kernel_optimize_test/security/smack
Micah Morton c1a85a00ea LSM: generalize flag passing to security_capable
This patch provides a general mechanism for passing flags to the
security_capable LSM hook. It replaces the specific 'audit' flag that is
used to tell security_capable whether it should log an audit message for
the given capability check. The reason for generalizing this flag
passing is so we can add an additional flag that signifies whether
security_capable is being called by a setid syscall (which is needed by
the proposed SafeSetID LSM).

Signed-off-by: Micah Morton <mortonm@chromium.org>
Reviewed-by: Kees Cook <keescook@chromium.org>
Signed-off-by: James Morris <james.morris@microsoft.com>
2019-01-10 14:16:06 -08:00
..
Kconfig Smack: Signal delivery as an append operation 2016-09-08 13:22:56 -07:00
Makefile Smack: Repair netfilter dependency 2015-01-23 10:08:19 -08:00
smack_access.c LSM: generalize flag passing to security_capable 2019-01-10 14:16:06 -08:00
smack_lsm.c LSM: Infrastructure management of the ipc security blob 2019-01-08 13:18:45 -08:00
smack_netfilter.c netfilter: nf_hook_ops structs can be const 2017-07-31 19:10:44 +02:00
smack.h LSM: Infrastructure management of the ipc security blob 2019-01-08 13:18:45 -08:00
smackfs.c Smack: Abstract use of cred security blob 2019-01-08 13:18:44 -08:00