From: Steve Dickson <SteveD-H+wXaHxf7aLQT0dZR+AlfA@public.gmane.org>
To: "J. Bruce Fields" <bfields-uC3wQj2KruNg9hUCZPvPmw@public.gmane.org>
Cc: Trond Myklebust
<Trond.Myklebust-HgOvQuBEEgTQT0dZR+AlfA@public.gmane.org>,
"David P. Quigley"
<dpquigl-+05T5uksL2qpZYMLLGbcSA@public.gmane.org>,
Linux NFS list
<linux-nfs-u79uwXL29TY76Z2rM5mHXA@public.gmane.org>,
Linux FS devel list
<linux-fsdevel-u79uwXL29TY76Z2rM5mHXA@public.gmane.org>,
Linux Security List
<linux-security-module-u79uwXL29TY76Z2rM5mHXA@public.gmane.org>,
SELinux List <selinux-+05T5uksL2qpZYMLLGbcSA@public.gmane.org>
Subject: Re: [PATCH 00/13] lnfs: linux-3.10-rc1 release
Date: Wed, 15 May 2013 09:52:56 -0400 [thread overview]
Message-ID: <51939338.3070902@RedHat.com> (raw)
In-Reply-To: <20130514214057.GB16811-uC3wQj2KruNg9hUCZPvPmw@public.gmane.org>
On 14/05/13 17:40, J. Bruce Fields wrote:
> On Mon, May 13, 2013 at 03:11:44PM -0400, Steve Dickson wrote:
>> From: Steve Dickson <steved-H+wXaHxf7aLQT0dZR+AlfA@public.gmane.org>
>>
>> Here is an the next rlease of the label NFS patches
>> ported to the linux-3-10.rc1 release.
>
> Steve, note James Morris acked patches 1, 2, 3, 4, 11, and 12. Could
> you please add the
>
> Acked-by: James Morris <james.l.morris-QHcLZuEGTsvQT0dZR+AlfA@public.gmane.org>
>
> to those before the next resend?
Will do...
steved.
>
> --b.
>
>>
>> Note, this release only include the security and
>> NFS client patches since the server patches have
>> already been merged into Bruce's tree... I did
>> uses those patches to test the release.
>>
>> Bruce, thank you very much for all you help!
>>
>> There were no functional changes in the security
>> patches. There were some simple merge conflicts
>> in a couple header files.
>>
>> The following has was changed in the client code
>>
>> * Labels were taken out of the cache consistency
>> bitmask. The means the ACCESS and DELEGRETURN
>> will no longer pass labels.
>>
>> * Looking to get the label out of the I/O path,
>> I found the follow ops allocate labels but never
>> process them (aka they never send a GETATTR in
>> the compound)
>> READ, CLOSE, REMOVE, RENAME.
>>
>> So the label code was be removed from those ops.
>>
>> So that leaves LOOKUP, READDIR, GETATTR, LINK, SETATTR, CREATE and OPEN
>> that will continue to pass labels...
>>
>> David Quigley (8):
>> Security: Add hook to calculate context based on a negative dentry.
>> Security: Add Hook to test if the particular xattr is part of a MAC
>> model.
>> LSM: Add flags field to security_sb_set_mnt_opts for in kernel mount
>> data.
>> SELinux: Add new labeling type native labels
>> NFSv4: Add label recommended attribute and NFSv4 flags
>> NFSv4: Introduce new label structure
>> NFSv4: Extend fattr bitmaps to support all 3 words
>> NFS: Extend NFS xattr handlers to accept the security namespace
>>
>> Steve Dickson (5):
>> NFSv4.2: Added NFS v4.2 support to the NFS client
>> NFS:Add labels to client function prototypes
>> NFS: Add label lifecycle management
>> NFS: Client implementation of Labeled-NFS
>> Kconfig: Add Kconfig entry for Labeled NFS V4 client
>>
>> fs/nfs/Kconfig | 28 ++
>> fs/nfs/callback.c | 1 +
>> fs/nfs/callback_xdr.c | 6 +-
>> fs/nfs/client.c | 2 +-
>> fs/nfs/dir.c | 46 ++-
>> fs/nfs/getroot.c | 2 +-
>> fs/nfs/inode.c | 133 +++++++--
>> fs/nfs/namespace.c | 2 +-
>> fs/nfs/nfs3acl.c | 4 +-
>> fs/nfs/nfs3proc.c | 41 +--
>> fs/nfs/nfs4_fs.h | 8 +-
>> fs/nfs/nfs4client.c | 5 +
>> fs/nfs/nfs4namespace.c | 2 +-
>> fs/nfs/nfs4proc.c | 548 ++++++++++++++++++++++++++++++++----
>> fs/nfs/nfs4xdr.c | 184 +++++++++---
>> fs/nfs/proc.c | 15 +-
>> fs/nfs/super.c | 24 +-
>> include/linux/nfs4.h | 11 +
>> include/linux/nfs_fs.h | 30 +-
>> include/linux/nfs_fs_sb.h | 8 +-
>> include/linux/nfs_xdr.h | 30 +-
>> include/linux/security.h | 57 +++-
>> include/uapi/linux/nfs4.h | 2 +-
>> security/capability.c | 19 +-
>> security/security.c | 24 +-
>> security/selinux/hooks.c | 92 +++++-
>> security/selinux/include/security.h | 2 +
>> security/selinux/ss/policydb.c | 5 +-
>> security/smack/smack_lsm.c | 11 +
>> 29 files changed, 1132 insertions(+), 210 deletions(-)
>>
>> --
>> 1.8.1.4
>>
>> --
>> To unsubscribe from this list: send the line "unsubscribe linux-nfs" in
>> the body of a message to majordomo-u79uwXL29TY76Z2rM5mHXA@public.gmane.org
>> More majordomo info at http://vger.kernel.org/majordomo-info.html
--
To unsubscribe from this list: send the line "unsubscribe linux-nfs" in
the body of a message to majordomo-u79uwXL29TY76Z2rM5mHXA@public.gmane.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
prev parent reply other threads:[~2013-05-15 13:52 UTC|newest]
Thread overview: 17+ messages / expand[flat|nested] mbox.gz Atom feed top
2013-05-13 19:11 [PATCH 00/13] lnfs: linux-3.10-rc1 release Steve Dickson
2013-05-13 19:11 ` [PATCH 01/13] Security: Add hook to calculate context based on a negative dentry Steve Dickson
2013-05-13 19:11 ` [PATCH 02/13] Security: Add Hook to test if the particular xattr is part of a MAC model Steve Dickson
2013-05-13 19:11 ` [PATCH 05/13] NFSv4.2: Added NFS v4.2 support to the NFS client Steve Dickson
2013-05-13 19:11 ` [PATCH 06/13] NFSv4: Add label recommended attribute and NFSv4 flags Steve Dickson
2013-05-13 19:11 ` [PATCH 07/13] NFSv4: Introduce new label structure Steve Dickson
[not found] ` <1368472317-5602-1-git-send-email-SteveD-H+wXaHxf7aLQT0dZR+AlfA@public.gmane.org>
2013-05-13 19:11 ` [PATCH 03/13] LSM: Add flags field to security_sb_set_mnt_opts for in kernel mount data Steve Dickson
2013-05-13 19:11 ` [PATCH 04/13] SELinux: Add new labeling type native labels Steve Dickson
2013-05-13 19:11 ` [PATCH 08/13] NFSv4: Extend fattr bitmaps to support all 3 words Steve Dickson
2013-05-13 19:11 ` [PATCH 09/13] NFS:Add labels to client function prototypes Steve Dickson
2013-05-13 19:11 ` [PATCH 10/13] NFS: Add label lifecycle management Steve Dickson
2013-05-13 19:11 ` [PATCH 11/13] NFS: Client implementation of Labeled-NFS Steve Dickson
2013-05-13 19:11 ` [PATCH 12/13] NFS: Extend NFS xattr handlers to accept the security namespace Steve Dickson
2013-05-13 19:11 ` [PATCH 13/13] Kconfig: Add Kconfig entry for Labeled NFS V4 client Steve Dickson
2013-05-14 21:37 ` [PATCH 00/13] lnfs: linux-3.10-rc1 release J. Bruce Fields
2013-05-14 21:40 ` J. Bruce Fields
[not found] ` <20130514214057.GB16811-uC3wQj2KruNg9hUCZPvPmw@public.gmane.org>
2013-05-15 13:52 ` Steve Dickson [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=51939338.3070902@RedHat.com \
--to=steved-h+wxahxf7alqt0dzr+alfa@public.gmane.org \
--cc=Trond.Myklebust-HgOvQuBEEgTQT0dZR+AlfA@public.gmane.org \
--cc=bfields-uC3wQj2KruNg9hUCZPvPmw@public.gmane.org \
--cc=dpquigl-+05T5uksL2qpZYMLLGbcSA@public.gmane.org \
--cc=linux-fsdevel-u79uwXL29TY76Z2rM5mHXA@public.gmane.org \
--cc=linux-nfs-u79uwXL29TY76Z2rM5mHXA@public.gmane.org \
--cc=linux-security-module-u79uwXL29TY76Z2rM5mHXA@public.gmane.org \
--cc=selinux-+05T5uksL2qpZYMLLGbcSA@public.gmane.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).