]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c45d639) | patch
security: Add a "locked down" LSM hook
authorMatthew Garrett <matthewgarrett@google.com>
Tue, 20 Aug 2019 00:17:38 +0000 (17:17 -0700)
committerJames Morris <jmorris@namei.org>
Tue, 20 Aug 2019 04:54:15 +0000 (21:54 -0700)
commitd95d1f628100d4f7ae3a7b87c1e2d7de18c8e356
treefcc41c716dbdeb3f8237903284e54ea524d2f463tree | snapshot
parentc45d639af4af4cb21457334a468b3fafc966c61acommit | diff
security: Add a "locked down" LSM hook

Add a mechanism to allow LSMs to make a policy decision around whether
kernel functionality that would allow tampering with or examining the
runtime state of the kernel should be permitted.

Signed-off-by: Matthew Garrett <mjg59@google.com>
Acked-by: Kees Cook <keescook@chromium.org>
Acked-by: Casey Schaufler <casey@schaufler-ca.com>
Signed-off-by: James Morris <jmorris@namei.org>
include/linux/lsm_hooks.h diff | blob | history
include/linux/security.h diff | blob | history
security/security.c diff | blob | history
Linux Kernel Source Tree.