TOMOYO: Fix interactive judgment functionality.
authorTetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp>
Wed, 19 Oct 2011 21:48:57 +0000 (06:48 +0900)
committerJames Morris <jmorris@namei.org>
Fri, 28 Oct 2011 21:34:41 +0000 (08:34 +1100)
commit59df3166ef293288d164ab3362a717743e62d20c
treeee10bb9ae940bf59beaf05dd5925d03044eb6559
parentc45ed235abf1b0b6666417e3c394f18717976acd
TOMOYO: Fix interactive judgment functionality.

Commit 17fcfbd9 "TOMOYO: Add interactive enforcing mode." introduced ability
to query access decision using userspace programs. It was using global PID for
reaching policy configuration of the process. However, use of PID returns stale
policy configuration when the process's subjective credentials and objective
credentials differ. Fix this problem by allowing reaching policy configuration
via query id.

Signed-off-by: Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp>
Signed-off-by: James Morris <jmorris@namei.org>
security/tomoyo/common.c