selinux: simply inode label states to INVALID and INITIALIZED
There really is no need for LABEL_MISSING as we really only care if the inode's label is INVALID or INITIALIZED. Also adjust the revalidate code to reload the label whenever the label is not INITIALIZED so we are less sensitive to label state in the future. Signed-off-by: Paul Moore <paul@paul-moore.com>
This commit is contained in:
parent
899134f2f6
commit
4b57d6bcd9
|
@ -259,7 +259,7 @@ static int __inode_security_revalidate(struct inode *inode,
|
|||
|
||||
might_sleep_if(may_sleep);
|
||||
|
||||
if (isec->initialized == LABEL_INVALID) {
|
||||
if (isec->initialized != LABEL_INITIALIZED) {
|
||||
if (!may_sleep)
|
||||
return -ECHILD;
|
||||
|
||||
|
|
|
@ -38,9 +38,8 @@ struct task_security_struct {
|
|||
};
|
||||
|
||||
enum label_initialized {
|
||||
LABEL_MISSING, /* not initialized */
|
||||
LABEL_INITIALIZED, /* inizialized */
|
||||
LABEL_INVALID /* invalid */
|
||||
LABEL_INVALID, /* invalid or not initialized */
|
||||
LABEL_INITIALIZED /* initialized */
|
||||
};
|
||||
|
||||
struct inode_security_struct {
|
||||
|
|
Loading…
Reference in New Issue