diff options
author | Thomas Cedeno <thomascedeno@google.com> | 2020-07-16 19:52:01 +0000 |
---|---|---|
committer | Micah Morton <mortonm@chromium.org> | 2020-10-13 09:17:35 -0700 |
commit | 5294bac97e12bdabbb97e9adf44d388612a700b8 (patch) | |
tree | e43b109a692d9a8a9367555c78b5bdf045834648 /init/initramfs.c | |
parent | 111767c1d86bd9661f8b72ace50cbcb13507a1bf (diff) |
LSM: SafeSetID: Add GID security policy handling
The SafeSetID LSM has functionality for restricting setuid() calls based
on its configured security policies. This patch adds the analogous
functionality for setgid() calls. This is mostly a copy-and-paste change
with some code deduplication, plus slight modifications/name changes to
the policy-rule-related structs (now contain GID rules in addition to
the UID ones) and some type generalization since SafeSetID now needs to
deal with kgid_t and kuid_t types.
Signed-off-by: Thomas Cedeno <thomascedeno@google.com>
Signed-off-by: Micah Morton <mortonm@chromium.org>
Diffstat (limited to 'init/initramfs.c')
0 files changed, 0 insertions, 0 deletions