Re: [PATCH v26 07/25] LSM: Use lsmblob in security_secctx_to_secid

From: Kees Cook
Date: Fri May 14 2021 - 15:04:01 EST

Next message: Kees Cook: "Re: [PATCH v26 08/25] LSM: Use lsmblob in security_secid_to_secctx"
Previous message: Kees Cook: "Re: [PATCH v26 03/25] LSM: provide lsm name and id slot mappings"
In reply to: Casey Schaufler: "[PATCH v26 07/25] LSM: Use lsmblob in security_secctx_to_secid"
Next in thread: Casey Schaufler: "[PATCH v26 08/25] LSM: Use lsmblob in security_secid_to_secctx"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, May 13, 2021 at 01:07:49PM -0700, Casey Schaufler wrote:
> Change the security_secctx_to_secid interface to use a lsmblob
> structure in place of the single u32 secid in support of
> module stacking. Change its callers to do the same.
>
> The security module hook is unchanged, still passing back a secid.
> The infrastructure passes the correct entry from the lsmblob.
>
> Signed-off-by: Casey Schaufler <casey@xxxxxxxxxxxxxxxx>

This looks like sane refactoring into the new blob type.

Reviewed-by: Kees Cook <keescook@xxxxxxxxxxxx>

--
Kees Cook

Next message: Kees Cook: "Re: [PATCH v26 08/25] LSM: Use lsmblob in security_secid_to_secctx"
Previous message: Kees Cook: "Re: [PATCH v26 03/25] LSM: provide lsm name and id slot mappings"
In reply to: Casey Schaufler: "[PATCH v26 07/25] LSM: Use lsmblob in security_secctx_to_secid"
Next in thread: Casey Schaufler: "[PATCH v26 08/25] LSM: Use lsmblob in security_secid_to_secctx"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]