Micah Morton 87ca9aaf0c LSM: generalize flag passing to security_capable ... [ Upstream commit c1a85a00ea ] This patch provides a general mechanism for passing flags to the security_capable LSM hook. It replaces the specific 'audit' flag that is used to tell security_capable whether it should log an audit message for the given capability check. The reason for generalizing this flag passing is so we can add an additional flag that signifies whether security_capable is being called by a setid syscall (which is needed by the proposed SafeSetID LSM). Signed-off-by: Micah Morton <mortonm@chromium.org> Reviewed-by: Kees Cook <keescook@chromium.org> Signed-off-by: James Morris <james.morris@microsoft.com> Signed-off-by: Sasha Levin <sashal@kernel.org>		2020-01-23 08:21:29 +01:00
..
include	selinux: avoid silent denials in permissive mode under RCU walk	2019-05-08 07:21:54 +02:00
ss	selinux: fix memory leak in policydb_init()	2019-08-06 19:06:54 +02:00
.gitignore
avc.c	selinux: avoid silent denials in permissive mode under RCU walk	2019-05-08 07:21:54 +02:00
exports.c
hooks.c	LSM: generalize flag passing to security_capable	2020-01-23 08:21:29 +01:00
ibpkey.c	selinux: wrap global selinux state	2018-03-01 18:48:02 -05:00
Kconfig
Makefile	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
netif.c	selinux: Cleanup printk logging in netif	2018-06-19 13:45:31 -04:00
netlabel.c	selinux: avoid uninitialized variable warning	2019-05-31 06:46:31 -07:00
netlink.c	selinux: Cleanup printk logging in netlink	2018-06-19 13:33:05 -04:00
netnode.c	selinux: Cleanup printk logging in netnode	2018-06-19 13:49:10 -04:00
netport.c	selinux: Cleanup printk logging in netport	2018-06-19 13:43:01 -04:00
nlmsgtab.c	selinux: add support for RTM_NEWCHAIN, RTM_DELCHAIN, and RTM_GETCHAIN	2018-12-08 12:59:08 +01:00
selinuxfs.c	selinux/stable-4.18 PR 20180814	2018-08-15 10:39:06 -07:00
xfrm.c	selinux: wrap AVC state	2018-03-20 16:58:17 -04:00