From: David Howells <dhowells@redhat.com>
Date: Wed, 29 Apr 2009 12:45:05 +0000 (+0100)
Subject: SELinux: Don't flush inherited SIGKILL during execve()
X-Git-Tag: v2.6.31-rc1~395^2^2~38
X-Git-Url: http://git.openpandora.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=3bcac0263f0b45e67a64034ebcb69eb9abb742f4;p=pandora-kernel.git

SELinux: Don't flush inherited SIGKILL during execve()

Don't flush inherited SIGKILL during execve() in SELinux's post cred commit
hook.  This isn't really a security problem: if the SIGKILL came before the
credentials were changed, then we were right to receive it at the time, and
should honour it; if it came after the creds were changed, then we definitely
should honour it; and in any case, all that will happen is that the process
will be scrapped before it ever returns to userspace.

Signed-off-by: David Howells <dhowells@redhat.com>
Signed-off-by: Oleg Nesterov <oleg@redhat.com>
Signed-off-by: James Morris <jmorris@namei.org>
---

Reading git-diff-tree failed