user/sven/linux.git/security/loadpin, branch v4.19.280 Linux Kernel https://git.stealer.net/cgit.cgi/user/sven/linux.git/atom?h=v4.19.280 2018-07-16T19:31:57Z module: replace the existing LSM hook in init_module 2018-07-16T19:31:57Z Mimi Zohar zohar@linux.vnet.ibm.com 2018-07-13T18:06:02Z urn:sha1:c77b8cdf745d91eca138e7bfa430dc6640b604a0 Both the init_module and finit_module syscalls call either directly or indirectly the security_kernel_read_file LSM hook. This patch replaces the direct call in init_module with a call to the new security_kernel_load_data hook and makes the corresponding changes in SELinux, LoadPin, and IMA. Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> Cc: Jeff Vander Stoep <jeffv@google.com> Cc: Casey Schaufler <casey@schaufler-ca.com> Cc: Kees Cook <keescook@chromium.org> Acked-by: Jessica Yu <jeyu@kernel.org> Acked-by: Paul Moore <paul@paul-moore.com> Acked-by: Kees Cook <keescook@chromium.org> Signed-off-by: James Morris <james.morris@microsoft.com> get rid of pointless includes of fs_struct.h 2018-02-22T19:28:50Z Al Viro viro@zeniv.linux.org.uk 2018-02-22T19:28:50Z urn:sha1:304ec482f562885b178b370cd50340447585d1c0 Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> security: mark LSM hooks as __ro_after_init 2017-03-06T00:00:15Z James Morris jmorris@namei.org 2017-02-14T13:18:51Z urn:sha1:ca97d939db114c8d1619e10a3b82af8615372dae Mark all of the registration hooks as __ro_after_init (via the __lsm_ro_after_init macro). Signed-off-by: James Morris <james.l.morris@oracle.com> Acked-by: Stephen Smalley <sds@tycho.nsa.gov> Acked-by: Kees Cook <keescook@chromium.org> LSM: Add /sys/kernel/security/lsm 2017-01-19T02:18:29Z Casey Schaufler casey@schaufler-ca.com 2017-01-19T01:09:05Z urn:sha1:d69dece5f5b6bc7a5e39d2b6136ddc69469331fe I am still tired of having to find indirect ways to determine what security modules are active on a system. I have added /sys/kernel/security/lsm, which contains a comma separated list of the active security modules. No more groping around in /proc/filesystems or other clever hacks. Unchanged from previous versions except for being updated to the latest security next branch. Signed-off-by: Casey Schaufler <casey@schaufler-ca.com> Acked-by: John Johansen <john.johansen@canonical.com> Acked-by: Paul Moore <paul@paul-moore.com> Acked-by: Kees Cook <keescook@chromium.org> Signed-off-by: James Morris <james.l.morris@oracle.com> LSM: LoadPin: provide enablement CONFIG 2016-05-17T10:10:30Z Kees Cook keescook@chromium.org 2016-05-17T08:45:52Z urn:sha1:b937190c40de0f6f07f592042e3097b16c6b0130 Instead of being enabled by default when SECURITY_LOADPIN is selected, provide an additional (default off) config to determine the boot time behavior. As before, the "loadpin.enabled=0/1" kernel parameter remains available. Suggested-by: James Morris <jmorris@namei.org> Signed-off-by: Kees Cook <keescook@chromium.org> Signed-off-by: James Morris <james.l.morris@oracle.com> LSM: LoadPin for kernel file loading restrictions 2016-04-21T00:47:27Z Kees Cook keescook@chromium.org 2016-04-20T22:46:28Z urn:sha1:9b091556a073a9f5f93e2ad23d118f45c4796a84 This LSM enforces that kernel-loaded files (modules, firmware, etc) must all come from the same filesystem, with the expectation that such a filesystem is backed by a read-only device such as dm-verity or CDROM. This allows systems that have a verified and/or unchangeable filesystem to enforce module and firmware loading restrictions without needing to sign the files individually. Signed-off-by: Kees Cook <keescook@chromium.org> Acked-by: Serge Hallyn <serge.hallyn@canonical.com> Signed-off-by: James Morris <james.l.morris@oracle.com>