| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <8f72249ed9358a895e6821495cab933a@paul-moore.com> Date: Tue, 14 Oct 2025 19:12:59 -0400 From: Paul Moore <paul@...l-moore.com> To: Casey Schaufler <casey@...aufler-ca.com>, casey@...aufler-ca.com, eparis@...hat.com, linux-security-module@...r.kernel.org, audit@...r.kernel.org Cc: jmorris@...ei.org, serge@...lyn.com, keescook@...omium.org, john.johansen@...onical.com, penguin-kernel@...ove.sakura.ne.jp, stephen.smalley.work@...il.com, linux-kernel@...r.kernel.org, selinux@...r.kernel.org Subject: Re: [PATCH RFC 12/15] LSM: Allow reservation of netlabel On Jun 21, 2025 Casey Schaufler <casey@...aufler-ca.com> wrote: > > Allow LSMs to request exclusive access to the netlabel facility. > Provide mechanism for LSMs to determine if they have access to > netlabel. Update the current users of netlabel, SELinux and Smack, > to use and respect the exclusive use of netlabel. > > Signed-off-by: Casey Schaufler <casey@...aufler-ca.com> > --- > include/linux/lsm_hooks.h | 1 + > security/lsm_init.c | 6 +++++ > security/selinux/hooks.c | 7 +++--- > security/selinux/include/netlabel.h | 5 ++++ > security/selinux/netlabel.c | 4 ++-- > security/smack/smack.h | 5 ++++ > security/smack/smack_lsm.c | 36 +++++++++++++++++++++-------- > security/smack/smackfs.c | 20 +++++++++++++++- > 8 files changed, 69 insertions(+), 15 deletions(-) We discussed this patch in a separate patchset, lore link below. https://lore.kernel.org/linux-security-module/20251001215643.31465-1-casey@schaufler-ca.com/ -- paul-moore.com
Powered by blists - more mailing lists