projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 740b034) | patch
Smack: Brutalist io_uring support
authorCasey Schaufler <casey@schaufler-ca.com>
Fri, 21 May 2021 18:21:16 +0000 (11:21 -0700)
committerPaul Moore <paul@paul-moore.com>
Mon, 20 Sep 2021 02:40:51 +0000 (22:40 -0400)
commitd9d8c93938c40e12de91650d04fceb99d92dad8a
tree9b47eec297d798926b22e80ce894e23890bd41e9tree | snapshot
parent740b03414b20e7f1879cd99aae27d8c401bbcbf9commit | diff
Smack: Brutalist io_uring support

Add Smack privilege checks for io_uring. Use CAP_MAC_OVERRIDE
for the override_creds case and CAP_MAC_ADMIN for creating a
polling thread. These choices are based on conjecture regarding
the intent of the surrounding code.

Signed-off-by: Casey Schaufler <casey@schaufler-ca.com>
[PM: make the smack_uring_* funcs static, remove debug code]
Signed-off-by: Paul Moore <paul@paul-moore.com>
security/smack/smack_lsm.c diff | blob | history
ep93xx device tree rework repo: git://git.maquefel.me/linux.git