[PATCH] selinux: add hooks for key subsystem

Introduce SELinux hooks to support the access key retention subsystem within the kernel. Incorporate new flask headers from a modified version of the SELinux reference policy, with support for the new security class representing retained keys. Extend the "key_alloc" security hook with a task parameter representing the intended ownership context for the key being allocated. Attach security information to root's default keyrings within the SELinux initialization routine. Has passed David's testsuite. Signed-off-by: Michael LeMay <[email protected]> Signed-off-by: David Howells <[email protected]> Signed-off-by: James Morris <[email protected]> Acked-by: Chris Wright <[email protected]> Signed-off-by: Andrew Morton <[email protected]> Signed-off-by: Linus Torvalds <[email protected]>
author: Michael LeMay <[email protected]> 2006-06-22 14:47:17 -0700
committer: Linus Torvalds <[email protected]> 2006-06-22 15:05:55 -0700
commit: d720024e94de4e8b7f10ee83c532926f3ad5d708 (patch)
tree: 8f21613c29a26bfbeb334cb0104b8b998b09fbdc /kernel
parent: f893afbe1262e27e91234506f72e17716190dd2f (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/kernel/user.c b/kernel/user.c
index 4b1eb745afa1..6408c0424291 100644
--- a/kernel/user.c
+++ b/kernel/user.c
@@ -148,7 +148,7 @@ struct user_struct * alloc_uid(uid_t uid)
 		new->mq_bytes = 0;
 		new->locked_shm = 0;
 
-		if (alloc_uid_keyring(new) < 0) {
+		if (alloc_uid_keyring(new, current) < 0) {
 			kmem_cache_free(uid_cachep, new);
 			return NULL;
 		}
author	Michael LeMay <[email protected]>	2006-06-22 14:47:17 -0700
committer	Linus Torvalds <[email protected]>	2006-06-22 15:05:55 -0700
commit	d720024e94de4e8b7f10ee83c532926f3ad5d708 (patch)
tree	8f21613c29a26bfbeb334cb0104b8b998b09fbdc /kernel
parent	f893afbe1262e27e91234506f72e17716190dd2f (diff)