Re: [PATCH v2] security: Add LSM fixup hooks to set*gid syscalls.

From: James Morris
Date: Wed Aug 01 2018 - 15:34:47 EST

Next message: Thomas Bianchi: "[PATCH] xfs: substitute spaces with tabs"
Previous message: Sabrina Dubroca: "Re: KASAN: use-after-free Read in rtnetlink_put_metrics"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 31 Jul 2018, Micah Morton wrote:

> The ChromiumOS LSM used by ChromeOS will provide a hook for this, in
> order to enforce ChromeOS-specific policies regarding which UIDs/GIDs a
> process with CAP_SET{UID/GID} can transition to

Will you be submitting this LSM to mainline? It's a policy generally of
the kernel that we only add features to support in-tree code.

--
James Morris
<jmorris@xxxxxxxxx>

Next message: Thomas Bianchi: "[PATCH] xfs: substitute spaces with tabs"
Previous message: Sabrina Dubroca: "Re: KASAN: use-after-free Read in rtnetlink_put_metrics"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]