Re: [PATCH net-next v5 4/5] selinux: bpf: Add selinux check for eBPF syscall operations

On Thu, 2017-10-12 at 13:55 -0700, Chenbo Feng wrote: > From: Chenbo Feng > > Implement the actual checks introduced to eBPF related syscalls. This > implementation use the security field inside bpf object to store a > sid that > identify the bpf object. And when processes try

[PATCH net-next v5 4/5] selinux: bpf: Add selinux check for eBPF syscall operations

From: Chenbo Feng Implement the actual checks introduced to eBPF related syscalls. This implementation use the security field inside bpf object to store a sid that identify the bpf object. And when processes try to access the object, selinux will check if processes have the