulich <jbeulich@xxxxxxxx>
Reviewed-by: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>
Acked-by: Daniel De Graaf <dgdegra@xxxxxxxxxxxxx>
master commit: ebe867052e0f782139147015c4e91b37aa5e68f1
master date: 2014-02-11 11:14:10 +0100
---
xen/xsm/flask/flask_op.c | 4 ++--
1 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/xen/xsm/flask/flask_op.c b/xen/xsm/flask/flask_op.c
index 7d55f15..d60fbca 100644
--- a/xen/xsm/flask/flask_op.c
+++ b/xen/xsm/flask/flask_op.c
@@ -326,11 +326,11 @@ static int flask_security_set_bool(struct
xen_flask_boolean *arg)
{
int rv;
- rv = flask_security_resolve_bool(arg);
+ rv = domain_has_security(current->domain, SECURITY__SETBOOL);
if ( rv )
return rv;
- rv = domain_has_security(current->domain, SECURITY__SETBOOL);
+ rv = flask_security_resolve_bool(arg);
if ( rv )
return rv;
--
generated by git-patchbot for /home/xen/git/xen.git#stable-4.2
_______________________________________________
Xen-changelog mailing list
Xen-changelog@xxxxxxxxxxxxx
http://lists.xensource.com/xen-changelog
|
 |
Lists.xenproject.org is hosted with RackSpace, monitoring our |