Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm / 676dac4b1bee0469d6932f698aeb77e8489f5861
commit676dac4b1bee0469d6932f698aeb77e8489f5861[log] [tgz]
authorCasey Schaufler <casey@schaufler-ca.com>Thu Dec 02 06:43:39 2010 -0800
committerCasey Schaufler <casey@schaufler-ca.com>Thu Dec 02 06:43:39 2010 -0800
tree196b4cb35cf8dfdff0698dc4368cfd00acc7391a
parent93ae86e759299718c611bc543b9b1633bf32905a [diff]
This patch adds a new security attribute to Smack called
SMACK64EXEC. It defines label that is used while task is
running.

Exception: in smack_task_wait() child task is checked
for write access to parent task using label inherited
from the task that forked it.

Fixed issues from previous submit:
- SMACK64EXEC was not read when SMACK64 was not set.
- inode security blob was not updated after setting
  SMACK64EXEC
- inode security blob was not updated when removing
  SMACK64EXEC
5 files changed
tree: 196b4cb35cf8dfdff0698dc4368cfd00acc7391a
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. COPYING
  25. CREDITS
  26. Kbuild
  27. Kconfig
  28. MAINTAINERS
  29. Makefile
  30. README
  31. REPORTING-BUGS