Re: [PATCH v20 05/12] LSM: Infrastructure management of the superblock

From: Stephen Smalley
Date: Wed Aug 12 2020 - 15:26:46 EST

Next message: Sean Christopherson: "[PATCH v2 0/2] KVM: x86/mmu: Zap orphaned kids for nested TDP MMU"
Previous message: Wolfram Sang: "Re: [PATCH v4 5/6] at24: Support probing while off"
Next in thread: Mickaël Salaün: "Re: [PATCH v20 05/12] LSM: Infrastructure management of the superblock"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 8/2/20 5:58 PM, Mickaël Salaün wrote:

From: Casey Schaufler <casey@xxxxxxxxxxxxxxxx>

Move management of the superblock->sb_security blob out
of the individual security modules and into the security
infrastructure. Instead of allocating the blobs from within
the modules the modules tell the infrastructure how much
space is required, and the space is allocated there.

Signed-off-by: Casey Schaufler <casey@xxxxxxxxxxxxxxxx>
Reviewed-by: Kees Cook <keescook@xxxxxxxxxxxx>
Reviewed-by: John Johansen <john.johansen@xxxxxxxxxxxxx>
Reviewed-by: Stephen Smalley <sds@xxxxxxxxxxxxx>
Reviewed-by: Mickaël Salaün <mic@xxxxxxxxxxx>
Link: https://lore.kernel.org/r/20190829232935.7099-2-casey@xxxxxxxxxxxxxxxx
---

Changes since v17:
* Rebase the original LSM stacking patch from v5.3 to v5.7: I fixed some
diff conflicts caused by code moves and function renames in
selinux/include/objsec.h and selinux/hooks.c . I checked that it
builds but I didn't test the changes for SELinux nor SMACK.

You shouldn't retain Signed-off-by and Reviewed-by lines from an earlier patch if you made non-trivial changes to it (even more so if you didn't test them).

Next message: Sean Christopherson: "[PATCH v2 0/2] KVM: x86/mmu: Zap orphaned kids for nested TDP MMU"
Previous message: Wolfram Sang: "Re: [PATCH v4 5/6] at24: Support probing while off"
Next in thread: Mickaël Salaün: "Re: [PATCH v20 05/12] LSM: Infrastructure management of the superblock"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]