TOMOYO: Add policy namespace support. (bd03a3e4) · Commits · Mirrors / git.yoctoproject.org / linux-yocto · GitLab

Commit bd03a3e4 authored Jun 26, 2011 by

Tetsuo Handa Committed by James Morris Jun 29, 2011

TOMOYO: Add policy namespace support.

Mauras Olivier reported that it is difficult to use TOMOYO in LXC environments,
for TOMOYO cannot distinguish between environments outside the container and
environments inside the container since LXC environments are created using
pivot_root(). To address this problem, this patch introduces policy namespace.

Each policy namespace has its own set of domain policy, exception policy and
profiles, which are all independent of other namespaces. This independency
allows users to develop policy without worrying interference among namespaces.

Signed-off-by: Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp>
Signed-off-by: James Morris <jmorris@namei.org>

parent 32997144

Hide whitespace changes

Inline Side-by-side

mirror @mirror
mentioned in commit 2caa6050
· Mar 12, 2024

mentioned in commit 2caa6050

mentioned in commit 2caa605079488da9601099fbda460cfc1702839f

Toggle commit list
mirror @mirror
mentioned in commit 7d930a4d
· Mar 15, 2024

mentioned in commit 7d930a4d

mentioned in commit 7d930a4da17958f869ef679ee0e4a8729337affc

Toggle commit list

Please register or to comment