SELinux Mailing List - NSA/CSS

Skip All Menus Skip Top Menu

Top Navigation Menus

Skip Research Menus

Research Menu

Research Security Enhanced Linux What's New Frequently Asked Questions Background Documents License Download Participating Mail List Archives Remaining Work Contributors Related Work Press Releases Information Assurance Research NIARL In-house Research Areas Mathematical Sciences Program Sabbaticals Computer & Information Sciences Research Technology Transfer Advanced Computing Advanced Mathematics Communications & Networking Information Processing Microelectronics Other Technologies Technology Fact Sheets Publications Related Links	Skip Search Box Searchbox SELinux Mailing List Re: [PATCH 3/3] CRED: Move the effective capabilities into the cred struct This message: [ Message body ] [ More options ] Related messages: [ Next message ] [ Previous message ] [ In reply to ] [ Next in thread ] [ Replies ] From: Andrew Morgan <morgan_at_kernel.org> Date: Wed, 19 Sep 2007 21:11:26 -0700 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 David Howells wrote: > Move the effective capabilities mask from the task struct into the credentials > record. > > Note that the effective capabilities mask in the cred struct shadows that in > the task_struct because a thread can have its capabilities masks changed by > another thread. The shadowing is performed by update_current_cred() which is > invoked on entry to any system call that might need it. OOC If we were to simply drop support for one process changing the capabilities of another, would we need this patch? Thanks Andrew -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (GNU/Linux) iD8DBQFG8fLrQheEq9QabfIRApPOAKCHAoazhTTpY/qSjdmRZxDptqeqiACfd4Q7 mdIPx+xpG19ih9uiVv1NSBU= =TfZd -----END PGP SIGNATURE----- -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. Received on Fri 21 Sep 2007 - 15:55:25 EDT This message: [ Message body ] Next message: Paul Moore: "Re: [RFC] [PATCH 4/4] SELinux changes" Previous message: David Howells: "[PATCH 02/22] CRED: Split the task security data and move part of it into struct cred" In reply to: David Howells: "[PATCH 3/3] CRED: Move the effective capabilities into the cred struct" Next in thread: David Howells: "Re: [PATCH 3/3] CRED: Move the effective capabilities into the cred struct" Reply: David Howells: "Re: [PATCH 3/3] CRED: Move the effective capabilities into the cred struct" Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]
	Date Posted: Jan 15, 2009 \| Last Modified: Jan 15, 2009 \| Last Reviewed: Jan 15, 2009

bottom