LSM: Separate idea of "major" LSM from "exclusive" LSM In order to both support old "security=" Legacy Major LSM selection, and handling real exclusivity, this creates LSM_FLAG_EXCLUSIVE and updates the selection logic to handle them. Signed-off-by: Kees Cook <keescook@chromium.org> Reviewed-by: Casey Schaufler <casey@schaufler-ca.com>

commit: 14bd99c821f7ace0e8110a1bfdfaa27e1788e20f [log] [tgz]
author: Kees Cook <keescook@chromium.org> Wed Sep 19 19:57:06 2018 -0700
committer: Kees Cook <keescook@chromium.org> Tue Jan 08 13:18:43 2019 -0800
tree: a5feee1ff6b832eaffef89d1bde995e0574723e2
parent: 7e611486d905f435faf80969deed68a615019e6b [diff] [blame]
diff --git a/security/smack/smack_lsm.c b/security/smack/smack_lsm.c
index 580e9d6..7807333 100644
--- a/security/smack/smack_lsm.c
+++ b/security/smack/smack_lsm.c

@@ -4809,6 +4809,6 @@
  */
 DEFINE_LSM(smack) = {
 	.name = "smack",
-	.flags = LSM_FLAG_LEGACY_MAJOR,
+	.flags = LSM_FLAG_LEGACY_MAJOR | LSM_FLAG_EXCLUSIVE,
 	.init = smack_init,
 };
commit	14bd99c821f7ace0e8110a1bfdfaa27e1788e20f	[log] [tgz]
author	Kees Cook <keescook@chromium.org>	Wed Sep 19 19:57:06 2018 -0700
committer	Kees Cook <keescook@chromium.org>	Tue Jan 08 13:18:43 2019 -0800
tree	a5feee1ff6b832eaffef89d1bde995e0574723e2
parent	7e611486d905f435faf80969deed68a615019e6b [diff] [blame]