mm/oom_kill.c · a2f2945a99057c7d44043465906c6bb63c3368a0 · Bryan O'Donoghue / Kernel

Nov 11, 2008

The oomkiller calculations make decisions based on capabilities. Since · a2f2945a

Eric Paris authored Nov 11, 2008


these are not security decisions and LSMs should not record if they fall
the request they should use the new has_capability_noaudit() interface so
the denials will not be recorded.

Signed-off-by: Eric Paris <eparis@redhat.com>
Acked-by: Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: James Morris <jmorris@namei.org>

a2f2945a

The oomkiller calculations make decisions based on capabilities. Since

Eric Paris authored Nov 11, 2008


these are not security decisions and LSMs should not record if they fall
the request they should use the new has_capability_noaudit() interface so
the denials will not be recorded.

Signed-off-by: Eric Paris <eparis@redhat.com>
Acked-by: Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: James Morris <jmorris@namei.org>