Re: [PATCH v1 21/22] LSM: Multiple concurrent major security modules

From: Piotr Sawicki
Date: Tue Oct 09 2018 - 10:09:50 EST


On 07/16/2018 08:24 PM, Casey Schaufler wrote:
> LSM: Multiple concurrent major security modules

> diff --git a/include/uapi/linux/prctl.h b/include/uapi/linux/prctl.h
> index c0d7ea0bf5b6..db72f2e38311 100644
> --- a/include/uapi/linux/prctl.h
> +++ b/include/uapi/linux/prctl.h
> @@ -219,4 +219,8 @@ struct prctl_mm_map {
> # define PR_SPEC_DISABLE (1UL << 2)
> # define PR_SPEC_FORCE_DISABLE (1UL << 3)
>
> +/* Control the LSM specific peer information */
> +#define PR_GET_DISPLAY_LSM 52
> +#define PR_SET_DISPLAY_LSM 53
> +
> #endif /* _LINUX_PRCTL_H */

Hi,

The above two numbers for prctl() options have been reserved by
PR_GET_SPECULATION_CTRL and PR_SET_SPECULATION_CTRL.

Take a look at this commit: "prctl: Add speculation control prctls"

Regards,
Piotr