Merge branch 'master' of ssh://master.kernel.org/pub/scm/linux/kernel/git/kaber/nf-2.6

author: Patrick McHardy <kaber@trash.net> 2011-04-13 13:32:28 +0200
committer: Patrick McHardy <kaber@trash.net> 2011-04-13 13:32:28 +0200
commit: b32e3dc7860d00124fa432dba09667e647cb9bcc (patch)
tree: 2fa6e56f389431dfb84609d3d7572cad76e88e71 /security/apparmor/lsm.c
parent: 6604271c5bc658a6067ed0c3deba4d89e0e50382 (diff)
parent: 96120d86fe302c006259baee9061eea9e1b9e486 (diff)
1 files changed, 3 insertions, 2 deletions
diff --git a/security/apparmor/lsm.c b/security/apparmor/lsm.c
index d21a427a35a..ae3a698415e 100644
--- a/security/apparmor/lsm.c
+++ b/security/apparmor/lsm.c
@@ -22,6 +22,7 @@
 #include <linux/ctype.h>
 #include <linux/sysctl.h>
 #include <linux/audit.h>
+#include <linux/user_namespace.h>
 #include <net/sock.h>
 
 #include "include/apparmor.h"
@@ -136,11 +137,11 @@ static int apparmor_capget(struct task_struct *target, kernel_cap_t *effective,
 }
 
 static int apparmor_capable(struct task_struct *task, const struct cred *cred,
-			    int cap, int audit)
+			    struct user_namespace *ns, int cap, int audit)
 {
 	struct aa_profile *profile;
 	/* cap_capable returns 0 on success, else -EPERM */
-	int error = cap_capable(task, cred, cap, audit);
+	int error = cap_capable(task, cred, ns, cap, audit);
 	if (!error) {
 		profile = aa_cred_profile(cred);
 		if (!unconfined(profile))
author	Patrick McHardy <kaber@trash.net>	2011-04-13 13:32:28 +0200
committer	Patrick McHardy <kaber@trash.net>	2011-04-13 13:32:28 +0200
commit	b32e3dc7860d00124fa432dba09667e647cb9bcc (patch)
tree	2fa6e56f389431dfb84609d3d7572cad76e88e71 /security/apparmor/lsm.c
parent	6604271c5bc658a6067ed0c3deba4d89e0e50382 (diff)
parent	96120d86fe302c006259baee9061eea9e1b9e486 (diff)