[Ocfs2-devel] [PATCH] ocfs2/security: Check xattr support in security

All of lore.kernel.org
 help / color / mirror / Atom feed

* [Ocfs2-devel] [PATCH] ocfs2/security: Check xattr support in security_init.
@ 2009-02-08 21:56 Tao Ma
  2009-02-10  2:47 ` Tiger Yang
  0 siblings, 1 reply; 3+ messages in thread
From: Tao Ma @ 2009-02-08 21:56 UTC (permalink / raw)
  To: ocfs2-devel

If the system supports selinux, we will return sucessfully from
ocfs2_init_security_get if it is called for the mount point.
And in that case if the volume doesn't have xattr support, we
will not be able to create a new inode in the mount dir because
ocfs2_mknod will try to set security attributes for a new created
inode. This patch check xattr support in ocfs2_init_security_get,
so it will let ocfs2_mknod knows that we don't support xattr and
it don't need to init security for the new inode in that case.

Signed-off-by: Tao Ma <tao.ma@oracle.com>
---
 fs/ocfs2/xattr.c |    3 +++
 1 files changed, 3 insertions(+), 0 deletions(-)

diff --git a/fs/ocfs2/xattr.c b/fs/ocfs2/xattr.c
index 5aec833..8a7db21 100644
--- a/fs/ocfs2/xattr.c
+++ b/fs/ocfs2/xattr.c
@@ -5289,6 +5289,9 @@ int ocfs2_init_security_get(struct inode *inode,
 			    struct inode *dir,
 			    struct ocfs2_security_xattr_info *si)
 {
+	if (!ocfs2_supports_xattr(OCFS2_SB(inode->i_sb)))
+		return -EOPNOTSUPP;
+
 	return security_inode_init_security(inode, dir, &si->name, &si->value,
 					    &si->value_len);
 }
-- 
1.5.4.4

^ permalink raw reply related	[flat|nested] 3+ messages in thread

* [Ocfs2-devel] [PATCH] ocfs2/security: Check xattr support in security_init.
  2009-02-08 21:56 [Ocfs2-devel] [PATCH] ocfs2/security: Check xattr support in security_init Tao Ma
@ 2009-02-10  2:47 ` Tiger Yang
  2009-02-10  3:11   ` Tao Ma
  0 siblings, 1 reply; 3+ messages in thread
From: Tiger Yang @ 2009-02-10  2:47 UTC (permalink / raw)
  To: ocfs2-devel

Hi, Tao

I already fixed this issue :)
http://oss.oracle.com/pipermail/ocfs2-devel/2008-December/003559.html

Thanks,
tiger

Tao Ma wrote:
> If the system supports selinux, we will return sucessfully from
> ocfs2_init_security_get if it is called for the mount point.
> And in that case if the volume doesn't have xattr support, we
> will not be able to create a new inode in the mount dir because
> ocfs2_mknod will try to set security attributes for a new created
> inode. This patch check xattr support in ocfs2_init_security_get,
> so it will let ocfs2_mknod knows that we don't support xattr and
> it don't need to init security for the new inode in that case.
> 
> Signed-off-by: Tao Ma <tao.ma@oracle.com>
> ---
>  fs/ocfs2/xattr.c |    3 +++
>  1 files changed, 3 insertions(+), 0 deletions(-)
> 
> diff --git a/fs/ocfs2/xattr.c b/fs/ocfs2/xattr.c
> index 5aec833..8a7db21 100644
> --- a/fs/ocfs2/xattr.c
> +++ b/fs/ocfs2/xattr.c
> @@ -5289,6 +5289,9 @@ int ocfs2_init_security_get(struct inode *inode,
>  			    struct inode *dir,
>  			    struct ocfs2_security_xattr_info *si)
>  {
> +	if (!ocfs2_supports_xattr(OCFS2_SB(inode->i_sb)))
> +		return -EOPNOTSUPP;
> +
>  	return security_inode_init_security(inode, dir, &si->name, &si->value,
>  					    &si->value_len);
>  }

^ permalink raw reply	[flat|nested] 3+ messages in thread

* [Ocfs2-devel] [PATCH] ocfs2/security: Check xattr support in security_init.
  2009-02-10  2:47 ` Tiger Yang
@ 2009-02-10  3:11   ` Tao Ma
  0 siblings, 0 replies; 3+ messages in thread
From: Tao Ma @ 2009-02-10  3:11 UTC (permalink / raw)
  To: ocfs2-devel



Tiger Yang wrote:
> Hi, Tao
> 
> I already fixed this issue :)
> http://oss.oracle.com/pipermail/ocfs2-devel/2008-December/003559.html
aha, yes, It looks that my repository is a little older. Let me rebase it.

Sorry for the noise.

Regards,
Tao
> 
> Thanks,
> tiger
> 
> Tao Ma wrote:
>> If the system supports selinux, we will return sucessfully from
>> ocfs2_init_security_get if it is called for the mount point.
>> And in that case if the volume doesn't have xattr support, we
>> will not be able to create a new inode in the mount dir because
>> ocfs2_mknod will try to set security attributes for a new created
>> inode. This patch check xattr support in ocfs2_init_security_get,
>> so it will let ocfs2_mknod knows that we don't support xattr and
>> it don't need to init security for the new inode in that case.
>>
>> Signed-off-by: Tao Ma <tao.ma@oracle.com>
>> ---
>>  fs/ocfs2/xattr.c |    3 +++
>>  1 files changed, 3 insertions(+), 0 deletions(-)
>>
>> diff --git a/fs/ocfs2/xattr.c b/fs/ocfs2/xattr.c
>> index 5aec833..8a7db21 100644
>> --- a/fs/ocfs2/xattr.c
>> +++ b/fs/ocfs2/xattr.c
>> @@ -5289,6 +5289,9 @@ int ocfs2_init_security_get(struct inode *inode,
>>                  struct inode *dir,
>>                  struct ocfs2_security_xattr_info *si)
>>  {
>> +    if (!ocfs2_supports_xattr(OCFS2_SB(inode->i_sb)))
>> +        return -EOPNOTSUPP;
>> +
>>      return security_inode_init_security(inode, dir, &si->name, 
>> &si->value,
>>                          &si->value_len);
>>  }

^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, other threads:[~2009-02-10  3:11 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2009-02-08 21:56 [Ocfs2-devel] [PATCH] ocfs2/security: Check xattr support in security_init Tao Ma
2009-02-10  2:47 ` Tiger Yang
2009-02-10  3:11   ` Tao Ma

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.