Vesa-Matti Kari 421fae06be selinux: conditional expression type validation was off-by-one ... expr_isvalid() in conditional.c was off-by-one and allowed invalid expression type COND_LAST. However, it is this header file that needs to be fixed. That way the if-statement's disjunction's second component reads more naturally, "if expr type is greater than the last allowed value" ( rather than using ">=" in conditional.c): if (expr->expr_type <= 0 || expr->expr_type > COND_LAST) Signed-off-by: Vesa-Matti Kari <vmkari@cc.helsinki.fi> Signed-off-by: James Morris <jmorris@namei.org>		2008-08-07 08:56:16 +10:00
..
keys	keys: remove unused key_alloc_sem	2008-06-06 11:29:11 -07:00
selinux	selinux: conditional expression type validation was off-by-one	2008-08-07 08:56:16 +10:00
smack	smack: limit privilege by label	2008-08-05 10:55:53 +10:00
capability.c	[PATCH] pass MAY_OPEN to vfs_permission() explicitly	2008-07-26 20:53:22 -04:00
commoncap.c	security: protect legacy applications from executing with insufficient privilege	2008-07-24 10:47:22 -07:00
device_cgroup.c	devcgroup: code cleanup	2008-07-25 10:53:37 -07:00
inode.c	Kobject: convert remaining kobject_unregister() to kobject_put()	2008-01-24 20:40:40 -08:00
Kconfig	security: filesystem capabilities no longer experimental	2008-07-24 10:47:22 -07:00
Makefile	security: remove dummy module	2008-07-14 15:03:04 +10:00
root_plug.c	security: remove register_security hook	2008-07-14 15:04:06 +10:00
security.c	[patch 3/4] fat: dont call notify_change	2008-07-26 20:53:27 -04:00