pub fn exec_binprm<L>(
locked: &mut Locked<L>,
current_task: &CurrentTask,
elf_security_state: &ResolvedElfState,
)where
L: LockBefore<ThreadGroupLimits>,Expand description
Updates the SELinux thread group state on exec.
Corresponds to the exec_binprm function described in the SELinux Notebook.
Resets state that should not be inherited during an exec domain transition. Then updates the
current task’s SID based on the security state of the resolved executable.