Re: [PATCH 2/7] Overlayfs: Use copy-up security hooks

From: David Howells
Date: Fri Nov 07 2014 - 17:05:53 EST

Next message: Guennadi Liakhovetski: "Re: [PATCH v5 1/6] of: Decrement refcount of previous endpoint in of_graph_get_next_endpoint"
Previous message: Paolo Bonzini: "[PATCH 2/2] blk-mq: use get_cpu/put_cpu instead of preempt_disable/preempt_enable"
In reply to: Paul Moore: "Re: [PATCH 2/7] Overlayfs: Use copy-up security hooks"
Next in thread: David Howells: "[PATCH 3/7] SELinux: Stub in copy-up handling"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Paul Moore <paul@xxxxxxxxxxxxxx> wrote:

> So the LSM must modify the xattr in place? I suppose that since the @value
> is allocated to the max size it shouldn't be a problem. Just checking ...

... And the caller must provide a maximally sized buffer (which it likely has
to allocate anyway).

I'm not sure I really need to provide the modification thing. I suspect a
binary keep or discard decision is sufficient.

David
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Guennadi Liakhovetski: "Re: [PATCH v5 1/6] of: Decrement refcount of previous endpoint in of_graph_get_next_endpoint"
Previous message: Paolo Bonzini: "[PATCH 2/2] blk-mq: use get_cpu/put_cpu instead of preempt_disable/preempt_enable"
In reply to: Paul Moore: "Re: [PATCH 2/7] Overlayfs: Use copy-up security hooks"
Next in thread: David Howells: "[PATCH 3/7] SELinux: Stub in copy-up handling"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]