From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1754543AbbEKOF6 (ORCPT ); Mon, 11 May 2015 10:05:58 -0400 Received: from smtp107.biz.mail.bf1.yahoo.com ([98.139.244.55]:35156 "EHLO smtp107.biz.mail.bf1.yahoo.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1754270AbbEKOFx (ORCPT ); Mon, 11 May 2015 10:05:53 -0400 X-Yahoo-Newman-Property: ymail-3 X-YMail-OSG: SMqFkO4VM1kT6U.YlXTIShlkn7cWLbZeXJy65pQE2eduI4D AlM3aAjK_YS3So50RfrFqZ0_EY7rerp9PVuiOz1xhnrAs3QIq7ZZCDBDNXrb eZzFBhcpTFCNjgD2LEOWd.GVqVQdnStuSkNqaxiZgIa5JbASkiy8JSrv059d 3juM.uW4UstPes4xx6WFcmHGbItyVbZcT5XigQ81rKcHEKgMRThxsxXuHOq8 0V5OJB_B.iR9e_6dyteIMiinmRyTY0ELqI1HAipDckew_.MI6YQQeUjyGWhS vQ7qPFZtKaUJNHxUetddEKcVELyb0HApMoq01j58pJ7kIbbWYDZZVbOu2DTt gPmRwwB1m7JyzveK4joiu7ERJyINglHNhs89BbHfUNOrSmOENd59cozhyI9S Bh1JpFZqhDE1cHvkFlNyCXIcEYOKB27FZwxwK9viloo7odSQopalR3UjOT6y UUZ2JggM5BE1AJ_aBzhXb0t_y5UtM5pDD36aHY9KCyY12Q0x0xtZlZVhniq2 k98NumFpNjRx7zUWOFbxXILxzmTC58.1OGhg9 X-Yahoo-SMTP: OIJXglSswBDfgLtXluJ6wiAYv6_cnw-- Message-ID: <5550B73F.8010305@schaufler-ca.com> Date: Mon, 11 May 2015 07:05:51 -0700 From: Casey Schaufler User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:31.0) Gecko/20100101 Thunderbird/31.6.0 MIME-Version: 1.0 To: sw0312.kim@samsung.com CC: linux-security-module@vger.kernel.org, linux-kernel@vger.kernel.org, sumit.semwal@linaro.org, linaro-mm-sig@lists.linaro.org Subject: Re: [RESEND PATCH] Smack: ignore private inode for smack_file_receive References: <1429251904-1078-1-git-send-email-sw0312.kim@samsung.com> <55506470.70109@samsung.com> In-Reply-To: <55506470.70109@samsung.com> Content-Type: text/plain; charset=euc-kr Content-Transfer-Encoding: 8bit Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 5/11/2015 1:12 AM, Seung-Woo Kim wrote: > Ping? It's in my queue for 4.2. > > On 2015³â 04¿ù 17ÀÏ 15:25, Seung-Woo Kim wrote: >> The dmabuf fd can be shared between processes via unix domain >> socket. The file of dmabuf fd is came from anon_inode. The inode >> has no set and get xattr operations, so it can not be shared >> between processes with smack. This patch fixes just to ignore >> private inode including anon_inode for smack_file_receive. >> >> Signed-off-by: Seung-Woo Kim >> --- >> I think there was some issue sending my previous mail, so I resend patch again. >> --- >> security/smack/smack_lsm.c | 3 +++ >> 1 files changed, 3 insertions(+), 0 deletions(-) >> >> diff --git a/security/smack/smack_lsm.c b/security/smack/smack_lsm.c >> index 69fdc38..d1bb411 100644 >> --- a/security/smack/smack_lsm.c >> +++ b/security/smack/smack_lsm.c >> @@ -1673,6 +1673,9 @@ static int smack_file_receive(struct file *file) >> struct smk_audit_info ad; >> struct inode *inode = file_inode(file); >> >> + if (unlikely(IS_PRIVATE(inode))) >> + return 0; >> + >> smk_ad_init(&ad, __func__, LSM_AUDIT_DATA_PATH); >> smk_ad_setfield_u_fs_path(&ad, file->f_path); >> /* >>