Re: [PATCH v26 17/25] LSM: Use lsmcontext in security_inode_getsecctx

From: Kees Cook
Date: Fri May 14 2021 - 15:24:54 EST

Next message: kernel test robot: "[tip:x86/asm] BUILD SUCCESS 41f45fb045bcc20e71eb705b361356e715682162"
Previous message: Lad Prabhakar: "[PATCH 16/16] arm64: dts: renesas: Add initial device tree for RZ/G2L SMARC EVK"
In reply to: Casey Schaufler: "[PATCH v26 17/25] LSM: Use lsmcontext in security_inode_getsecctx"
Next in thread: Casey Schaufler: "[PATCH v26 18/25] LSM: security_secid_to_secctx in netlink netfilter"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, May 13, 2021 at 01:07:59PM -0700, Casey Schaufler wrote:
> Change the security_inode_getsecctx() interface to fill
> a lsmcontext structure instead of data and length pointers.
> This provides the information about which LSM created the
> context so that security_release_secctx() can use the
> correct hook.
>
> Acked-by: Stephen Smalley <sds@xxxxxxxxxxxxx>
> Acked-by: Paul Moore <paul@xxxxxxxxxxxxxx>
> Acked-by: Chuck Lever <chuck.lever@xxxxxxxxxx>
> Reviewed-by: John Johansen <john.johansen@xxxxxxxxxxxxx>
> Signed-off-by: Casey Schaufler <casey@xxxxxxxxxxxxxxxx>

Seem good to me.

Reviewed-by: Kees Cook <keescook@xxxxxxxxxxxx>

--
Kees Cook

Next message: kernel test robot: "[tip:x86/asm] BUILD SUCCESS 41f45fb045bcc20e71eb705b361356e715682162"
Previous message: Lad Prabhakar: "[PATCH 16/16] arm64: dts: renesas: Add initial device tree for RZ/G2L SMARC EVK"
In reply to: Casey Schaufler: "[PATCH v26 17/25] LSM: Use lsmcontext in security_inode_getsecctx"
Next in thread: Casey Schaufler: "[PATCH v26 18/25] LSM: security_secid_to_secctx in netlink netfilter"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]