security: keys: perform capable check only on privileged operations - linux.git - dakr's fork of kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git

diff options

author	Christian Göttsche <cgzones@googlemail.com>	2023-05-11 14:32:52 +0200
committer	Jarkko Sakkinen <jarkko@kernel.org>	2023-07-28 18:07:41 +0000
commit	2d7f105edbb3b2be5ffa4d833abbf9b6965e9ce7 (patch)
tree	f6ebc1b970968129a1bacc8b1468de0fbe77f93d /mm
parent	57012c57536f8814dec92e74197ee96c3498d24e (diff)

security: keys: perform capable check only on privileged operations

If the current task fails the check for the queried capability via `capable(CAP_SYS_ADMIN)` LSMs like SELinux generate a denial message. Issuing such denial messages unnecessarily can lead to a policy author granting more privileges to a subject than needed to silence them. Reorder CAP_SYS_ADMIN checks after the check whether the operation is actually privileged. Signed-off-by: Christian Göttsche <cgzones@googlemail.com> Reviewed-by: Jarkko Sakkinen <jarkko@kernel.org> Signed-off-by: Jarkko Sakkinen <jarkko@kernel.org>

Diffstat (limited to 'mm')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: