[PATCH RFC 2/15] LSM: security_lsmblob_to_secctx module selection
Paul Moore
paul at paul-moore.com
Tue Oct 14 23:12:40 UTC 2025
On Jun 21, 2025 Casey Schaufler <casey at schaufler-ca.com> wrote:
>
> Add a parameter lsmid to security_lsmblob_to_secctx() to identify which
> of the security modules that may be active should provide the security
> context. If the value of lsmid is LSM_ID_UNDEF the first LSM providing
> a hook is used. security_secid_to_secctx() is unchanged, and will
> always report the first LSM providing a hook.
>
> Signed-off-by: Casey Schaufler <casey at schaufler-ca.com>
> ---
> include/linux/security.h | 6 ++++--
> kernel/audit.c | 4 ++--
> kernel/auditsc.c | 8 +++++---
> net/netlabel/netlabel_user.c | 3 ++-
> security/security.c | 13 +++++++++++--
> 5 files changed, 24 insertions(+), 10 deletions(-)
Similar to patch 1/15, dropped due to this already being in Linus'
tree.
--
paul-moore.com
More information about the Linux-security-module-archive
mailing list