projects / platform / kernel / linux-rpi.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7e61148) | patch
LSM: Separate idea of "major" LSM from "exclusive" LSM
authorKees Cook <keescook@chromium.org>
Thu, 20 Sep 2018 02:57:06 +0000 (19:57 -0700)
committerKees Cook <keescook@chromium.org>
Tue, 8 Jan 2019 21:18:43 +0000 (13:18 -0800)
commit14bd99c821f7ace0e8110a1bfdfaa27e1788e20f
treea5feee1ff6b832eaffef89d1bde995e0574723e2tree | snapshot
parent7e611486d905f435faf80969deed68a615019e6bcommit | diff
LSM: Separate idea of "major" LSM from "exclusive" LSM

In order to both support old "security=" Legacy Major LSM selection, and
handling real exclusivity, this creates LSM_FLAG_EXCLUSIVE and updates
the selection logic to handle them.

Signed-off-by: Kees Cook <keescook@chromium.org>
Reviewed-by: Casey Schaufler <casey@schaufler-ca.com>
include/linux/lsm_hooks.h diff | blob | history
security/apparmor/lsm.c diff | blob | history
security/security.c diff | blob | history
security/selinux/hooks.c diff | blob | history
security/smack/smack_lsm.c diff | blob | history
security/tomoyo/tomoyo.c diff | blob | history
Domain: System / Kernel;