| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <fdc0c2f0-a16d-4534-90d9-696000871044@huawei.com> Date: Sat, 20 Jul 2024 17:30:04 +0800 From: Xu Kuohai <xukuohai@...wei.com> To: Paul Moore <paul@...l-moore.com>, Xu Kuohai <xukuohai@...weicloud.com>, <bpf@...r.kernel.org>, <netdev@...r.kernel.org>, <linux-security-module@...r.kernel.org>, <linux-kselftest@...r.kernel.org>, <linux-integrity@...r.kernel.org>, <apparmor@...ts.ubuntu.com>, <selinux@...r.kernel.org> CC: Alexei Starovoitov <ast@...nel.org>, Andrii Nakryiko <andrii@...nel.org>, Daniel Borkmann <daniel@...earbox.net>, Martin KaFai Lau <martin.lau@...ux.dev>, Eduard Zingerman <eddyz87@...il.com>, Song Liu <song@...nel.org>, Yonghong Song <yonghong.song@...ux.dev>, John Fastabend <john.fastabend@...il.com>, KP Singh <kpsingh@...nel.org>, Stanislav Fomichev <sdf@...gle.com>, Hao Luo <haoluo@...gle.com>, Jiri Olsa <jolsa@...nel.org>, Matt Bobrowski <mattbobrowski@...gle.com>, Brendan Jackman <jackmanb@...omium.org>, James Morris <jmorris@...ei.org>, "Serge E . Hallyn" <serge@...lyn.com>, Khadija Kamran <kamrankhadijadj@...il.com>, Casey Schaufler <casey@...aufler-ca.com>, Ondrej Mosnacek <omosnace@...hat.com>, Kees Cook <keescook@...omium.org>, John Johansen <john.johansen@...onical.com>, Lukas Bulwahn <lukas.bulwahn@...il.com>, Roberto Sassu <roberto.sassu@...wei.com>, Shung-Hsi Yu <shung-hsi.yu@...e.com>, Edward Cree <ecree.xilinx@...il.com>, Alexander Viro <viro@...iv.linux.org.uk>, Christian Brauner <brauner@...nel.org>, Trond Myklebust <trond.myklebust@...merspace.com>, Anna Schumaker <anna@...nel.org>, Eric Dumazet <edumazet@...gle.com>, Jakub Kicinski <kuba@...nel.org>, Paolo Abeni <pabeni@...hat.com>, Stephen Smalley <stephen.smalley.work@...il.com> Subject: Re: [PATCH v4 6/20] lsm: Refactor return value of LSM hook getselfattr On 7/19/2024 10:08 AM, Paul Moore wrote: > On Jul 11, 2024 Xu Kuohai <xukuohai@...weicloud.com> wrote: >> >> To be consistent with most LSM hooks, convert the return value of >> hook getselfattr to 0 or a negative error code. >> >> Before: >> - Hook getselfattr returns number of attributes found on success >> or a negative error code on failure. >> >> After: >> - Hook getselfattr returns 0 on success or a negative error code >> on failure. An output parameter @nattr is introduced to hold >> the number of attributes found on success. >> >> Signed-off-by: Xu Kuohai <xukuohai@...wei.com> >> --- >> include/linux/lsm_hook_defs.h | 2 +- >> include/linux/security.h | 5 +++-- >> security/apparmor/lsm.c | 5 +++-- >> security/lsm_syscalls.c | 6 +++++- >> security/security.c | 18 +++++++++++------- >> security/selinux/hooks.c | 13 +++++++++---- >> security/smack/smack_lsm.c | 13 +++++++++---- >> 7 files changed, 41 insertions(+), 21 deletions(-) > > The getselfattr hook is different from the majority of the other LSM > hooks as getselfattr is used as part of lsm_get_self_attr(2) syscall and > not by other subsystems within the kernel. Let's leave it as-is for now > as it is sufficiently special case that a deviation is okay. > Got it, thanks > -- > paul-moore.com > >
Powered by blists - more mailing lists