[PATCH] (2.6.24-rc3-mm2) -mm Smack mutex, capability, pointers, and spelling cleanup

From: Casey Schaufler <[EMAIL PROTECTED]> Addresses comments from akpm. Clean out unnecessary mutex initializations for Smack list locks. Once this is done, there is no need for them to be shared among multiple files, so pull them out of the header file and put them in the files where they belong

Re: [PATCH] capabilities: introduce per-process capability bounding set (v10)

Quoting KaiGai Kohei ([EMAIL PROTECTED]): > Andrew Morgan wrote: >> -BEGIN PGP SIGNED MESSAGE- >> Hash: SHA1 >> KaiGai Kohei wrote: >>> Serge, >>> >>> Please tell me the meanings of the following condition. >>> diff --git a/security/commoncap.c b/security/commoncap.c index 3a95990

Re: [PATCH] VM/Security: add security hook to do_brk

On Tue, Dec 04, 2007 at 11:06:55AM -0500, Eric Paris wrote: > Given a specifically crafted binary do_brk() can be used to get low > pages available in userspace virtually memory and can thus be used to > circumvent the mmap_min_addr low memory protection. Add security checks > in do_brk(). > > Si

[PATCH] VM/Security: add security hook to do_brk

Given a specifically crafted binary do_brk() can be used to get low pages available in userspace virtually memory and can thus be used to circumvent the mmap_min_addr low memory protection. Add security checks in do_brk(). Signed-off-by: Eric Paris <[EMAIL PROTECTED]> --- mm/mmap.c |4

Re: [PATCH] capabilities: introduce per-process capability bounding set (v10)

Andrew Morgan wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 KaiGai Kohei wrote: Serge, Please tell me the meanings of the following condition. diff --git a/security/commoncap.c b/security/commoncap.c index 3a95990..cb71bb0 100644 --- a/security/commoncap.c +++ b/security/commoncap.c @