tomoyo: Allow multiple use_group lines. Being able to specify multiple "use_group" lines makes it easier to write whitelisted policies. Signed-off-by: Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp> Signed-off-by: James Morris <james.morris@microsoft.com>

commit: 4b42564181d683d767b495d7041b1f229468042f [log] [tgz]
author: Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp> Thu Jan 24 18:37:36 2019 +0900
committer: James Morris <james.morris@microsoft.com> Thu Jan 24 14:50:27 2019 -0800
tree: 8f100d312c522aa2a0d3cfbb118293919826702d
parent: cdcf6723add57a0ffb37cfde1ca54a00f5715b71 [diff] [blame]
diff --git a/security/tomoyo/common.h b/security/tomoyo/common.h
index f2c458a..74dbd3b 100644
--- a/security/tomoyo/common.h
+++ b/security/tomoyo/common.h

@@ -684,8 +684,9 @@ struct tomoyo_domain_info {
 	const struct tomoyo_path_info *domainname;
 	/* Namespace for this domain. Never NULL. */
 	struct tomoyo_policy_namespace *ns;
+	/* Group numbers to use.   */
+	unsigned long group[TOMOYO_MAX_ACL_GROUPS / BITS_PER_LONG];
 	u8 profile;        /* Profile number to use. */
-	u8 group;          /* Group number to use.   */
 	bool is_deleted;   /* Delete flag.           */
 	bool flags[TOMOYO_MAX_DOMAIN_INFO_FLAGS];
 	atomic_t users; /* Number of referring tasks. */
commit	4b42564181d683d767b495d7041b1f229468042f	[log] [tgz]
author	Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp>	Thu Jan 24 18:37:36 2019 +0900
committer	James Morris <james.morris@microsoft.com>	Thu Jan 24 14:50:27 2019 -0800
tree	8f100d312c522aa2a0d3cfbb118293919826702d
parent	cdcf6723add57a0ffb37cfde1ca54a00f5715b71 [diff] [blame]