[PATCH v2 0/5] rust: lsm: introduce safe Rust abstractions for the LSM framework
Alice Ryhl
aliceryhl at google.com
Wed Mar 11 06:48:57 UTC 2026
On Wed, Mar 11, 2026 at 6:09 AM Jamie Lindsey <jamie at matrixforgelabs.com> wrote:
>
> v2: add missing Signed-off-by tags, fix short commit hash in patch 4.
> No code changes from v1.
>
> This series introduces the first safe Rust abstractions for the Linux
> Security Module (LSM) framework. It allows a complete, policy-enforcing
> LSM to be written entirely in Rust with no C boilerplate required from
> the LSM author.
>
> --- Motivation ---
>
> The LSM framework is a natural target for Rust: hook registration is
> unsafe by nature (raw function pointers, C ABI, __randomize_layout on
> the hook list struct), and the trait system can enforce correct
> implementation at compile time.
Hi Jamie,
What is the intended end-user of these abstractions?
Alice
More information about the Linux-security-module-archive
mailing list