TOMOYO: Allow reading only execute permission. Policy editor needs to know allow_execute entries in order to build domain transition tree. Reading all entries is slow. Thus, allow reading only allow_execute entries. Signed-off-by: Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp> Signed-off-by: James Morris <jmorris@namei.org>

commit: 063821c8160568b3390044390c8328e36c5696ad [log] [tgz]
author: Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp> Thu Jun 24 12:00:25 2010 +0900
committer: James Morris <jmorris@namei.org> Mon Aug 02 15:34:44 2010 +1000
tree: 68a61753cdc6b0edaf0358eebdea8c20aaa713b1
parent: 475e6fa3d340e75a454ea09191a29e52e2ee6e71 [diff] [blame]
diff --git a/security/tomoyo/common.h b/security/tomoyo/common.h
index cdc9ef5..67b9aea 100644
--- a/security/tomoyo/common.h
+++ b/security/tomoyo/common.h

@@ -571,6 +571,8 @@
 	bool read_single_domain;
 	/* Extra variable for reading.          */
 	u8 read_bit;
+	/* Read only TOMOYO_TYPE_EXECUTE        */
+	bool print_execute_only;
 	/* Bytes available for reading.         */
 	int read_avail;
 	/* Size of read buffer.                 */
commit	063821c8160568b3390044390c8328e36c5696ad	[log] [tgz]
author	Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp>	Thu Jun 24 12:00:25 2010 +0900
committer	James Morris <jmorris@namei.org>	Mon Aug 02 15:34:44 2010 +1000
tree	68a61753cdc6b0edaf0358eebdea8c20aaa713b1
parent	475e6fa3d340e75a454ea09191a29e52e2ee6e71 [diff] [blame]