[PATCH v20 10/23] LSM: Use lsmblob in security_inode_getsecid

Paul Moore paul at paul-moore.com
Sat Sep 5 13:20:49 UTC 2020


On Wed, Aug 26, 2020 at 11:12 AM Casey Schaufler <casey at schaufler-ca.com> wrote:
>
> Change the security_inode_getsecid() interface to fill in a
> lsmblob structure instead of a u32 secid. This allows for its
> callers to gather data from all registered LSMs. Data is provided
> for IMA and audit.
>
> Reviewed-by: Kees Cook <keescook at chromium.org>
> Reviewed-by: John Johansen <john.johansen at canonical.com>
> Signed-off-by: Casey Schaufler <casey at schaufler-ca.com>
> Acked-by: Stephen Smalley <sds at tycho.nsa.gov>
> cc: linux-integrity at vger.kernel.org
> ---
>  include/linux/security.h            |  7 ++++---
>  kernel/auditsc.c                    |  6 +++++-
>  security/integrity/ima/ima_policy.c |  4 +---
>  security/security.c                 | 11 +++++++++--
>  4 files changed, 19 insertions(+), 9 deletions(-)

Acked-by: Paul Moore <paul at paul-moore.com>

-- 
paul moore
www.paul-moore.com



More information about the Linux-security-module-archive mailing list