xiaomi-sm8450/android_kernel_xiaomi_sm8450
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

LSM: Infrastructure management of the file security

Browse Source 
Move management of the file->f_security blob out of the
individual security modules and into the infrastructure.
The modules no longer allocate or free the data, instead
they tell the infrastructure how much space they require.

Signed-off-by: Casey Schaufler <casey@schaufler-ca.com>
Reviewed-by: Kees Cook <keescook@chromium.org>
[kees: adjusted for ordered init series]
Signed-off-by: Kees Cook <keescook@chromium.org>
This commit is contained in:
Casey Schaufler
2018-11-12 12:02:49 -08:00
committed by Kees Cook
parent f28952ac90
commit 33bf60cabc
8 changed files with 72 additions and 51 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
security/smack/smack.h
View File

@@ -364,7 +364,8 @@ static inline struct task_smack *smack_cred(const struct cred *cred)
static inline struct smack_known **smack_file(const struct file *file)
{
return (struct smack_known **)&file->f_security;
return (struct smack_known **)(file->f_security +
smack_blob_sizes.lbs_file);
}
/*