CRED: Separate task security context from task_struct Separate the task security context from task_struct. At this point, the security data is temporarily embedded in the task_struct with two pointers pointing to it. Note that the Alpha arch is altered as it refers to (E)UID and (E)GID in entry.S via asm-offsets. With comment fixes Signed-off-by: Marc Dionne <marc.c.dionne@gmail.com> Signed-off-by: David Howells <dhowells@redhat.com> Acked-by: James Morris <jmorris@namei.org> Acked-by: Serge Hallyn <serue@us.ibm.com> Signed-off-by: James Morris <jmorris@namei.org>

commit: b6dff3ec5e116e3af6f537d4caedcad6b9e5082a [log] [tgz]
author: David Howells <dhowells@redhat.com> Fri Nov 14 10:39:16 2008 +1100
committer: James Morris <jmorris@namei.org> Fri Nov 14 10:39:16 2008 +1100
tree: 9e76f972eb7ce9b84e0146c8e4126a3f86acb428
parent: 15a2460ed0af7538ca8e6c610fe607a2cd9da142 [diff] [blame]
diff --git a/security/smack/smack_access.c b/security/smack/smack_access.c
index 79ff21ed..b6dd4fc 100644
--- a/security/smack/smack_access.c
+++ b/security/smack/smack_access.c

@@ -164,7 +164,7 @@
 {
 	int rc;
 
-	rc = smk_access(current->security, obj_label, mode);
+	rc = smk_access(current->cred->security, obj_label, mode);
 	if (rc == 0)
 		return 0;
 
@@ -173,7 +173,7 @@
 	 * only one that gets privilege and current does not
 	 * have that label.
 	 */
-	if (smack_onlycap != NULL && smack_onlycap != current->security)
+	if (smack_onlycap != NULL && smack_onlycap != current->cred->security)
 		return rc;
 
 	if (capable(CAP_MAC_OVERRIDE))
commit	b6dff3ec5e116e3af6f537d4caedcad6b9e5082a	[log] [tgz]
author	David Howells <dhowells@redhat.com>	Fri Nov 14 10:39:16 2008 +1100
committer	James Morris <jmorris@namei.org>	Fri Nov 14 10:39:16 2008 +1100
tree	9e76f972eb7ce9b84e0146c8e4126a3f86acb428
parent	15a2460ed0af7538ca8e6c610fe607a2cd9da142 [diff] [blame]