[PATCH] bpf: lsm: Disable or enable BPF LSM at boot time
Daniel Borkmann
daniel at iogearbox.net
Mon Jul 6 18:51:35 UTC 2020
On 7/6/20 6:57 PM, Lorenzo Fontana wrote:
> This option adds a kernel parameter 'bpf_lsm',
> which allows the BPF LSM to be disabled at boot.
> The purpose of this option is to allow a single kernel
> image to be distributed with the BPF LSM built in,
> but not necessarily enabled.
>
> Signed-off-by: Lorenzo Fontana <fontanalorenz at gmail.com>
Well, this explains what the patch is doing but not *why* you need it exactly.
Please explain your concrete use-case for this patch.
Thanks,
Daniel
More information about the Linux-security-module-archive
mailing list