• Mimi Zohar's avatar
    security: new security_inode_init_security API adds function callback · 9d8f13ba
    Mimi Zohar authored
    This patch changes the security_inode_init_security API by adding a
    filesystem specific callback to write security extended attributes.
    This change is in preparation for supporting the initialization of
    multiple LSM xattrs and the EVM xattr.  Initially the callback function
    walks an array of xattrs, writing each xattr separately, but could be
    optimized to write multiple xattrs at once.
    For existing security_inode_init_security() calls, which have not yet
    been converted to use the new callback function, such as those in
    reiserfs and ocfs2, this patch defines security_old_inode_init_security().
    Signed-off-by: default avatarMimi Zohar <zohar@us.ibm.com>
security.c 33.4 KB