Add security hooks to binder and implement the hooks for SELinux. (79af7307) · Commits · Mirrors / git.yoctoproject.org / linux-yocto · GitLab

Commit 79af7307 authored Jan 21, 2015 by

Stephen Smalley Committed by Greg Kroah-Hartman Jan 25, 2015

Add security hooks to binder and implement the hooks for SELinux.



Add security hooks to the binder and implement the hooks for SELinux.
The security hooks enable security modules such as SELinux to implement
controls over binder IPC.  The security hooks include support for
controlling what process can become the binder context manager
(binder_set_context_mgr), controlling the ability of a process
to invoke a binder transaction/IPC to another process (binder_transaction),
controlling the ability of a process to transfer a binder reference to
another process (binder_transfer_binder), and controlling the ability
of a process to transfer an open file to another process (binder_transfer_file).

These hooks have been included in the Android kernel trees since Android 4.3.

(Updated to reflect upstream relocation and changes to the binder driver,
changes to the LSM audit data structures, coding style cleanups, and
to add inline documentation for the hooks).

Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Acked-by: Nick Kralevich <nnk@google.com>
Acked-by: Jeffrey Vander Stoep <jeffv@google.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

parent 79563db9

Hide whitespace changes

Inline Side-by-side

mirror @mirror
mentioned in commit 46088365
· Nov 17, 2021

mentioned in commit 46088365

mentioned in commit 46088365bab7673dde67efcff0be34bb051a5319

Toggle commit list
mirror @mirror
mentioned in commit 3f3c31dd
· Nov 17, 2021

mentioned in commit 3f3c31dd

mentioned in commit 3f3c31dd0f8cfdc4ce301a4a605488fb73602ea5

Toggle commit list

Please register or to comment