diff options
Diffstat (limited to 'include/linux/lsm_hooks.h')
| -rw-r--r-- | include/linux/lsm_hooks.h | 8 |
1 files changed, 7 insertions, 1 deletions
diff --git a/include/linux/lsm_hooks.h b/include/linux/lsm_hooks.h index 8f1131c8dd54..97a020c616ad 100644 --- a/include/linux/lsm_hooks.h +++ b/include/linux/lsm_hooks.h | |||
| @@ -576,6 +576,10 @@ | |||
| 576 | * userspace to load a kernel module with the given name. | 576 | * userspace to load a kernel module with the given name. |
| 577 | * @kmod_name name of the module requested by the kernel | 577 | * @kmod_name name of the module requested by the kernel |
| 578 | * Return 0 if successful. | 578 | * Return 0 if successful. |
| 579 | * @kernel_load_data: | ||
| 580 | * Load data provided by userspace. | ||
| 581 | * @id kernel load data identifier | ||
| 582 | * Return 0 if permission is granted. | ||
| 579 | * @kernel_read_file: | 583 | * @kernel_read_file: |
| 580 | * Read a file specified by userspace. | 584 | * Read a file specified by userspace. |
| 581 | * @file contains the file structure pointing to the file being read | 585 | * @file contains the file structure pointing to the file being read |
| @@ -1569,7 +1573,7 @@ union security_list_options { | |||
| 1569 | int (*file_send_sigiotask)(struct task_struct *tsk, | 1573 | int (*file_send_sigiotask)(struct task_struct *tsk, |
| 1570 | struct fown_struct *fown, int sig); | 1574 | struct fown_struct *fown, int sig); |
| 1571 | int (*file_receive)(struct file *file); | 1575 | int (*file_receive)(struct file *file); |
| 1572 | int (*file_open)(struct file *file, const struct cred *cred); | 1576 | int (*file_open)(struct file *file); |
| 1573 | 1577 | ||
| 1574 | int (*task_alloc)(struct task_struct *task, unsigned long clone_flags); | 1578 | int (*task_alloc)(struct task_struct *task, unsigned long clone_flags); |
| 1575 | void (*task_free)(struct task_struct *task); | 1579 | void (*task_free)(struct task_struct *task); |
| @@ -1582,6 +1586,7 @@ union security_list_options { | |||
| 1582 | int (*kernel_act_as)(struct cred *new, u32 secid); | 1586 | int (*kernel_act_as)(struct cred *new, u32 secid); |
| 1583 | int (*kernel_create_files_as)(struct cred *new, struct inode *inode); | 1587 | int (*kernel_create_files_as)(struct cred *new, struct inode *inode); |
| 1584 | int (*kernel_module_request)(char *kmod_name); | 1588 | int (*kernel_module_request)(char *kmod_name); |
| 1589 | int (*kernel_load_data)(enum kernel_load_data_id id); | ||
| 1585 | int (*kernel_read_file)(struct file *file, enum kernel_read_file_id id); | 1590 | int (*kernel_read_file)(struct file *file, enum kernel_read_file_id id); |
| 1586 | int (*kernel_post_read_file)(struct file *file, char *buf, loff_t size, | 1591 | int (*kernel_post_read_file)(struct file *file, char *buf, loff_t size, |
| 1587 | enum kernel_read_file_id id); | 1592 | enum kernel_read_file_id id); |
| @@ -1872,6 +1877,7 @@ struct security_hook_heads { | |||
| 1872 | struct hlist_head cred_getsecid; | 1877 | struct hlist_head cred_getsecid; |
| 1873 | struct hlist_head kernel_act_as; | 1878 | struct hlist_head kernel_act_as; |
| 1874 | struct hlist_head kernel_create_files_as; | 1879 | struct hlist_head kernel_create_files_as; |
| 1880 | struct hlist_head kernel_load_data; | ||
| 1875 | struct hlist_head kernel_read_file; | 1881 | struct hlist_head kernel_read_file; |
| 1876 | struct hlist_head kernel_post_read_file; | 1882 | struct hlist_head kernel_post_read_file; |
| 1877 | struct hlist_head kernel_module_request; | 1883 | struct hlist_head kernel_module_request; |