]> www.infradead.org Git - users/jedix/linux-maple.git/commit
projects / users / jedix / linux-maple.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 622e2f5) | patch
landlock: Simplify initially denied access rights
authorMickaël Salaün <mic@digikod.net>
Wed, 8 Jan 2025 15:43:14 +0000 (16:43 +0100)
committerMickaël Salaün <mic@digikod.net>
Fri, 17 Jan 2025 18:05:35 +0000 (19:05 +0100)
commitd6c7cf84a24fff332ff65ffe236302216474b834
treeef6e97a53cee0b4805aed2b41d35010668bcac1ctree
parent622e2f5954763385c4fa1f9a11a11366952a9b60commit | diff
landlock: Simplify initially denied access rights

Upgrade domain's handled access masks when creating a domain from a
ruleset, instead of converting them at runtime.  This is more consistent
and helps with audit support.

Cc: Günther Noack <gnoack@google.com>
Link: https://lore.kernel.org/r/20250108154338.1129069-7-mic@digikod.net
Signed-off-by: Mickaël Salaün <mic@digikod.net>
security/landlock/access.h diff | blob | history
security/landlock/fs.c diff | blob | history
security/landlock/ruleset.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.