From c087734884b7d7eb308f190514e9c4740c662f23 Mon Sep 17 00:00:00 2001 From: José Bollo Date: Tue, 21 Jan 2020 17:06:11 +0100 Subject: Smack: Improve safety of signal policy MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This change enforce task to have `append` Smack's capacity (instead of `write`) to send a signal to an other task. Bug-AGL: SPEC-1780 Change-Id: I79687fcd0242db591255646d3b5c545badea3d47 Signed-off-by: José Bollo --- meta-security/recipes-kernel/linux/linux/smack.cfg | 1 + 1 file changed, 1 insertion(+) diff --git a/meta-security/recipes-kernel/linux/linux/smack.cfg b/meta-security/recipes-kernel/linux/linux/smack.cfg index 62f465a45..45a92f148 100644 --- a/meta-security/recipes-kernel/linux/linux/smack.cfg +++ b/meta-security/recipes-kernel/linux/linux/smack.cfg @@ -5,4 +5,5 @@ CONFIG_EXT3_FS_SECURITY=y CONFIG_EXT4_FS_SECURITY=y CONFIG_SECURITY=y CONFIG_SECURITY_SMACK=y +CONFIG_SECURITY_SMACK_APPEND_SIGNALS=y CONFIG_TMPFS_XATTR=y -- cgit 1.2.3-korg