Re: [PATCH v2 2/3] tomoyo: replace current->in_execve flag with security_execve_abort() hook

From: Kees Cook
Date: Wed Feb 07 2024 - 09:26:06 EST

Next message: Kees Cook: "Re: [PATCH v2 3/3] fs/exec: remove current->in_execve flag"
Previous message: Joe Damato: "Re: [PATCH net-next] eth: mlx5: link NAPI instances to queues and IRQs"
In reply to: kernel test robot: "Re: [PATCH v2 2/3] tomoyo: replace current->in_execve flag with security_execve_abort() hook"
Next in thread: Tetsuo Handa: "[PATCH v2 3/3] fs/exec: remove current->in_execve flag"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, Feb 03, 2024 at 07:53:17PM +0900, Tetsuo Handa wrote:
> TOMOYO was using current->in_execve flag in order to restore previous state
> when previous execve() request failed. Since security_execve_abort() hook
> was added, switch to use it.
>
> Signed-off-by: Tetsuo Handa <penguin-kernel@xxxxxxxxxxxxxxxxxxx>

With the kern-doc fixed, this looks good. (I can fix up the kern-doc if
this goes via my tree.)

Reviewed-by: Kees Cook <keescook@xxxxxxxxxxxx>

--
Kees Cook

Next message: Kees Cook: "Re: [PATCH v2 3/3] fs/exec: remove current->in_execve flag"
Previous message: Joe Damato: "Re: [PATCH net-next] eth: mlx5: link NAPI instances to queues and IRQs"
In reply to: kernel test robot: "Re: [PATCH v2 2/3] tomoyo: replace current->in_execve flag with security_execve_abort() hook"
Next in thread: Tetsuo Handa: "[PATCH v2 3/3] fs/exec: remove current->in_execve flag"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]