~ [ source navigation ] ~ [ diff markup ] ~ [ identifier search ] ~

TOMOYO Linux Cross Reference
Linux/security/landlock/Kconfig

Version: ~ [ linux-6.12-rc7 ] ~ [ linux-6.11.7 ] ~ [ linux-6.10.14 ] ~ [ linux-6.9.12 ] ~ [ linux-6.8.12 ] ~ [ linux-6.7.12 ] ~ [ linux-6.6.60 ] ~ [ linux-6.5.13 ] ~ [ linux-6.4.16 ] ~ [ linux-6.3.13 ] ~ [ linux-6.2.16 ] ~ [ linux-6.1.116 ] ~ [ linux-6.0.19 ] ~ [ linux-5.19.17 ] ~ [ linux-5.18.19 ] ~ [ linux-5.17.15 ] ~ [ linux-5.16.20 ] ~ [ linux-5.15.171 ] ~ [ linux-5.14.21 ] ~ [ linux-5.13.19 ] ~ [ linux-5.12.19 ] ~ [ linux-5.11.22 ] ~ [ linux-5.10.229 ] ~ [ linux-5.9.16 ] ~ [ linux-5.8.18 ] ~ [ linux-5.7.19 ] ~ [ linux-5.6.19 ] ~ [ linux-5.5.19 ] ~ [ linux-5.4.285 ] ~ [ linux-5.3.18 ] ~ [ linux-5.2.21 ] ~ [ linux-5.1.21 ] ~ [ linux-5.0.21 ] ~ [ linux-4.20.17 ] ~ [ linux-4.19.323 ] ~ [ linux-4.18.20 ] ~ [ linux-4.17.19 ] ~ [ linux-4.16.18 ] ~ [ linux-4.15.18 ] ~ [ linux-4.14.336 ] ~ [ linux-4.13.16 ] ~ [ linux-4.12.14 ] ~ [ linux-4.11.12 ] ~ [ linux-4.10.17 ] ~ [ linux-4.9.337 ] ~ [ linux-4.4.302 ] ~ [ linux-3.10.108 ] ~ [ linux-2.6.32.71 ] ~ [ linux-2.6.0 ] ~ [ linux-2.4.37.11 ] ~ [ unix-v6-master ] ~ [ ccs-tools-1.8.12 ] ~ [ policy-sample ] ~
Architecture: ~ [ i386 ] ~ [ alpha ] ~ [ m68k ] ~ [ mips ] ~ [ ppc ] ~ [ sparc ] ~ [ sparc64 ] ~

Diff markup

Differences between /security/landlock/Kconfig (Version linux-6.12-rc7) and /security/landlock/Kconfig (Version linux-6.9.12)

  1 # SPDX-License-Identifier: GPL-2.0-only             1 # SPDX-License-Identifier: GPL-2.0-only
  2                                                     2 
  3 config SECURITY_LANDLOCK                            3 config SECURITY_LANDLOCK
  4         bool "Landlock support"                     4         bool "Landlock support"
  5         depends on SECURITY                         5         depends on SECURITY
  6         select SECURITY_NETWORK                     6         select SECURITY_NETWORK
  7         select SECURITY_PATH                        7         select SECURITY_PATH
  8         help                                        8         help
  9           Landlock is a sandboxing mechanism t      9           Landlock is a sandboxing mechanism that enables processes to restrict
 10           themselves (and their future childre     10           themselves (and their future children) by gradually enforcing
 11           tailored access control policies.  A     11           tailored access control policies.  A Landlock security policy is a
 12           set of access rights (e.g. open a fi     12           set of access rights (e.g. open a file in read-only, make a
 13           directory, etc.) tied to a file hier     13           directory, etc.) tied to a file hierarchy.  Such policy can be
 14           configured and enforced by any proce     14           configured and enforced by any processes for themselves using the
 15           dedicated system calls: landlock_cre     15           dedicated system calls: landlock_create_ruleset(),
 16           landlock_add_rule(), and landlock_re     16           landlock_add_rule(), and landlock_restrict_self().
 17                                                    17 
 18           See Documentation/userspace-api/land     18           See Documentation/userspace-api/landlock.rst for further information.
 19                                                    19 
 20           If you are unsure how to answer this     20           If you are unsure how to answer this question, answer N.  Otherwise,
 21           you should also prepend "landlock,"      21           you should also prepend "landlock," to the content of CONFIG_LSM to
 22           enable Landlock at boot time.            22           enable Landlock at boot time.
 23                                                    23 
 24 config SECURITY_LANDLOCK_KUNIT_TEST                24 config SECURITY_LANDLOCK_KUNIT_TEST
 25         bool "KUnit tests for Landlock" if !KU     25         bool "KUnit tests for Landlock" if !KUNIT_ALL_TESTS
 26         depends on KUNIT=y                         26         depends on KUNIT=y
 27         depends on SECURITY_LANDLOCK               27         depends on SECURITY_LANDLOCK
 28         default KUNIT_ALL_TESTS                    28         default KUNIT_ALL_TESTS
 29         help                                       29         help
 30           Build KUnit tests for Landlock.          30           Build KUnit tests for Landlock.
 31                                                    31 
 32           See the KUnit documentation in Docum     32           See the KUnit documentation in Documentation/dev-tools/kunit
 33                                                    33 
 34           Run all KUnit tests for Landlock wit     34           Run all KUnit tests for Landlock with:
 35           ./tools/testing/kunit/kunit.py run -     35           ./tools/testing/kunit/kunit.py run --kunitconfig security/landlock
 36                                                    36 
 37           If you are unsure how to answer this     37           If you are unsure how to answer this question, answer N.
~ [ source navigation ] ~ [ diff markup ] ~ [ identifier search ] ~
kernel.org | git.kernel.org | LWN.net | Project Home | SVN repository | Mail admin

Linux® is a registered trademark of Linus Torvalds in the United States and other countries.
TOMOYO® is a registered trademark of NTT DATA CORPORATION.

sflogo.php