[PATCH v4 5/5] selftests/bpf: Add selftests for set_mempolicy with a lsm prog
Yafang Shao
laoar.shao at gmail.com
Wed Dec 13 03:08:00 UTC 2023
On Wed, Dec 13, 2023 at 3:22 AM KP Singh <kpsingh at kernel.org> wrote:
>
> On Fri, Dec 8, 2023 at 10:06 AM Yafang Shao <laoar.shao at gmail.com> wrote:
> >
> > The result as follows,
> > #263/1 set_mempolicy/MPOL_BIND_without_lsm:OK
> > #263/2 set_mempolicy/MPOL_DEFAULT_without_lsm:OK
> > #263/3 set_mempolicy/MPOL_BIND_with_lsm:OK
> > #263/4 set_mempolicy/MPOL_DEFAULT_with_lsm:OK
> > #263 set_mempolicy:OK
> > Summary: 1/4 PASSED, 0 SKIPPED, 0 FAILED
>
> Please write a commit description on what the test actually does. I
will do it.
> even think of something simple that mentions a BPF LSM program that
> denies all mbind with the mode MPOL_BIND and checks whether the
> corresponding syscall is denied when the program is loaded.
It does. Additionally, it verifies whether the mbind syscall is denied
with different modes, such as MPOL_DEFAULT."
--
Regards
Yafang
More information about the Linux-security-module-archive
mailing list