www.infradead.org Git - users/jedix/linux-maple.git/commit

]> www.infradead.org Git - users/jedix/linux-maple.git/commit

projects / users / jedix / linux-maple.git / commit

author	Deven Bowers <deven.desai@linux.microsoft.com>
	Sat, 3 Aug 2024 06:08:18 +0000 (23:08 -0700)
committer	Paul Moore <paul@paul-moore.com>
	Tue, 20 Aug 2024 18:01:33 +0000 (14:01 -0400)
commit	52443cb60c356707df494910fa134bbb0a8b1a66
tree	b53fe558511f276f891ecce8da6aa34b0d5e3ae1	tree
parent	05a351630b7463ce58668095f5683669c1295f65	commit \| diff

ipe: add LSM hooks on execution and kernel read

IPE's initial goal is to control both execution and the loading of
kernel modules based on the system's definition of trust. It
accomplishes this by plugging into the security hooks for
bprm_check_security, file_mprotect, mmap_file, kernel_load_data,
and kernel_read_data.

Signed-off-by: Deven Bowers <deven.desai@linux.microsoft.com>
Signed-off-by: Fan Wu <wufan@linux.microsoft.com>
Signed-off-by: Paul Moore <paul@paul-moore.com>

security/ipe/Makefile		diff \| blob \| history
security/ipe/eval.c		diff \| blob \| history
security/ipe/eval.h		diff \| blob \| history
security/ipe/hooks.c	[new file with mode: 0644]	blob
security/ipe/hooks.h	[new file with mode: 0644]	blob
security/ipe/ipe.c		diff \| blob \| history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom