~ [ source navigation ] ~ [ diff markup ] ~ [ identifier search ] ~

TOMOYO Linux Cross Reference
Linux/security/landlock/Kconfig

Version: ~ [ linux-6.12-rc7 ] ~ [ linux-6.11.7 ] ~ [ linux-6.10.14 ] ~ [ linux-6.9.12 ] ~ [ linux-6.8.12 ] ~ [ linux-6.7.12 ] ~ [ linux-6.6.60 ] ~ [ linux-6.5.13 ] ~ [ linux-6.4.16 ] ~ [ linux-6.3.13 ] ~ [ linux-6.2.16 ] ~ [ linux-6.1.116 ] ~ [ linux-6.0.19 ] ~ [ linux-5.19.17 ] ~ [ linux-5.18.19 ] ~ [ linux-5.17.15 ] ~ [ linux-5.16.20 ] ~ [ linux-5.15.171 ] ~ [ linux-5.14.21 ] ~ [ linux-5.13.19 ] ~ [ linux-5.12.19 ] ~ [ linux-5.11.22 ] ~ [ linux-5.10.229 ] ~ [ linux-5.9.16 ] ~ [ linux-5.8.18 ] ~ [ linux-5.7.19 ] ~ [ linux-5.6.19 ] ~ [ linux-5.5.19 ] ~ [ linux-5.4.285 ] ~ [ linux-5.3.18 ] ~ [ linux-5.2.21 ] ~ [ linux-5.1.21 ] ~ [ linux-5.0.21 ] ~ [ linux-4.20.17 ] ~ [ linux-4.19.323 ] ~ [ linux-4.18.20 ] ~ [ linux-4.17.19 ] ~ [ linux-4.16.18 ] ~ [ linux-4.15.18 ] ~ [ linux-4.14.336 ] ~ [ linux-4.13.16 ] ~ [ linux-4.12.14 ] ~ [ linux-4.11.12 ] ~ [ linux-4.10.17 ] ~ [ linux-4.9.337 ] ~ [ linux-4.4.302 ] ~ [ linux-3.10.108 ] ~ [ linux-2.6.32.71 ] ~ [ linux-2.6.0 ] ~ [ linux-2.4.37.11 ] ~ [ unix-v6-master ] ~ [ ccs-tools-1.8.12 ] ~ [ policy-sample ] ~
Architecture: ~ [ i386 ] ~ [ alpha ] ~ [ m68k ] ~ [ mips ] ~ [ ppc ] ~ [ sparc ] ~ [ sparc64 ] ~

Diff markup

Differences between /security/landlock/Kconfig (Version linux-6.12-rc7) and /security/landlock/Kconfig (Version linux-5.13.19)


  1 # SPDX-License-Identifier: GPL-2.0-only             1 # SPDX-License-Identifier: GPL-2.0-only
  2                                                     2 
  3 config SECURITY_LANDLOCK                            3 config SECURITY_LANDLOCK
  4         bool "Landlock support"                     4         bool "Landlock support"
  5         depends on SECURITY                    !!   5         depends on SECURITY && !ARCH_EPHEMERAL_INODES
  6         select SECURITY_NETWORK                << 
  7         select SECURITY_PATH                        6         select SECURITY_PATH
  8         help                                        7         help
  9           Landlock is a sandboxing mechanism t      8           Landlock is a sandboxing mechanism that enables processes to restrict
 10           themselves (and their future childre      9           themselves (and their future children) by gradually enforcing
 11           tailored access control policies.  A     10           tailored access control policies.  A Landlock security policy is a
 12           set of access rights (e.g. open a fi     11           set of access rights (e.g. open a file in read-only, make a
 13           directory, etc.) tied to a file hier     12           directory, etc.) tied to a file hierarchy.  Such policy can be
 14           configured and enforced by any proce     13           configured and enforced by any processes for themselves using the
 15           dedicated system calls: landlock_cre     14           dedicated system calls: landlock_create_ruleset(),
 16           landlock_add_rule(), and landlock_re     15           landlock_add_rule(), and landlock_restrict_self().
 17                                                    16 
 18           See Documentation/userspace-api/land     17           See Documentation/userspace-api/landlock.rst for further information.
 19                                                    18 
 20           If you are unsure how to answer this     19           If you are unsure how to answer this question, answer N.  Otherwise,
 21           you should also prepend "landlock,"      20           you should also prepend "landlock," to the content of CONFIG_LSM to
 22           enable Landlock at boot time.            21           enable Landlock at boot time.
 23                                                << 
 24 config SECURITY_LANDLOCK_KUNIT_TEST            << 
 25         bool "KUnit tests for Landlock" if !KU << 
 26         depends on KUNIT=y                     << 
 27         depends on SECURITY_LANDLOCK           << 
 28         default KUNIT_ALL_TESTS                << 
 29         help                                   << 
 30           Build KUnit tests for Landlock.      << 
 31                                                << 
 32           See the KUnit documentation in Docum << 
 33                                                << 
 34           Run all KUnit tests for Landlock wit << 
 35           ./tools/testing/kunit/kunit.py run - << 
 36                                                << 
 37           If you are unsure how to answer this << 
                                                      

~ [ source navigation ] ~ [ diff markup ] ~ [ identifier search ] ~

kernel.org | git.kernel.org | LWN.net | Project Home | SVN repository | Mail admin

Linux® is a registered trademark of Linus Torvalds in the United States and other countries.
TOMOYO® is a registered trademark of NTT DATA CORPORATION.

sflogo.php