Gh0st
/
linux
mirror of https://github.com/torvalds/linux.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
linux/security/landlock
History
Paul Moore 9f9dc69e06 lsm: replace the name field with a pointer to the lsm_id struct 
Reduce the duplication between the lsm_id struct and the DEFINE_LSM()
definition by linking the lsm_id struct directly into the individual
LSM's DEFINE_LSM() instance.

Linking the lsm_id into the LSM definition also allows us to simplify
the security_add_hooks() function by removing the code which populates
the lsm_idlist[] array and moving it into the normal LSM startup code
where the LSM list is parsed and the individual LSMs are enabled,
making for a cleaner implementation with less overhead at boot.

Reviewed-by: Kees Cook <kees@kernel.org>
Reviewed-by: John Johansen <john.johansen@canonical.com>
Reviewed-by: Casey Schaufler <casey@schaufler-ca.com>
Reviewed-by: Mimi Zohar <zohar@linux.ibm.com>
Signed-off-by: Paul Moore <paul@paul-moore.com>
 		2025-10-22 19:24:18 -04:00
..
errata landlock: Always allow signals between threads of the same process 2025-03-26 13:59:29 +01:00
.kunitconfig landlock: Add unique ID generator 2025-03-26 13:59:34 +01:00
Kconfig landlock: Add support for KUnit tests 2024-02-27 11:21:45 +01:00
Makefile landlock: Add AUDIT_LANDLOCK_ACCESS and log ptrace denials 2025-03-26 13:59:38 +01:00
access.h landlock: Log truncate and IOCTL denials 2025-03-26 13:59:41 +01:00
audit.c landlock: Improve bit operations in audit code 2025-05-12 11:38:53 +02:00
audit.h landlock: Log scoped denials 2025-03-26 13:59:42 +01:00
common.h landlock: Add support for KUnit tests 2024-02-27 11:21:45 +01:00
cred.c landlock: Identify domain execution crossing 2025-03-26 13:59:37 +01:00
cred.h landlock: Add LANDLOCK_RESTRICT_SELF_LOG_SUBDOMAINS_OFF 2025-03-26 13:59:43 +01:00
domain.c landlock: Log the TGID of the domain creator 2025-04-11 12:53:17 +02:00
domain.h landlock: Remove incorrect warning 2025-04-08 19:18:20 +02:00
errata.h landlock: Prepare to add second errata 2025-03-21 12:12:21 +01:00
fs.c fs: add an icount_read helper 2025-09-01 12:41:09 +02:00
fs.h landlock: Log scoped denials 2025-03-26 13:59:42 +01:00
id.c landlock: Fix warning from KUnit tests 2025-06-27 10:10:37 +02:00
id.h landlock: Add unique ID generator 2025-03-26 13:59:34 +01:00
limits.h landlock: Add LANDLOCK_RESTRICT_SELF_LOG_SUBDOMAINS_OFF 2025-03-26 13:59:43 +01:00
net.c landlock: Log TCP bind and connect denials 2025-03-26 13:59:41 +01:00
net.h landlock: Support network rules with TCP bind and connect 2023-10-26 21:07:15 +02:00
object.c
object.h
ruleset.c landlock: Add AUDIT_LANDLOCK_DOMAIN and log domain status 2025-03-26 13:59:38 +01:00
ruleset.h landlock: Log mount-related denials 2025-03-26 13:59:39 +01:00
setup.c lsm: replace the name field with a pointer to the lsm_id struct 2025-10-22 19:24:18 -04:00
setup.h landlock: Add the errata interface 2025-03-21 12:12:19 +01:00
syscalls.c landlock: opened file never has a negative dentry 2025-06-17 18:03:57 -04:00
task.c landlock: Log scoped denials 2025-03-26 13:59:42 +01:00
task.h landlock: Rename "ptrace" files to "task" 2024-03-08 18:22:16 +01:00