Re: [TOMOYO #13 (mmotm 2008-11-19-02-19) 01/11] Introducesecurity_path_clear() hook.

From: Stephen Smalley
Date: Mon Dec 01 2008 - 15:03:46 EST

Next message: Francois Romieu: "Re: NETDEV WATCHDOG: eth0 (skge): transmit timed out"
Previous message: Andrew Morton: "Re: [RESEND][PATCH] Add /proc/mempool to display mempool usage"
Next in thread: Tetsuo Handa: "Re: [TOMOYO #13 (mmotm 2008-11-19-02-19) 01/11] Introduce security_path_clear() hook."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, 2008-11-20 at 20:25 +0900, Tetsuo Handa wrote:
> plain text document attachment (introduce-security_path_clear.patch)
> To perform DAC performed in vfs_foo() before MAC, we let security_path_foo()
> save a result into our own hash table and return 0, and let security_inode_foo()
> return the saved result. Since security_inode_foo() is not always called after
> security_path_foo(), we need security_path_clear() to clear the hash table.

This seems very fragile and unmaintainable to me. The fact that you
even need a security_path_clear() hook suggests that something is wrong
with the other security_path* hooks. I'd suggest that you explicitly
pass the result of the security_path* hooks down to the security_inode*
hooks instead. What do others think?

--
Stephen Smalley
National Security Agency

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Francois Romieu: "Re: NETDEV WATCHDOG: eth0 (skge): transmit timed out"
Previous message: Andrew Morton: "Re: [RESEND][PATCH] Add /proc/mempool to display mempool usage"
Next in thread: Tetsuo Handa: "Re: [TOMOYO #13 (mmotm 2008-11-19-02-19) 01/11] Introduce security_path_clear() hook."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]