diff options
| author | Stephen Smalley <[email protected]> | 2017-01-09 10:07:31 -0500 |
|---|---|---|
| committer | Paul Moore <[email protected]> | 2017-01-09 10:07:31 -0500 |
| commit | b21507e272627c434e8dd74e8d51fd8245281b59 (patch) | |
| tree | 3c8453724f6429e2bae5cd3cc9266104c2e6feea /tools/perf/scripts/python/call-graph-from-postgresql.py | |
| parent | be0554c9bf9f7cc96f5205df8f8bd3573b74320e (diff) | |
proc,security: move restriction on writing /proc/pid/attr nodes to proc
Processes can only alter their own security attributes via
/proc/pid/attr nodes. This is presently enforced by each individual
security module and is also imposed by the Linux credentials
implementation, which only allows a task to alter its own credentials.
Move the check enforcing this restriction from the individual
security modules to proc_pid_attr_write() before calling the security hook,
and drop the unnecessary task argument to the security hook since it can
only ever be the current task.
Signed-off-by: Stephen Smalley <[email protected]>
Acked-by: Casey Schaufler <[email protected]>
Acked-by: John Johansen <[email protected]>
Signed-off-by: Paul Moore <[email protected]>
Diffstat (limited to 'tools/perf/scripts/python/call-graph-from-postgresql.py')
0 files changed, 0 insertions, 0 deletions