LSM: Introduce LSM_FLAG_LEGACY_MAJOR This adds a flag for the current "major" LSMs to distinguish them when we have a universal method for ordering all LSMs. It's called "legacy" since the distinction of "major" will go away in the blob-sharing world. Signed-off-by: Kees Cook <keescook@chromium.org> Reviewed-by: Casey Schaufler <casey@schaufler-ca.com> Reviewed-by: John Johansen <john.johansen@canonical.com>

commit: 47008e5161fa097ce9b848dee194b43262b743a5 [log] [tgz]
author: Kees Cook <keescook@chromium.org> Wed Sep 19 16:13:25 2018 -0700
committer: Kees Cook <keescook@chromium.org> Tue Jan 08 13:18:42 2019 -0800
tree: 4a2e652b63497aef5f1b6d55f7ec24c562617a25
parent: bfeffd155283772bbe78c6a05dec7c0128ee500c [diff] [blame]
diff --git a/include/linux/lsm_hooks.h b/include/linux/lsm_hooks.h
index 9a0bdf9..318d93f 100644
--- a/include/linux/lsm_hooks.h
+++ b/include/linux/lsm_hooks.h

@@ -2042,8 +2042,11 @@
 extern void security_add_hooks(struct security_hook_list *hooks, int count,
 				char *lsm);
 
+#define LSM_FLAG_LEGACY_MAJOR	BIT(0)
+
 struct lsm_info {
 	const char *name;	/* Required. */
+	unsigned long flags;	/* Optional: flags describing LSM */
 	int (*init)(void);	/* Required. */
 };
commit	47008e5161fa097ce9b848dee194b43262b743a5	[log] [tgz]
author	Kees Cook <keescook@chromium.org>	Wed Sep 19 16:13:25 2018 -0700
committer	Kees Cook <keescook@chromium.org>	Tue Jan 08 13:18:42 2019 -0800
tree	4a2e652b63497aef5f1b6d55f7ec24c562617a25
parent	bfeffd155283772bbe78c6a05dec7c0128ee500c [diff] [blame]