cred: get rid of CONFIG_DEBUG_CREDENTIALS

This code is rarely (never?) enabled by distros, and it hasn't caught anything in decades. Let's kill off this legacy debug code. Suggested-by: Linus Torvalds <torvalds@linuxfoundation.org> Signed-off-by: Jens Axboe <axboe@kernel.dk> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
author: Jens Axboe <axboe@kernel.dk> 2023-12-15 13:40:57 -0700
committer: Linus Torvalds <torvalds@linux-foundation.org> 2023-12-15 14:19:48 -0800
commit: ae1914174a63a558113e80d24ccac2773f9f7b2b (patch)
tree: d64b66a96dedbaa318d598c405b54953e052de29 /security
parent: f8fa5d76925991976b3e7076f9d1052515ec1fca (diff)
1 files changed, 0 insertions, 6 deletions
diff --git a/security/selinux/hooks.c b/security/selinux/hooks.c
index feda711c6b7b..340b2bbbb2dd 100644
--- a/security/selinux/hooks.c
+++ b/security/selinux/hooks.c
@@ -1660,8 +1660,6 @@ static int inode_has_perm(const struct cred *cred,
 	struct inode_security_struct *isec;
 	u32 sid;
 
-	validate_creds(cred);
-
 	if (unlikely(IS_PRIVATE(inode)))
 		return 0;
 
@@ -3056,8 +3054,6 @@ static int selinux_inode_follow_link(struct dentry *dentry, struct inode *inode,
 	struct inode_security_struct *isec;
 	u32 sid;
 
-	validate_creds(cred);
-
 	ad.type = LSM_AUDIT_DATA_DENTRY;
 	ad.u.dentry = dentry;
 	sid = cred_sid(cred);
@@ -3101,8 +3097,6 @@ static int selinux_inode_permission(struct inode *inode, int mask)
 	if (!mask)
 		return 0;
 
-	validate_creds(cred);
-
 	if (unlikely(IS_PRIVATE(inode)))
 		return 0;
author	Jens Axboe <axboe@kernel.dk>	2023-12-15 13:40:57 -0700
committer	Linus Torvalds <torvalds@linux-foundation.org>	2023-12-15 14:19:48 -0800
commit	ae1914174a63a558113e80d24ccac2773f9f7b2b (patch)
tree	d64b66a96dedbaa318d598c405b54953e052de29 /security
parent	f8fa5d76925991976b3e7076f9d1052515ec1fca (diff)