projects / platform / kernel / linux-rpi.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: afb1cbe) | patch
LSM: Infrastructure management of the task security
authorCasey Schaufler <casey@schaufler-ca.com>
Sat, 22 Sep 2018 00:19:37 +0000 (17:19 -0700)
committerKees Cook <keescook@chromium.org>
Tue, 8 Jan 2019 21:18:45 +0000 (13:18 -0800)
commitf4ad8f2c40769b3cc9497ba0883bbaf823f7752f
treeae8e8bfc5a3abfaa5ea3c90908efd941a230bbdftree | snapshot
parentafb1cbe37440c7f38b9cf46fc331cc9dfd5cce21commit | diff
LSM: Infrastructure management of the task security

Move management of the task_struct->security blob out
of the individual security modules and into the security
infrastructure. Instead of allocating the blobs from within
the modules the modules tell the infrastructure how much
space is required, and the space is allocated there.
The only user of this blob is AppArmor. The AppArmor use
is abstracted to avoid future conflict.

Signed-off-by: Casey Schaufler <casey@schaufler-ca.com>
Reviewed-by: Kees Cook <keescook@chromium.org>
[kees: adjusted for ordered init series]
Signed-off-by: Kees Cook <keescook@chromium.org>
include/linux/lsm_hooks.h diff | blob | history
security/apparmor/include/task.h diff | blob | history
security/apparmor/lsm.c diff | blob | history
security/security.c diff | blob | history
Domain: System / Kernel;