projects / packages / kernel.git / blame
| Commit | Line | Data |
|---|---|---|
| 2380c486 JR |
1 | --- linux-2.6.20/grsecurity/gracl_shm.c~ 2007-03-24 04:54:27.000000000 +0100 |
| 2 | +++ linux-2.6.20/grsecurity/gracl_shm.c 2007-03-24 04:55:46.332159000 +0100 | |
| 3 | @@ -6,6 +6,7 @@ | |
| 4 | #include <linux/gracl.h> | |
| 5 | #include <linux/grsecurity.h> | |
| 6 | #include <linux/grinternal.h> | |
| 7 | +#include <linux/vs_pid.h> | |
| 8 | ||
| 9 | int | |
| 10 | gr_handle_shmat(const pid_t shm_cprid, const pid_t shm_lapid, | |
| 11 | --- linux-2.6.20/localversion-grsec 2007-03-24 04:54:27.000000000 +0100 | |
| 12 | +++ /dev/null 2007-03-24 05:05:10.455414500 +0100 | |
| 13 | @@ -1 +0,0 @@ | |
| 14 | --grsec | |
| 15 | --- linux-2.6.20/grsecurity/grsec_sock.c~ 2007-03-24 05:38:40.000000000 +0100 | |
| 16 | +++ linux-2.6.20/grsecurity/grsec_sock.c 2007-03-24 05:47:11.347998750 +0100 | |
| 17 | @@ -7,6 +7,7 @@ | |
| 18 | #include <linux/ip.h> | |
| 19 | #include <net/sock.h> | |
| 20 | #include <net/inet_sock.h> | |
| 21 | +#include <linux/vs_context.h> | |
| 22 | #include <linux/grsecurity.h> | |
| 23 | #include <linux/grinternal.h> | |
| 24 | #include <linux/gracl.h> | |
| 25 | === | |
| 26 | === analogous as capable() | |
| 27 | === | |
| 28 | --- a/kernel/capability.c~ 2007-12-11 00:46:02.000000000 +0100 | |
| 29 | +++ a/kernel/capability.c 2007-12-11 01:35:00.244481500 +0100 | |
| 30 | @@ -322,6 +322,8 @@ | |
| 49cd8c1d | 31 | BUG(); |
| 32 | } | |
| 2380c486 | 33 | |
| 2380c486 JR |
34 | + if (vs_check_bit(VXC_CAP_MASK, cap) && !vx_mcaps(1L << cap)) |
| 35 | + return 0; | |
| 36 | if (security_capable(cap) == 0 && gr_is_capable_nolog(cap)) { | |
| 37 | current->flags |= PF_SUPERPRIV; | |
| 38 | return 1; | |
| 39 |