Index: linux-2.6.12-jail/security/selinux/include/av_perm_to_string.h
===================================================================
--- linux-2.6.12-jail.orig/security/selinux/include/av_perm_to_string.h	2005-06-29 15:34:29.000000000 -0500
+++ linux-2.6.12-jail/security/selinux/include/av_perm_to_string.h	2005-06-29 15:34:34.000000000 -0500
@@ -70,6 +70,7 @@
    S_(SECCLASS_PROCESS, PROCESS__DYNTRANSITION, "dyntransition")
    S_(SECCLASS_PROCESS, PROCESS__SETCURRENT, "setcurrent")
    S_(SECCLASS_PROCESS, PROCESS__EXECMEM, "execmem")
+   S_(SECCLASS_PROCESS, PROCESS__TASKLOOKUP, "tasklookup")
    S_(SECCLASS_MSGQ, MSGQ__ENQUEUE, "enqueue")
    S_(SECCLASS_MSG, MSG__SEND, "send")
    S_(SECCLASS_MSG, MSG__RECEIVE, "receive")
Index: linux-2.6.12-jail/security/selinux/hooks.c
===================================================================
--- linux-2.6.12-jail.orig/security/selinux/hooks.c	2005-06-29 15:34:29.000000000 -0500
+++ linux-2.6.12-jail/security/selinux/hooks.c	2005-06-29 15:34:34.000000000 -0500
@@ -2774,6 +2774,11 @@ static void selinux_task_to_inode(struct
 	return;
 }
 
+static int selinux_task_lookup(struct task_struct *p)
+{
+	return task_has_perm(current, p, PROCESS__TASKLOOKUP);
+}
+
 #ifdef CONFIG_SECURITY_NETWORK
 
 /* Returns error only if unable to parse addresses */
@@ -4334,6 +4339,7 @@ static struct security_operations selinu
 	.task_prctl =			selinux_task_prctl,
 	.task_reparent_to_init =	selinux_task_reparent_to_init,
 	.task_to_inode =                selinux_task_to_inode,
+	.task_lookup =			selinux_task_lookup,
 
 	.ipc_permission =		selinux_ipc_permission,
 
Index: linux-2.6.12-jail/security/selinux/include/av_permissions.h
===================================================================
--- linux-2.6.12-jail.orig/security/selinux/include/av_permissions.h	2005-06-29 15:34:29.000000000 -0500
+++ linux-2.6.12-jail/security/selinux/include/av_permissions.h	2005-06-29 15:34:34.000000000 -0500
@@ -465,6 +465,7 @@
 #define PROCESS__DYNTRANSITION                    0x00800000UL
 #define PROCESS__SETCURRENT                       0x01000000UL
 #define PROCESS__EXECMEM                          0x02000000UL
+#define PROCESS__TASKLOOKUP                       0x04000000UL
 
 #define IPC__CREATE                               0x00000001UL
 #define IPC__DESTROY                              0x00000002UL