Re: [PATCH 2/2] VFS: Reorder vfs_getxattr to avoid unnecessary calls to the LSM

From: James Morris <jmorris_at_nospam>
Date: Thu Nov 01 2007 - 20:58:58 GMT
To: "David P. Quigley" <dpquigl@tycho.nsa.gov>

On Thu, 1 Nov 2007, David P. Quigley wrote:

> Originally vfs_getxattr would pull the security xattr variable using
> the inode getxattr handle and then proceed to clobber it with a subsequent call
> to the LSM. This patch reorders the two operations such that when the xattr
> requested is in the security namespace it first attempts to grab the value from
> the LSM directly. If it fails to obtain the value because there is no module
> present or the module does not support the operation it will fall back to using
> the inode getxattr operation. In the event that both are inaccessible it
> returns EOPNOTSUPP.
>
> Signed-off-by: David P. Quigley <dpquigl@tycho.nsa.gov>

Acked-by: James Morris <jmorris@namei.org> -- James Morris <jmorris@namei.org> - To unsubscribe from this list: send the line "unsubscribe linux-security-module" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html

This message: [ Message body ]
Next message: James Morris: "Re: [PATCH 1/2] VFS/Security: Rework inode_getsecurity and callers to return resulting buffer"
Previous message: Greg KH: "Re: Possible missing security checks in usbfs?"
In reply to: David P. Quigley: "[PATCH 2/2] VFS: Reorder vfs_getxattr to avoid unnecessary calls to the LSM"
Next in thread: Serge E. Hallyn: "Re: [PATCH 2/2] VFS: Reorder vfs_getxattr to avoid unnecessary calls to the LSM"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]