selinux: remove userland security class and permission definitions

Remove userland security class and permission definitions from the kernel as the kernel only needs to use and validate its own class and permission definitions and userland definitions may change. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> Signed-off-by: James Morris <jmorris@namei.org>
author: Stephen Smalley <sds@tycho.nsa.gov> 2007-03-26 13:36:26 -0400
committer: James Morris <jmorris@namei.org> 2007-04-26 01:35:58 -0400
commit: a764ae4b0781fac75f9657bc737c37ae59888389 (patch)
tree: eaff75fefa79a5db1713bf37d465ecc6dfbb2be4 /security/selinux/ss
parent: 4f6a993f96a256e83b9be7612f958c7bc4ca9f00 (diff)
download: op-kernel-dev-a764ae4b0781fac75f9657bc737c37ae59888389.zip
op-kernel-dev-a764ae4b0781fac75f9657bc737c37ae59888389.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/security/selinux/ss/services.c b/security/selinux/ss/services.c
index 8ee4aae..d369856 100644
--- a/security/selinux/ss/services.c
+++ b/security/selinux/ss/services.c
@@ -1049,6 +1049,8 @@ static int validate_classes(struct policydb *p)
 
 	for (i = 1; i < kdefs->cts_len; i++) {
 		def_class = kdefs->class_to_string[i];
+		if (!def_class)
+			continue;
 		if (i > p->p_classes.nprim) {
 			printk(KERN_INFO
 			       "security:  class %s not defined in policy\n",
author	Stephen Smalley <sds@tycho.nsa.gov>	2007-03-26 13:36:26 -0400
committer	James Morris <jmorris@namei.org>	2007-04-26 01:35:58 -0400
commit	a764ae4b0781fac75f9657bc737c37ae59888389 (patch)
tree	eaff75fefa79a5db1713bf37d465ecc6dfbb2be4 /security/selinux/ss
parent	4f6a993f96a256e83b9be7612f958c7bc4ca9f00 (diff)
download	op-kernel-dev-a764ae4b0781fac75f9657bc737c37ae59888389.zip op-kernel-dev-a764ae4b0781fac75f9657bc737c37ae59888389.tar.gz