From patchwork Wed Jan 31 23:46:15 2024 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Paul Moore X-Patchwork-Id: 195079 Return-Path: Delivered-To: ouuuleilei@gmail.com Received: by 2002:a05:693c:2685:b0:106:209c:c626 with SMTP id mn5csp97150dyc; Wed, 31 Jan 2024 15:47:55 -0800 (PST) X-Google-Smtp-Source: AGHT+IG0qjmUAjOPxV/KpJ5vPxFuLI/lajUQOh7ollUD4Grvno+0lilb99x2hjRb81iDpA/1HvRf X-Received: by 2002:a2e:9448:0:b0:2d0:6eff:6e3f with SMTP id o8-20020a2e9448000000b002d06eff6e3fmr1257336ljh.10.1706744875147; Wed, 31 Jan 2024 15:47:55 -0800 (PST) ARC-Seal: i=2; a=rsa-sha256; t=1706744875; cv=pass; d=google.com; s=arc-20160816; b=TXhigdrfaRcW7Ie+ewZZxSUNbbi3VdeXA50OJvHRFOpiGGoK3XwjsmhFaXOTU5NyXk WuqyYlvYV1uw7auh1LXi7jha/oI6hyxRIHUYzrcJ8z2l94oiHaWtoi9XQZ0ukMZEvYKW fPmPbb5zwFVRpd8tmBsFcwI8sLYTC5YYqv4eMJrua4Qgk1AAhuPCb1WVJseCIo4tCIlt huRcIYyNuiUY4LL8UFOgTWEPnKT8ZxHWs24UBOJqFRyWSXmyCtyuj7HCW6vK9ny9TlgJ K+DupEN16F1+CYE9M+nzasTra3YJGEtsrdCja6bpB1ttcPk8o+00rR/AWeKsm5EqkZrM LXYg== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-unsubscribe:list-subscribe:list-id:precedence:subject:cc:to :from:message-id:date:dkim-signature; bh=wjS2NBBVk3rrsqe7JY+MoxAFjS7cR/H8vNXo8eECAdI=; fh=jwFhQjtBdSFsU+GLCey0ljWAQkYAB2VCfK26Udw2IeI=; b=pO/hRJGnBP9RZMqTiLSWRYiGY/tv660+W9SiAlDuLAMj+3UdCSNN1ipiMBXPawuVge pQu1p9QaCaX22i7XAQPYLRXXfxEsuliIuZfqUO0+iCkh7mX7mkAh8kJzgnuwQW789KSy 8AtkYKLluEXYd5fjP3CSEiEwWTZzns0wp1E+h5pRJbLDXT/Vv6/zYWmcAu4LK2Z73FgC rb9F+WClg2kmddTzX4yQKy/X4lzpjv7ZBqkl3czI5ThCBNFbRJSYYguVw5cDftRUq/A9 gnQ8RDwyA7Sw8hHS4JhsNv5hjlvmVzmqkjiFA4y6mVrtaCDggOWaYcYRHbBwTe0qHO/E cEzg==; dara=google.com ARC-Authentication-Results: i=2; mx.google.com; dkim=pass header.i=@paul-moore.com header.s=google header.b="TJ/o3Tgv"; arc=pass (i=1 spf=pass spfdomain=paul-moore.com dkim=pass dkdomain=paul-moore.com dmarc=pass fromdomain=paul-moore.com); spf=pass (google.com: domain of linux-kernel+bounces-47392-ouuuleilei=gmail.com@vger.kernel.org designates 147.75.80.249 as permitted sender) smtp.mailfrom="linux-kernel+bounces-47392-ouuuleilei=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=paul-moore.com X-Forwarded-Encrypted: i=1; AJvYcCVFdHCLtwKW05kMuRzARLAErNXzifEPd4wqS/iY38nuNUwCwMl5kYKAdZcBUTRQml4QcyRkFB+AUPjoH07HLSLQ7i1SIA== Received: from am.mirrors.kernel.org (am.mirrors.kernel.org. [147.75.80.249]) by mx.google.com with ESMTPS id w27-20020a50d79b000000b0055ef4c94f85si3704539edi.428.2024.01.31.15.47.54 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 31 Jan 2024 15:47:55 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel+bounces-47392-ouuuleilei=gmail.com@vger.kernel.org designates 147.75.80.249 as permitted sender) client-ip=147.75.80.249; Authentication-Results: mx.google.com; dkim=pass header.i=@paul-moore.com header.s=google header.b="TJ/o3Tgv"; arc=pass (i=1 spf=pass spfdomain=paul-moore.com dkim=pass dkdomain=paul-moore.com dmarc=pass fromdomain=paul-moore.com); spf=pass (google.com: domain of linux-kernel+bounces-47392-ouuuleilei=gmail.com@vger.kernel.org designates 147.75.80.249 as permitted sender) smtp.mailfrom="linux-kernel+bounces-47392-ouuuleilei=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=paul-moore.com Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by am.mirrors.kernel.org (Postfix) with ESMTPS id 150B71F26BC4 for ; Wed, 31 Jan 2024 23:46:37 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 2B7FA3B194; Wed, 31 Jan 2024 23:46:22 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=paul-moore.com header.i=@paul-moore.com header.b="TJ/o3Tgv" Received: from mail-ua1-f45.google.com (mail-ua1-f45.google.com [209.85.222.45]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 9B0523A8C6 for ; Wed, 31 Jan 2024 23:46:17 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=209.85.222.45 ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1706744779; cv=none; b=XxJPnYj+INgg87CL+htAPSdgurNAZggv51ruJxswYizTWLqO3T7gF3g3i8KhtsOgHMStU+dN9tX+G/n1v/r40w4ffm5etHjGL/fnhKlxI77RR3H8SbGqUJQ1dbVI6oBiU7NFlWexQvJzI3XIViWqcLWjmTIAW/jD3GzotUlXYw8= ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1706744779; c=relaxed/simple; bh=hTDaYZJrU10SSTugPzsW6XZg1W6hwvEaLg7CFxa9ytM=; h=Date:Message-ID:From:To:Cc:Subject; b=Bc4SF0LiTniC3mvjo6pZOyNW/LYCMVlssX5yxH9mjUAEKMNGr9oDFb3TFJCpSKVq0pkcWAmyS3Vg2YZ4LogE04V6YkOlVFbStWI0VC4w8QFz5GdGBnU7WUdK4Q4srjHHlnaFftr06ImHjt28P8z1xLdxt2ZKMD1w3J/5TbJvSm0= ARC-Authentication-Results: i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=paul-moore.com; spf=pass smtp.mailfrom=paul-moore.com; dkim=pass (2048-bit key) header.d=paul-moore.com header.i=@paul-moore.com header.b=TJ/o3Tgv; arc=none smtp.client-ip=209.85.222.45 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=paul-moore.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=paul-moore.com Received: by mail-ua1-f45.google.com with SMTP id a1e0cc1a2514c-7d60ee03b54so146789241.2 for ; Wed, 31 Jan 2024 15:46:17 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=paul-moore.com; s=google; t=1706744776; x=1707349576; darn=vger.kernel.org; h=subject:cc:to:from:message-id:date:from:to:cc:subject:date :message-id:reply-to; bh=wjS2NBBVk3rrsqe7JY+MoxAFjS7cR/H8vNXo8eECAdI=; b=TJ/o3TgvNLw+wSxoJlLQ9T9k7AZw+yKSgUI65EJpCrUgzM0wWYf5S+8mUdMoWpQ7FN YyO0TT/PtuXzbGxDSrOLdpFfcn/tmD3vfeMVFmMVfhht4Tq8DpgjH3XRftA+dJSC4okL 6PLWwCwrX451RGedKziE3anPFAyoqEqV3msIOo/JpUiuM/bsyEXM0BbPM7vXFTRW7J48 +BQhsB5qXCqWcO7pJv/+2f5c4yO+uoUpOdayO6qZ5YVviYL7ydcbapQ6VXOQeAoQDpJi IHJRAkyqjNF79KR7KP5inwl1TOO5VP3hWq7IMtEp1/z2MJtczx+0xNN0XnEzbz+U0T9F 8CQQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1706744776; x=1707349576; h=subject:cc:to:from:message-id:date:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=wjS2NBBVk3rrsqe7JY+MoxAFjS7cR/H8vNXo8eECAdI=; b=rRi+w+NuY+coX0KgrpORKE2Gmvgg+B06q1YHyDTZs8O0yo7FsMVK/OTV0olqg6xWqf stF4IbfFmEic1IQL2iNhFvITlmDfaUUKh/ezULJJsF07vjGTFpq7W0uwvOL/gYQwxAbl T2EDM0jCckim55jiTgoRW+RA2Vn1c4bl6eubQjacAhafqgd5dhqd9FZlXJY9pkQz0ZRB 4hIdXILveDOl3HlddnpTS2UBEaVVtMpIJIR5StJoON2s3nw6GlpcXgot7yVJwSKUkIS+ epeHLwFAOJg8iaUoiiwwLFYBmA9mPW7DMwFFXJcx8+25AU4kzev885ObpTd/COhcca+t 8ZaQ== X-Gm-Message-State: AOJu0YyB1TbqkfkqTo/Pw22qN+KcYs/En5i3+PPDnX1jamHarHP6Lbo+ /cDqzhD+jjH3oa0Qrc3Zfj08w70nDmPVQOYzFsFgU9n6DFMllu06nmrEC0v+cGcWl66UOVN8rRo = X-Received: by 2002:a67:f316:0:b0:46c:a3fc:e899 with SMTP id p22-20020a67f316000000b0046ca3fce899mr2879922vsf.26.1706744776340; Wed, 31 Jan 2024 15:46:16 -0800 (PST) X-Forwarded-Encrypted: i=0; AJvYcCVhaFwtu9H5XhEll3EcwxPmJW2p+Yal/8RNJ863SUTIl1qflt+90wQRNbgKUrV4XGilm576/M2kWHyuHjfecd6xn2b7NKBVD5EAEbj0 Received: from localhost ([70.22.175.108]) by smtp.gmail.com with ESMTPSA id na2-20020a0562142d4200b0068c717f758asm698418qvb.11.2024.01.31.15.46.15 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 31 Jan 2024 15:46:15 -0800 (PST) Date: Wed, 31 Jan 2024 18:46:15 -0500 Message-ID: <8b9583bc21af9323bf40a53b7f62c5c9@paul-moore.com> From: Paul Moore To: Linus Torvalds Cc: linux-security-module@vger.kernel.org, linux-kernel@vger.kernel.org Subject: [GIT PULL] lsm/lsm-pr-20240131 Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: X-getmail-retrieved-from-mailbox: INBOX X-GMAIL-THRID: 1789651714083549198 X-GMAIL-MSGID: 1789651714083549198 Hi Linus, Two small patches to fix some problems relating to LSM hook return values and how the individual LSMs interact. I expect you'll probably see another pull request similar to this in the next week (two?), to address some remaining issues, but these two patches were ready and I wanted to get them into your tree sooner rather than later. Please merge. Thanks, -Paul --- The following changes since commit 6613476e225e090cc9aad49be7fa504e290dd33d: Linux 6.8-rc1 (2024-01-21 14:11:32 -0800) are available in the Git repository at: https://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/lsm.git tags/lsm-pr-20240131 for you to fetch changes up to 5a287d3d2b9de2b3e747132c615599907ba5c3c1: lsm: fix default return value of the socket_getpeersec_*() hooks (2024-01-30 17:01:54 -0500) ---------------------------------------------------------------- lsm/stable-6.8 PR 20240131 ---------------------------------------------------------------- Ondrej Mosnacek (2): lsm: fix the logic in security_inode_getsecctx() lsm: fix default return value of the socket_getpeersec_*() hooks include/linux/lsm_hook_defs.h | 4 ++-- security/security.c | 45 +++++++++++++++++++++++++++++++++----- 2 files changed, 42 insertions(+), 7 deletions(-) -- paul-moore.com