security: add trace event for cap_capable - linux-rng - Development tree for the kernel CSPRNG

diff options

author	Jordan Rome <linux@jordanrome.com>	2024-12-04 07:59:11 -0800
committer	Serge Hallyn <sergeh@kernel.org>	2024-12-04 20:59:21 -0600
commit	d48da4d5ed7b4a022a4e54f210575baac71f58af (patch)
tree	45c776f59fbef900cbfeb679e63fb4c9cbc5e797 /scripts/lib/kdoc/kdoc_files.py
parent	capabilities: remove cap_mmap_file() (diff)
download	linux-rng-d48da4d5ed7b4a022a4e54f210575baac71f58af.tar.xz linux-rng-d48da4d5ed7b4a022a4e54f210575baac71f58af.zip

security: add trace event for cap_capable

In cases where we want a stable way to observe/trace cap_capable (e.g. protection from inlining and API updates) add a tracepoint that passes: - The credentials used - The user namespace of the resource being accessed - The user namespace in which the credential provides the capability to access the targeted resource - The capability to check for - The return value of the check Signed-off-by: Jordan Rome <linux@jordanrome.com> Acked-by: Andrii Nakryiko <andrii@kernel.org> Reviewed-by: Paul Moore <paul@paul-moore.com> Reviewed-by: Serge Hallyn <serge@hallyn.com> Link: https://lore.kernel.org/r/20241204155911.1817092-1-linux@jordanrome.com Signed-off-by: Serge Hallyn <sergeh@kernel.org>

Diffstat (limited to 'scripts/lib/kdoc/kdoc_files.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: