diff options
| author |   Casey Schaufler <casey@schaufler-ca.com> | 2018-09-21 17:19:37 -0700 |
|---|---|---|
| committer |   Kees Cook <keescook@chromium.org> | 2019-01-08 13:18:45 -0800 |
| commit | f4ad8f2c40769b3cc9497ba0883bbaf823f7752f (patch) | |
| tree | ae8e8bfc5a3abfaa5ea3c90908efd941a230bbdf /include/linux/lsm_hooks.h | |
| parent | LSM: Infrastructure management of the inode security (diff) | |
| download | linux-dev-f4ad8f2c40769b3cc9497ba0883bbaf823f7752f.tar.xz linux-dev-f4ad8f2c40769b3cc9497ba0883bbaf823f7752f.zip | |
LSM: Infrastructure management of the task security
Move management of the task_struct->security blob out
of the individual security modules and into the security
infrastructure. Instead of allocating the blobs from within
the modules the modules tell the infrastructure how much
space is required, and the space is allocated there.
The only user of this blob is AppArmor. The AppArmor use
is abstracted to avoid future conflict.
Signed-off-by: Casey Schaufler <casey@schaufler-ca.com>
Reviewed-by: Kees Cook <keescook@chromium.org>
[kees: adjusted for ordered init series]
Signed-off-by: Kees Cook <keescook@chromium.org>
Diffstat (limited to 'include/linux/lsm_hooks.h')
| -rw-r--r-- | include/linux/lsm_hooks.h | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/include/linux/lsm_hooks.h b/include/linux/lsm_hooks.h index 1c798e842de2..9b39fefa88c4 100644 --- a/include/linux/lsm_hooks.h +++ b/include/linux/lsm_hooks.h @@ -2034,6 +2034,7 @@ struct lsm_blob_sizes { int lbs_cred; int lbs_file; int lbs_inode; + int lbs_task; }; /* @@ -2109,6 +2110,7 @@ extern int lsm_inode_alloc(struct inode *inode); #ifdef CONFIG_SECURITY void __init lsm_early_cred(struct cred *cred); +void __init lsm_early_task(struct task_struct *task); #endif #endif /* ! __LINUX_LSM_HOOKS_H */ |