Re: [RFC v3 01/10] lsm: add security_socket_closed()

From: Samir Bellabes
Date: Tue May 03 2011 - 11:41:53 EST

Next message: Borislav Petkov: "Re: [PATCH 3/4] x86, mce: Add persistent MCE event"
Previous message: Paul Parsons: "Re: [PATCH 1/2] mfd: Add ASIC3 LED support"
In reply to: Tetsuo Handa: "Re: [RFC v3 01/10] lsm: add security_socket_closed()"
Next in thread: Samir Bellabes: "[RFC v3 04/10] snet: introduce snet_event"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Tetsuo Handa <penguin-kernel@xxxxxxxxxxxxxxxxxxx> writes:

> Samir Bellabes wrote:
>> Allow a module to update security informations when a socket is closed.
> Is security_inode_free() too late for doing it?
>
> static void ccs_inode_free_security(struct inode *inode)
> {
> if (inode->i_sb && inode->i_sb->s_magic == SOCKFS_MAGIC)
> ccs_update_socket_tag(inode, 0);
> }

I don't think it's too late.
But in sock_close() we are sure to deal with a inode which is a socket.

In ccs_inode_free_security(), we need to add small to check if the inode
is a socket or something else.

sam
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Borislav Petkov: "Re: [PATCH 3/4] x86, mce: Add persistent MCE event"
Previous message: Paul Parsons: "Re: [PATCH 1/2] mfd: Add ASIC3 LED support"
In reply to: Tetsuo Handa: "Re: [RFC v3 01/10] lsm: add security_socket_closed()"
Next in thread: Samir Bellabes: "[RFC v3 04/10] snet: introduce snet_event"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]