projects / linux-2.6-microblaze.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ef96837) | patch
module: replace the existing LSM hook in init_module
authorMimi Zohar <zohar@linux.vnet.ibm.com>
Fri, 13 Jul 2018 18:06:02 +0000 (14:06 -0400)
committerJames Morris <james.morris@microsoft.com>
Mon, 16 Jul 2018 19:31:57 +0000 (12:31 -0700)
commitc77b8cdf745d91eca138e7bfa430dc6640b604a0
treef1cc1edc3cecbff32a4450d252b551f5260ee9e1tree | snapshot
parentef96837b0de4af47732e2a8ebf5c18e8a885ded6commit | diff
module: replace the existing LSM hook in init_module

Both the init_module and finit_module syscalls call either directly
or indirectly the security_kernel_read_file LSM hook.  This patch
replaces the direct call in init_module with a call to the new
security_kernel_load_data hook and makes the corresponding changes
in SELinux, LoadPin, and IMA.

Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Cc: Jeff Vander Stoep <jeffv@google.com>
Cc: Casey Schaufler <casey@schaufler-ca.com>
Cc: Kees Cook <keescook@chromium.org>
Acked-by: Jessica Yu <jeyu@kernel.org>
Acked-by: Paul Moore <paul@paul-moore.com>
Acked-by: Kees Cook <keescook@chromium.org>
Signed-off-by: James Morris <james.morris@microsoft.com>
kernel/module.c diff | blob | history
security/integrity/ima/ima_main.c diff | blob | history
security/loadpin/loadpin.c diff | blob | history
security/selinux/hooks.c diff | blob | history
MicroBlaze GIT Repository