]> git.baikalelectronics.ru Git - kernel.git/commit
Currently SELinux jumps through some ugly hoops to not audit a capbility
authorEric Paris <eparis@redhat.com>
Tue, 11 Nov 2008 11:02:57 +0000 (22:02 +1100)
committerJames Morris <jmorris@namei.org>
Tue, 11 Nov 2008 11:02:57 +0000 (22:02 +1100)
commit9d98ea63aeca8898a4317010d57de8a92170e5dc
tree868832ca0e199e4f173e23375cffb5fc3870402c
parent10f80f742f0154f327d55e0a6fe8080d3444323a
Currently SELinux jumps through some ugly hoops to not audit a capbility
check when determining if a process has additional powers to override
memory limits or when trying to read/write illegal file labels.  Use
the new noaudit call instead.

Signed-off-by: Eric Paris <eparis@redhat.com>
Acked-by: Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: James Morris <jmorris@namei.org>
security/selinux/hooks.c