[PATCH] selinux: inherit /proc/self/attr/keycreate across fork
authorMichael LeMay <mdlemay@epoch.ncsc.mil>
Tue, 27 Jun 2006 09:53:42 +0000 (02:53 -0700)
committerLinus Torvalds <torvalds@g5.osdl.org>
Wed, 28 Jun 2006 00:32:37 +0000 (17:32 -0700)
commit28eba5bf9d4bf3ba4d58d985abf3a2903b7f2125
treee825fc3fb6bdd81ae0aa146572406eb69bc5404b
parent76b67ed9dce69a6a329cdd66f94af1787f417b62
[PATCH] selinux: inherit /proc/self/attr/keycreate across fork

Update SELinux to cause the keycreate process attribute held in
/proc/self/attr/keycreate to be inherited across a fork and reset upon
execve.  This is consistent with the handling of the other process
attributes provided by SELinux and also makes it simpler to adapt logon
programs to properly handle the keycreate attribute.

Signed-off-by: Michael LeMay <mdlemay@epoch.ncsc.mil>
Signed-off-by: David Howells <dhowells@redhat.com>
Acked-by: Stephen Smalley <sds@tycho.nsa.gov>
Acked-by: James Morris <jmorris@namei.org>
Signed-off-by: Andrew Morton <akpm@osdl.org>
Signed-off-by: Linus Torvalds <torvalds@osdl.org>
security/selinux/hooks.c