From fbd9acb2dc2aa55902c48a83f157082849209fba Mon Sep 17 00:00:00 2001
From: Jann Horn <jannh@google.com>
Date: Thu, 11 Apr 2019 13:11:54 -0700
Subject: LSM: SafeSetID: add read handler

For debugging a running system, it is very helpful to be able to see what
policy the system is using. Add a read handler that can dump out a copy of
the loaded policy.

Signed-off-by: Jann Horn <jannh@google.com>
Signed-off-by: Micah Morton <mortonm@chromium.org>
---
 security/safesetid/lsm.h | 1 +
 1 file changed, 1 insertion(+)

(limited to 'security/safesetid/lsm.h')

diff --git a/security/safesetid/lsm.h b/security/safesetid/lsm.h
index 4a34f558d964..db6d16e6bbc3 100644
--- a/security/safesetid/lsm.h
+++ b/security/safesetid/lsm.h
@@ -41,6 +41,7 @@ struct setuid_rule {
 
 struct setuid_ruleset {
 	DECLARE_HASHTABLE(rules, SETID_HASH_BITS);
+	char *policy_str;
 	struct rcu_head rcu;
 };
 
-- 
cgit v1.2.3-71-gd317