Re: [PATCH v3 4/5] LSM: lsm_context in security_dentry_init_security
From: Paul Moore
Date: Thu Oct 31 2024 - 18:54:47 EST
On Oct 23, 2024 Casey Schaufler <casey@xxxxxxxxxxxxxxxx> wrote:
>
> Replace the (secctx,seclen) pointer pair with a single lsm_context
> pointer to allow return of the LSM identifier along with the context
> and context length. This allows security_release_secctx() to know how
> to release the context. Callers have been modified to use or save the
> returned data from the new structure.
>
> Signed-off-by: Casey Schaufler <casey@xxxxxxxxxxxxxxxx>
> Cc: ceph-devel@xxxxxxxxxxxxxxx
> Cc: linux-nfs@xxxxxxxxxxxxxxx
> ---
> fs/ceph/super.h | 3 +--
> fs/ceph/xattr.c | 16 ++++++----------
> fs/fuse/dir.c | 35 ++++++++++++++++++-----------------
> fs/nfs/nfs4proc.c | 20 ++++++++++++--------
> include/linux/lsm_hook_defs.h | 2 +-
> include/linux/security.h | 26 +++-----------------------
> security/security.c | 9 ++++-----
> security/selinux/hooks.c | 9 +++++----
> 8 files changed, 50 insertions(+), 70 deletions(-)
See my note on patch 1/5, merging into lsm/dev.
--
paul-moore.com