diff mbox series

[43/97] LSM: Create a data structure for a security context

Message ID 20190228221933.2551-44-casey@schaufler-ca.com (mailing list archive)
State New, archived
Headers show
Series LSM: Complete module stacking | expand

Commit Message

Casey Schaufler Feb. 28, 2019, 10:18 p.m. UTC
A "security context" is the text representation of
the information used by LSMs. This provides a structure
so that the use can be made consistant.

Signed-off-by: Casey Schaufler <casey@schaufler-ca.com>
 include/linux/security.h | 11 +++++++++++
 1 file changed, 11 insertions(+)
diff mbox series


diff --git a/include/linux/security.h b/include/linux/security.h
index b8c67da7409e..b60152334d9f 100644
--- a/include/linux/security.h
+++ b/include/linux/security.h
@@ -116,6 +116,17 @@  static inline bool lsm_export_equal(struct lsm_export *l, struct lsm_export *m)
 extern struct lsm_export *lsm_export_skb(struct sk_buff *skb);
+/* Text representation of LSM specific security information - a "context" */
+struct lsm_context {
+	char	*context;
+	u32	len;
+static inline void lsm_context_init(struct lsm_context *cp)
+	memset(cp, 0, sizeof(*cp));
 /* These functions are in security/commoncap.c */
 extern int cap_capable(const struct cred *cred, struct user_namespace *ns,
 		       int cap, unsigned int opts);