git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Casey Schaufler <casey@schaufler-ca.com>
	Wed, 10 Jul 2024 21:32:25 +0000 (14:32 -0700)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Fri, 4 Oct 2024 14:33:46 +0000 (16:33 +0200)
commit	fbec4ba70f789cb4d8fed3029d3ddf8a01f68e89
tree	431395dace52ff4b14bfd33f00efeb3088ba506b	tree
parent	04a55dd3419d1ccc7b0de7a7fa4571d2979bc064	commit \| diff

lsm: infrastructure management of the sock security

[ Upstream commit 2aff9d20d50ac45dd13a013ef5231f4fb8912356 ]

Move management of the sock->sk_security blob out
of the individual security modules and into the security
infrastructure. Instead of allocating the blobs from within
the modules the modules tell the infrastructure how much
space is required, and the space is allocated there.

Acked-by: Paul Moore <paul@paul-moore.com>
Reviewed-by: Kees Cook <keescook@chromium.org>
Reviewed-by: John Johansen <john.johansen@canonical.com>
Acked-by: Stephen Smalley <stephen.smalley.work@gmail.com>
Signed-off-by: Casey Schaufler <casey@schaufler-ca.com>
[PM: subject tweak]
Signed-off-by: Paul Moore <paul@paul-moore.com>
Stable-dep-of: 63dff3e48871 ("lsm: add the inode_free_security_rcu() LSM implementation hook")
Signed-off-by: Sasha Levin <sashal@kernel.org>

include/linux/lsm_hooks.h		diff \| blob \| blame \| history
security/apparmor/include/net.h		diff \| blob \| blame \| history
security/apparmor/lsm.c		diff \| blob \| blame \| history
security/apparmor/net.c		diff \| blob \| blame \| history
security/security.c		diff \| blob \| blame \| history
security/selinux/hooks.c		diff \| blob \| blame \| history
security/selinux/include/objsec.h		diff \| blob \| blame \| history
security/selinux/netlabel.c		diff \| blob \| blame \| history
security/smack/smack.h		diff \| blob \| blame \| history
security/smack/smack_lsm.c		diff \| blob \| blame \| history
security/smack/smack_netfilter.c		diff \| blob \| blame \| history