mirror of
https://github.com/AuxXxilium/linux_dsm_epyc7002.git
synced 2024-12-18 20:16:54 +07:00
5294bac97e
The SafeSetID LSM has functionality for restricting setuid() calls based on its configured security policies. This patch adds the analogous functionality for setgid() calls. This is mostly a copy-and-paste change with some code deduplication, plus slight modifications/name changes to the policy-rule-related structs (now contain GID rules in addition to the UID ones) and some type generalization since SafeSetID now needs to deal with kgid_t and kuid_t types. Signed-off-by: Thomas Cedeno <thomascedeno@google.com> Signed-off-by: Micah Morton <mortonm@chromium.org> |
||
---|---|---|
.. | ||
apparmor.rst | ||
index.rst | ||
LoadPin.rst | ||
SafeSetID.rst | ||
SELinux.rst | ||
Smack.rst | ||
tomoyo.rst | ||
Yama.rst |