review.tizen.org Git - platform/kernel/linux-rpi.git/commit

author	Mickaël Salaün <mic@linux.microsoft.com>
	Thu, 22 Apr 2021 15:41:16 +0000 (17:41 +0200)
committer	James Morris <jamorris@linux.microsoft.com>
	Thu, 22 Apr 2021 19:22:11 +0000 (12:22 -0700)
commit	83e804f0bfee2247b1c0aa64845c81a38562da7a
tree	18a47335116fa823fc6a29cb67c92e412064b583	tree \| snapshot
parent	cb2c7d1a1776057c9a1f48ed1250d85e94d4850d	commit \| diff

fs,security: Add sb_delete hook

The sb_delete security hook is called when shutting down a superblock,
which may be useful to release kernel objects tied to the superblock's
lifetime (e.g. inodes).

This new hook is needed by Landlock to release (ephemerally) tagged
struct inodes. This comes from the unprivileged nature of Landlock
described in the next commit.

Cc: Al Viro <viro@zeniv.linux.org.uk>
Cc: James Morris <jmorris@namei.org>
Signed-off-by: Mickaël Salaün <mic@linux.microsoft.com>
Reviewed-by: Jann Horn <jannh@google.com>
Acked-by: Serge Hallyn <serge@hallyn.com>
Reviewed-by: Kees Cook <keescook@chromium.org>
Link: https://lore.kernel.org/r/20210422154123.13086-7-mic@digikod.net
Signed-off-by: James Morris <jamorris@linux.microsoft.com>

fs/super.c		diff \| blob \| history
include/linux/lsm_hook_defs.h		diff \| blob \| history
include/linux/lsm_hooks.h		diff \| blob \| history
include/linux/security.h		diff \| blob \| history
security/security.c		diff \| blob \| history