[RFC][PATCH] Restore LSM hook calls to sendfile

Stephen D. Smalley (sds@epoch.ncsc.mil)
Wed, 22 Jan 2003 15:50:22 -0500 (EST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Kai Germaschewski: "Re: Simple patches for Linux as a guest OS in a plex86 VM (please"
Previous message: William Lee Irwin III: "remove EXT2_MAX_BLOCK_SIZE"

This patch restores the LSM hook calls in sendfile to 2.5.59. The hook
was previously added as of 2.5.29 but the hook calls in sendfile were
subsequently lost as a result of the sendfile rewrite as of 2.5.30.

If anyone has any objections to this change, please let me know.

read_write.c | 8 ++++++++
1 files changed, 8 insertions(+)
-----

===== fs/read_write.c 1.25 vs edited =====
--- 1.25/fs/read_write.c Sat Dec 14 18:19:55 2002
+++ edited/fs/read_write.c Wed Jan 22 15:21:04 2003
@@ -531,6 +531,10 @@
if (retval)
goto fput_in;

+ retval = security_file_permission (in_file, MAY_READ);
+ if (retval)
+ goto fput_in;
+
/*
* Get output file, and verify that it is ok..
*/
@@ -545,6 +549,10 @@
goto fput_out;
out_inode = out_file->f_dentry->d_inode;
retval = locks_verify_area(FLOCK_VERIFY_WRITE, out_inode, out_file, out_file->f_pos, count);
+ if (retval)
+ goto fput_out;
+
+ retval = security_file_permission (out_file, MAY_WRITE);
if (retval)
goto fput_out;

-- Stephen Smalley, NSA sds@epoch.ncsc.mil

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/

Next message: Kai Germaschewski: "Re: Simple patches for Linux as a guest OS in a plex86 VM (please"
Previous message: William Lee Irwin III: "remove EXT2_MAX_BLOCK_SIZE"