Re: [PATCH v17 05/10] fs,landlock: Support filesystem access-control

From: James Morris
Date: Wed May 13 2020 - 23:38:30 EST

Next message: Ian Rogers: "Re: [PATCH 3/4] perf stat: Add --metrics-file option"
Previous message: Andrew Morton: "mmotm 2020-05-13-20-30 uploaded"
In reply to: MickaÃl SalaÃn: "[PATCH v17 05/10] fs,landlock: Support filesystem access-control"
Next in thread: MickaÃl SalaÃn: "Re: [PATCH v17 05/10] fs,landlock: Support filesystem access-control"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 11 May 2020, MickaÃl SalaÃn wrote:

> diff --git a/include/linux/fs.h b/include/linux/fs.h
> index 45cc10cdf6dd..2276642f8e05 100644
> --- a/include/linux/fs.h
> +++ b/include/linux/fs.h
> @@ -1517,6 +1517,11 @@ struct super_block {
> /* Pending fsnotify inode refs */
> atomic_long_t s_fsnotify_inode_refs;
>
> +#ifdef CONFIG_SECURITY_LANDLOCK
> + /* References to Landlock underlying objects */
> + atomic_long_t s_landlock_inode_refs;
> +#endif
> +

This needs to be converted to the LSM API via superblock blob stacking.

See Casey's old patch:
https://lore.kernel.org/linux-security-module/20190829232935.7099-2-casey@xxxxxxxxxxxxxxxx/

--
James Morris
<jmorris@xxxxxxxxx>

Next message: Ian Rogers: "Re: [PATCH 3/4] perf stat: Add --metrics-file option"
Previous message: Andrew Morton: "mmotm 2020-05-13-20-30 uploaded"
In reply to: MickaÃl SalaÃn: "[PATCH v17 05/10] fs,landlock: Support filesystem access-control"
Next in thread: MickaÃl SalaÃn: "Re: [PATCH v17 05/10] fs,landlock: Support filesystem access-control"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]