[PATCH 1/9] LSM: Introduce inode_getsecid and ipc_getsecid hooks

James Morris jmorris at namei.org
Mon Mar 3 21:18:47 UTC 2008


On Sat, 1 Mar 2008, Ahmed S. Darwish wrote:

> Introduce inode_getsecid(inode, secid) and ipc_getsecid(ipcp, secid)
> LSM hooks. These hooks will be used instead of similar exported 
> SELinux interfaces.
> 
> Let {inode,ipc,task}_getsecid hooks set the secid to 0 by default 
> if CONFIG_SECURITY is not defined or if the hook is set to 
> NULL (dummy). This is done to notify the caller that no valid 
> secid exists.
> 
> Signed-off-by: Casey Schaufler <casey at schaufler-ca.com>
> Signed-off-by: Ahmed S. Darwish <darwish.07 at gmail.com>

Acked-by: James Morris <jmorris at namei.org>

-- 
James Morris
<jmorris at namei.org>




More information about the Linux-audit mailing list