// SPDX-License-Identifier: GPL-2.0-only /* * Landlock LSM - Network management and hooks * * Copyright © 2022-2023 Huawei Tech. Co., Ltd. * Copyright © 2022-2023 Microsoft Corporation */ #include <linux/in.h> #include <linux/net.h> #include <linux/socket.h> #include <net/ipv6.h> #include "common.h" #include "cred.h" #include "limits.h" #include "net.h" #include "ruleset.h" int landlock_append_net_rule(struct landlock_ruleset *const ruleset, const u16 port, access_mask_t access_rights) { … } static access_mask_t get_raw_handled_net_accesses(const struct landlock_ruleset *const domain) { … } static const struct landlock_ruleset *get_current_net_domain(void) { … } static int current_check_access_socket(struct socket *const sock, struct sockaddr *const address, const int addrlen, access_mask_t access_request) { … } static int hook_socket_bind(struct socket *const sock, struct sockaddr *const address, const int addrlen) { … } static int hook_socket_connect(struct socket *const sock, struct sockaddr *const address, const int addrlen) { … } static struct security_hook_list landlock_hooks[] __ro_after_init = …; __init void landlock_add_net_hooks(void) { … }
Codebase Browser
linux