git.cascardo.eti.br Git - cascardo/linux.git/commit

author	Kees Cook <keescook@chromium.org>
	Wed, 29 Aug 2012 20:37:10 +0000 (13:37 -0700)
committer	Gerrit <chrome-bot@google.com>
	Wed, 10 Oct 2012 18:08:50 +0000 (11:08 -0700)
commit	8a734516658dc9a74d5668003684c4e9181c85e4
tree	935a2dc621d93165948a7ab8f922dca543cd57c4	tree \| snapshot
parent	e02c42d4649b1bcbf3470da8e53bb92878ab3181	commit \| diff

CHROMIUM: security: introduce kernel_module_from_file hook

Now that kernel module origins can be reasoned about, provide a hook to
the LSMs to make policy decisions about the module file.

Signed-off-by: Kees Cook <keescook@chromium.org>
Acked-by: Serge E. Hallyn <serge.hallyn@canonical.com>
Acked-by: Eric Paris <eparis@redhat.com>
[accepted into Rusty's modules-wip tree for linux-next:
http://git.kernel.org/?p=linux/kernel/git/rusty/linux.git;a=shortlog;h=refs/heads/modules-wip]
BUG=chromium-os:34134
TEST=parrot build, manual testing

Change-Id: I97f5cc0a0f3c1c04e1dc886d6d20f5a6d82326ac
Reviewed-on: https://gerrit.chromium.org/gerrit/34303
Tested-by: Kees Cook <keescook@chromium.org>
Reviewed-by: Olof Johansson <olofj@chromium.org>
Commit-Ready: Kees Cook <keescook@chromium.org>

include/linux/security.h		diff \| blob \| history
kernel/module.c		diff \| blob \| history
security/capability.c		diff \| blob \| history
security/security.c		diff \| blob \| history