diff options
| author | Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp> | 2010-06-23 23:00:25 -0400 |
|---|---|---|
| committer | James Morris <jmorris@namei.org> | 2010-08-02 01:34:44 -0400 |
| commit | 063821c8160568b3390044390c8328e36c5696ad (patch) | |
| tree | 68a61753cdc6b0edaf0358eebdea8c20aaa713b1 /security/tomoyo/common.h | |
| parent | 475e6fa3d340e75a454ea09191a29e52e2ee6e71 (diff) | |
TOMOYO: Allow reading only execute permission.
Policy editor needs to know allow_execute entries in order to build domain
transition tree. Reading all entries is slow. Thus, allow reading only
allow_execute entries.
Signed-off-by: Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp>
Signed-off-by: James Morris <jmorris@namei.org>
Diffstat (limited to 'security/tomoyo/common.h')
| -rw-r--r-- | security/tomoyo/common.h | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/security/tomoyo/common.h b/security/tomoyo/common.h index cdc9ef56fd86..67b9aeae80a7 100644 --- a/security/tomoyo/common.h +++ b/security/tomoyo/common.h | |||
| @@ -571,6 +571,8 @@ struct tomoyo_io_buffer { | |||
| 571 | bool read_single_domain; | 571 | bool read_single_domain; |
| 572 | /* Extra variable for reading. */ | 572 | /* Extra variable for reading. */ |
| 573 | u8 read_bit; | 573 | u8 read_bit; |
| 574 | /* Read only TOMOYO_TYPE_EXECUTE */ | ||
| 575 | bool print_execute_only; | ||
| 574 | /* Bytes available for reading. */ | 576 | /* Bytes available for reading. */ |
| 575 | int read_avail; | 577 | int read_avail; |
| 576 | /* Size of read buffer. */ | 578 | /* Size of read buffer. */ |