| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 6 Jun 2016 19:38:55 +1000 (AEST) From: James Morris <jmorris@...ei.org> To: Casey Schaufler <casey@...aufler-ca.com> cc: LSM <linux-security-module@...r.kernel.org>, "Serge E. Hallyn" <serge@...lyn.com>, LKLM <linux-kernel@...r.kernel.org> Subject: Re: [PATCH] LSM: Fix for security_inode_getsecurity and -EOPNOTSUPP On Tue, 31 May 2016, Casey Schaufler wrote: > Subject: [PATCH] LSM: Fix for security_inode_getsecurity and -EOPNOTSUPP > > Serge Hallyn pointed out that the current implementation of > security_inode_getsecurity() works if there is only one hook > provided for it, but will fail if there is more than one and > the attribute requested isn't supplied by the first module. > This isn't a problem today, since only SELinux and Smack > provide this hook and there is (currently) no way to enable > both of those modules at the same time. Serge, however, wants > to introduce a capability attribute and an inode_getsecurity > hook in the capability security module to handle it. This > addresses that upcoming problem, will be required for "extreme > stacking" and is just a better implementation. > > Signed-off-by: Casey Schaufler <casey@...aufler-ca.com> Applied to git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security.git next -- James Morris <jmorris@...ei.org>
Powered by blists - more mailing lists