[PATCH v4 08/19] Infrastructure management of the cred security blob

Kees Cook keescook at chromium.org
Sat Sep 22 02:50:39 UTC 2018


On Fri, Sep 21, 2018 at 5:18 PM, Casey Schaufler <casey at schaufler-ca.com> wrote:
> Move management of the cred security blob out of the
> security modules and into the security infrastructre.
> Instead of allocating and freeing space the security
> modules tell the infrastructure how much space they
> require.
>
> Signed-off-by: Casey Schaufler <casey at schaufler-ca.com>

When combined with my series, this gets slightly simpler:
- the double init call and the "finished" stuff goes away
- debugging output is controlled by "lsm.debug" param instead of a CONFIG

Regardless, for the overall logic, calculating the sizes, etc:

Reviewed-by: Kees Cook <keescook at chromium.org>

-Kees

-- 
Kees Cook
Pixel Security



More information about the Linux-security-module-archive mailing list