]> www.infradead.org Git - users/jedix/linux-maple.git/commit
projects / users / jedix / linux-maple.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 79625f1) | patch
landlock: Identify domain execution crossing
authorMickaël Salaün <mic@digikod.net>
Thu, 20 Mar 2025 19:06:57 +0000 (20:06 +0100)
committerMickaël Salaün <mic@digikod.net>
Wed, 26 Mar 2025 12:59:37 +0000 (13:59 +0100)
commit14f6c14e9fbde4a802c10c7e770b5ba63853ebc6
treec69bc6499c6124362e65967b820e886661c6e0detree
parent79625f1b3a3df63d3289a0781fdf121bc42966f7commit | diff
landlock: Identify domain execution crossing

Extend struct landlock_cred_security with a domain_exec bitmask to
identify which Landlock domain were created by the current task's bprm.
The whole bitmask is reset on each execve(2) call.

Cc: Günther Noack <gnoack@google.com>
Cc: Paul Moore <paul@paul-moore.com>
Link: https://lore.kernel.org/r/20250320190717.2287696-9-mic@digikod.net
Signed-off-by: Mickaël Salaün <mic@digikod.net>
security/landlock/cred.c diff | blob | history
security/landlock/cred.h diff | blob | history
security/landlock/syscalls.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.