xen/xsm/flask: Fix flask_tbufcontrol hook

The flask_tbufcontrol hook currently calls domain_has_xen with the
second argument being a class (SECCLASS_XEN) instead of a permission.
This patch fixes the hook so that it passes the XEN__TBUFCONTROL
permission instead.

Signed-off-by: James Carter <jwcart2@tycho.nsa.gov>

diff --git a/xen/xsm/flask/hooks.c b/xen/xsm/flask/hooks.c
index 385cccfe43244c02813c23dd7c8ddabcf3e65547..30c91e5691d067793d863c4854d96906d9114d0e 100644 (file)
--- a/xen/xsm/flask/hooks.c
+++ b/xen/xsm/flask/hooks.c
@@ -564,7 +564,7 @@ static int flask_set_target(struct domain *d, struct domain *e)
 
 static int flask_tbufcontrol(void)
 {
-    return domain_has_xen(current->domain, SECCLASS_XEN);
+    return domain_has_xen(current->domain, XEN__TBUFCONTROL);
 }
 
 static int flask_readconsole(uint32_t clear)