Paul Moore 6326948f94 lsm: security_task_getsecid_subj() -> security_current_getsecid_subj() ... The security_task_getsecid_subj() LSM hook invites misuse by allowing callers to specify a task even though the hook is only safe when the current task is referenced. Fix this by removing the task_struct argument to the hook, requiring LSM implementations to use the current task. While we are changing the hook declaration we also rename the function to security_current_getsecid_subj() in an effort to reinforce that the hook captures the subjective credentials of the current task and not an arbitrary task on the system. Reviewed-by: Serge Hallyn <serge@hallyn.com> Reviewed-by: Casey Schaufler <casey@schaufler-ca.com> Signed-off-by: Paul Moore <paul@paul-moore.com>		2021-11-22 17:52:47 -05:00
..
Kconfig	treewide: Add SPDX license identifier - Makefile/Kconfig	2019-05-21 10:50:46 +02:00
Makefile	treewide: Add SPDX license identifier - Makefile/Kconfig	2019-05-21 10:50:46 +02:00
smack_access.c	Smack: Fix wrong semantics in smk_access_entry()	2021-07-20 09:17:36 -07:00
smack_lsm.c	lsm: security_task_getsecid_subj() -> security_current_getsecid_subj()	2021-11-22 17:52:47 -05:00
smack_netfilter.c	smack: remove duplicated hook function	2021-10-12 08:23:52 -07:00
smack.h	lsm: security_task_getsecid_subj() -> security_current_getsecid_subj()	2021-11-22 17:52:47 -05:00
smackfs.c	smackfs: use netlbl_cfg_cipsov4_del() for deleting cipso_v4_doi	2021-10-22 08:46:53 -07:00