Skip to content

Commit

Permalink
SELinux: Use d_is_positive() rather than testing dentry->d_inode
Browse files Browse the repository at this point in the history 
Use d_is_positive() rather than testing dentry->d_inode in SELinux to get rid
of direct references to d_inode outside of the VFS.

Signed-off-by: David Howells <dhowells@redhat.com>
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
  • Loading branch information
@dhowells
dhowells authored and Al Viro committed Feb 22, 2015
1 parent 8802565 commit 2c616d4
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions security/selinux/hooks.c
View file
Expand Up @@ -1822,12 +1822,12 @@ static inline int may_rename(struct inode *old_dir,

ad.u.dentry = new_dentry;
av = DIR__ADD_NAME | DIR__SEARCH;
if (new_dentry->d_inode)
if (d_is_positive(new_dentry))
av |= DIR__REMOVE_NAME;
rc = avc_has_perm(sid, new_dsec->sid, SECCLASS_DIR, av, &ad);
if (rc)
return rc;
if (new_dentry->d_inode) {
if (d_is_positive(new_dentry)) {
new_isec = new_dentry->d_inode->i_security;
new_is_dir = S_ISDIR(new_dentry->d_inode->i_mode);
rc = avc_has_perm(sid, new_isec->sid,
Expand Down

0 comments on commit 2c616d4

Please sign in to comment.