[PATCH v5 2/2] LSM: add SafeSetID module that gates setid calls
James Morris
jmorris at namei.org
Mon Jan 28 20:09:42 UTC 2019
On Tue, 29 Jan 2019, Kees Cook wrote:
> On Tue, Jan 29, 2019 at 8:47 AM Micah Morton <mortonm at chromium.org> wrote:
> >
> > I'm getting the following crash when booting after compiling a kernel
> > with this LSM enabled, so I'll have to figure out what is going on.
> > All the "core" functionality of this LSM has been tested thoroughly
> > (we're already using this LSM on ChromeOS), but looks like there's
> > some debugging of the initialization that still needs to be done.
>
>
> +DEFINE_LSM(safesetid_security_init) = {
> + .init = safesetid_security_init,
> +};
>
> I think this is from not having:
>
> .name = "safesetid",
>
> I missed that in the review, sorry!
Weird, I booted my system with safesetid stacked and it seemed to work.
--
James Morris
<jmorris at namei.org>
More information about the Linux-security-module-archive
mailing list