diff options
author | Kees Cook <keescook@chromium.org> | 2018-09-19 19:57:06 -0700 |
---|---|---|
committer | Kees Cook <keescook@chromium.org> | 2019-01-08 13:18:43 -0800 |
commit | 14bd99c821f7ace0e8110a1bfdfaa27e1788e20f (patch) | |
tree | a5feee1ff6b832eaffef89d1bde995e0574723e2 /security/apparmor | |
parent | 7e611486d905f435faf80969deed68a615019e6b (diff) | |
download | blackbird-op-linux-14bd99c821f7ace0e8110a1bfdfaa27e1788e20f.tar.gz blackbird-op-linux-14bd99c821f7ace0e8110a1bfdfaa27e1788e20f.zip |
LSM: Separate idea of "major" LSM from "exclusive" LSM
In order to both support old "security=" Legacy Major LSM selection, and
handling real exclusivity, this creates LSM_FLAG_EXCLUSIVE and updates
the selection logic to handle them.
Signed-off-by: Kees Cook <keescook@chromium.org>
Reviewed-by: Casey Schaufler <casey@schaufler-ca.com>
Diffstat (limited to 'security/apparmor')
-rw-r--r-- | security/apparmor/lsm.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/security/apparmor/lsm.c b/security/apparmor/lsm.c index dfc5fbf8ba82..149a3e16b5da 100644 --- a/security/apparmor/lsm.c +++ b/security/apparmor/lsm.c @@ -1723,7 +1723,7 @@ alloc_out: DEFINE_LSM(apparmor) = { .name = "apparmor", - .flags = LSM_FLAG_LEGACY_MAJOR, + .flags = LSM_FLAG_LEGACY_MAJOR | LSM_FLAG_EXCLUSIVE, .enabled = &apparmor_enabled, .init = apparmor_init, }; |