From mboxrd@z Thu Jan  1 00:00:00 1970
From: James Morris <jmorris@namei.org>
Subject: Re: [PATCH 1/9] LSM: Introduce inode_getsecid and ipc_getsecid hooks
Date: Tue, 4 Mar 2008 08:18:47 +1100 (EST)
Message-ID: <Xine.LNX.4.64.0803040818190.8529@us.intercode.com.au>
References: <20080301194752.GA19636@ubuntu> <20080301195109.GB19636@ubuntu>
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Return-path: <linux-security-module-owner@vger.kernel.org>
In-Reply-To: <20080301195109.GB19636@ubuntu>
Sender: linux-security-module-owner@vger.kernel.org
To: "Ahmed S. Darwish" <darwish.07@gmail.com>
Cc: Chris Wright <chrisw@sous-sol.org>, Stephen Smalley <sds@tycho.nsa.gov>, Eric Paris <eparis@parisplace.org>, Casey Schaufler <casey@schaufler-ca.com>, David Woodhouse <dwmw2@infradead.org>, Paul Moore <paul.moore@hp.com>, Andrew Morton <akpm@linux-foundation.org>, LKML <linux-kernel@vger.kernel.org>, Audit-ML <linux-audit@redhat.com>, LSM-ML <linux-security-module@vger.kernel.org>
List-Id: linux-audit@redhat.com

On Sat, 1 Mar 2008, Ahmed S. Darwish wrote:

> Introduce inode_getsecid(inode, secid) and ipc_getsecid(ipcp, secid)
> LSM hooks. These hooks will be used instead of similar exported 
> SELinux interfaces.
> 
> Let {inode,ipc,task}_getsecid hooks set the secid to 0 by default 
> if CONFIG_SECURITY is not defined or if the hook is set to 
> NULL (dummy). This is done to notify the caller that no valid 
> secid exists.
> 
> Signed-off-by: Casey Schaufler <casey@schaufler-ca.com>
> Signed-off-by: Ahmed S. Darwish <darwish.07@gmail.com>

Acked-by: James Morris <jmorris@namei.org>

-- 
James Morris
<jmorris@namei.org>