projects / platform / adaptation / renesas_rcar / renesas_kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 398ce07) | patch
Smack: Prevent the * and @ labels from being used in SMACK64EXEC
authorCasey Schaufler <casey@schaufler-ca.com>
Tue, 17 Dec 2013 00:27:26 +0000 (16:27 -0800)
committerCasey Schaufler <casey@schaufler-ca.com>
Thu, 19 Dec 2013 21:05:24 +0000 (13:05 -0800)
commit19760ad03cc639d6f6f8e9beff0f8e6df654b677
tree66f40219fd1a35b7d6bee6eab7aee0fa8405a287tree | snapshot
parent398ce073700a2a3e86b5a0b1edecdddfa3996b27commit | diff
Smack: Prevent the * and @ labels from being used in SMACK64EXEC

Smack prohibits processes from using the star ("*") and web ("@") labels
because we don't want files with those labels getting created implicitly.
All setting of those labels should be done explicitly. The trouble is that
there is no check for these labels in the processing of SMACK64EXEC. That
is repaired.

Targeted for git://git.gitorious.org/smack-next/kernel.git

Signed-off-by: Casey Schaufler <casey@schaufler-ca.com>
security/smack/smack_lsm.c diff | blob | history
Domain: System / Uncategorized;