Re: How to lock current->signal->tty

From: Albert Cahalan
Date: Tue Aug 08 2006 - 23:59:41 EST

Next message: Paul Mackerras: "Re: [PATCH] pidspace: is_init()"
Previous message: Dmitry Torokhov: "Re: 2.6.18-rc3-mm2"
In reply to: Jan Kara: "Re: How to lock current->signal->tty"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Stephen Smalley writes:

SELinux is just revalidating access to the tty when the task
changes contexts upon execve, and resetting the tty if the
task is no longer allowed to use it. Likewise with the open
file descriptors that would be inherited. No clearing of the
ttys of other tasks required as far as SELinux is concerned,
although that might not fit with normal semantics.

If the process goes back to the old context after a second
execve or via special rights, it ought regain access to the tty.

(just block access instead of resetting the tty)
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Paul Mackerras: "Re: [PATCH] pidspace: is_init()"
Previous message: Dmitry Torokhov: "Re: 2.6.18-rc3-mm2"
In reply to: Jan Kara: "Re: How to lock current->signal->tty"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]