Re: [PATCH v3 3/3] LSM: Add context interface for proc attr

From: Kees Cook
Date: Tue Jun 14 2016 - 17:07:35 EST

Next message: H. Peter Anvin: "Re: [PATCH v2] Linux VM workaround for Knights Landing A/D leak"
Previous message: Winkler, Tomas: "RE: [PATCH v4 0/8] Replay Protected Memory Block (RPMB) subsystem"
In reply to: Casey Schaufler: "Re: [PATCH v3 3/3] LSM: Add context interface for proc attr"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Jun 14, 2016 at 1:19 PM, Casey Schaufler <casey@xxxxxxxxxxxxxxxx> wrote:
> On 6/14/2016 11:57 AM, Kees Cook wrote:

>> it's okay.) Also, should lsm == NULL be checked early and
>> rejected/skipped so the lsm != NULL test isn't needed in both loops?
>
> Ah, you miss the nuance of the code. NULL is an acceptance condition,
> not a rejection as it would be in most cases.

Ah! Yes, got it now. Thanks!

-Kees

--
Kees Cook
Chrome OS & Brillo Security

Next message: H. Peter Anvin: "Re: [PATCH v2] Linux VM workaround for Knights Landing A/D leak"
Previous message: Winkler, Tomas: "RE: [PATCH v4 0/8] Replay Protected Memory Block (RPMB) subsystem"
In reply to: Casey Schaufler: "Re: [PATCH v3 3/3] LSM: Add context interface for proc attr"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]