3.2-rc1 rebase review

Tetsuo Handa from-ubuntu at I-love.SAKURA.ne.jp
Fri Dec 9 03:21:23 UTC 2011

Kees Cook wrote:
> >> Okay, I see what you mean now. It's skipping the register_security()
> >> part that hadn't sunk in. :)
> Tetsuo, does this look okay to you? I incorportated some additional
> feedback about #ifdef clutter.

Looks OK, except one thing.

--- a/include/linux/security.h
+++ b/include/linux/security.h
@@ -3070,5 +3070,47 @@ static inline void free_secdata(void *secdata)
 { }
 #endif /* CONFIG_SECURITY */
+extern int yama_ptrace_access_check(struct task_struct *child,
+                                   unsigned int mode);
+extern int yama_path_link(struct dentry *old_dentry, struct path *new_dir,

Please use "#ifdef CONFIG_SECURITY_YAMA".

More information about the kernel-team mailing list