Re: [PATCH v6 2/4] LSM: security_lsmblob_to_secctx module selection
From: Paul Moore <paul@paul-moore.com>
Date: 2025-08-30 14:15:04
Also in:
lkml, selinux
On Aug 16, 2025 Casey Schaufler [off-list ref] wrote:
Add a parameter lsmid to security_lsmblob_to_secctx() to identify which of the security modules that may be active should provide the security context. If the value of lsmid is LSM_ID_UNDEF the first LSM providing a hook is used. security_secid_to_secctx() is unchanged, and will always report the first LSM providing a hook. Signed-off-by: Casey Schaufler <casey@schaufler-ca.com> --- include/linux/security.h | 6 ++++-- kernel/audit.c | 4 ++-- kernel/auditsc.c | 8 +++++--- net/netlabel/netlabel_user.c | 3 ++- security/security.c | 18 ++++++++++++++++-- 5 files changed, 29 insertions(+), 10 deletions(-)
Merged into audit/dev, thanks. -- paul-moore.com