From patchwork Tue Feb 27 22:57:59 2024 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-Patchwork-Submitter: Paul Moore X-Patchwork-Id: 207490 Return-Path: Delivered-To: ouuuleilei@gmail.com Received: by 2002:a05:7300:a81b:b0:108:e6aa:91d0 with SMTP id bq27csp3010311dyb; Tue, 27 Feb 2024 14:58:20 -0800 (PST) X-Forwarded-Encrypted: i=3; AJvYcCXQOnd5lhHa6hx8GhcSZGP9Dz63+pQ2GUH2UwP3IKC82Vcg+iK4lvkmCI5DemESyYWD4vLrIkYQKqnW3BomrYyjYr02DQ== X-Google-Smtp-Source: AGHT+IH2CppvM/DGOtMFgUxtt+B7MSo/2z5rjFM6lYpPWK4kM2jU8YjBc7/dmAGK5D2Dqtcs+Aj4 X-Received: by 2002:aa7:db5a:0:b0:566:2be1:5276 with SMTP id n26-20020aa7db5a000000b005662be15276mr3018719edt.23.1709074700164; Tue, 27 Feb 2024 14:58:20 -0800 (PST) ARC-Seal: i=2; a=rsa-sha256; t=1709074700; cv=pass; d=google.com; s=arc-20160816; b=BF1O/z1z0ZnD8PYaOEs/f8q4jNLglxNPKktStkF9m3qGwNtGWCEOFUDEs71bkV//ZU h/EGtVCOJBYNJmcIRa88+fcjcdTUE87WukikMa8S307ccSlj4mnNuGGcFEkUWiz94nf2 g2JH4QJXrOC+rgCBDF90P9m6w2bUzjBSIqBGc9Hz24/0KEBqZ8MFwJMEHSC+wktUGpL7 uCqFu7K2dWRArTcMP+r4nvohNcMxu3MFFocIsNoDvKkxeAcy7gbPU1A6zn1/gXXkXFxb 1eYvFPrXU8D5DtVfJ4OX/RpCG1AJuHnuRMLbAnIJQ07rnFBfsCFhK07Qf5my9np06bbh si1Q== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-unsubscribe:list-subscribe:list-id:precedence:subject:cc:to :from:message-id:date:dkim-signature; bh=aQORNsSdhj+SgaznGPg3hUT/9RbkqE/djugNonksFls=; fh=m+siUlkQV1PoJJebUIhl83XrF3geaccuXjvnnTzVrcw=; b=xuWJ5G7ATwDwIaiqNHnv8uBD6XxZ73jkfd3ADH8vh6CkPYAl+lOTYlvM1sOf5X0n/u gO+4WWPN5Rh/eD4No3gwtYAbEiYc3OwPmtB8kmXtNWN17qZAk8bMmcHgfORxB37EVItL dqL1e2UEjXC8iR51A1yPoW99bnAm68x9R+1VULleU9EARpWIpWATAfsUjJr222bh4ZJY HQRf7RahpMD2bZ/xCs84aPPEG6A2zxcvNfGgWDQO84LQlLTNm2CZPkMdEAiYRo1lpPsP YDTz+dSNrXQQA3XTD+YVx+KxVs8C67YsXAaLLe55nd+LA+8NQ8uKTcvppDe5Fq/mVeHL 4DAA==; dara=google.com ARC-Authentication-Results: i=2; mx.google.com; dkim=pass header.i=@paul-moore.com header.s=google header.b=TFcJprY8; arc=pass (i=1 spf=pass spfdomain=paul-moore.com dkim=pass dkdomain=paul-moore.com dmarc=pass fromdomain=paul-moore.com); spf=pass (google.com: domain of linux-kernel+bounces-84151-ouuuleilei=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) smtp.mailfrom="linux-kernel+bounces-84151-ouuuleilei=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=paul-moore.com Received: from am.mirrors.kernel.org (am.mirrors.kernel.org. [2604:1380:4601:e00::3]) by mx.google.com with ESMTPS id e30-20020a50d4de000000b005643f5aa722si1085561edj.366.2024.02.27.14.58.19 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 27 Feb 2024 14:58:20 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel+bounces-84151-ouuuleilei=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) client-ip=2604:1380:4601:e00::3; Authentication-Results: mx.google.com; dkim=pass header.i=@paul-moore.com header.s=google header.b=TFcJprY8; arc=pass (i=1 spf=pass spfdomain=paul-moore.com dkim=pass dkdomain=paul-moore.com dmarc=pass fromdomain=paul-moore.com); spf=pass (google.com: domain of linux-kernel+bounces-84151-ouuuleilei=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) smtp.mailfrom="linux-kernel+bounces-84151-ouuuleilei=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=paul-moore.com Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by am.mirrors.kernel.org (Postfix) with ESMTPS id C2FBA1F2606F for ; Tue, 27 Feb 2024 22:58:19 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 82B4256469; Tue, 27 Feb 2024 22:58:08 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=paul-moore.com header.i=@paul-moore.com header.b="TFcJprY8" Received: from mail-oo1-f51.google.com (mail-oo1-f51.google.com [209.85.161.51]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 855DA55C1E for ; Tue, 27 Feb 2024 22:58:02 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=209.85.161.51 ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1709074685; cv=none; b=uWhMLXt8/+7bbvpr4RP+8r/7aJ4PrGYtFY/U5hT/lhA9xgZz8W2lCJlXvgjoSJFzVsoJPWzG7FYHbGy4Kmup5WgDy8iOmj/01z3jgrz4atwGFcSKlVU8XgaL803AXq1jMMJU53Q5G2m17JlLKKe7ZtfpA31gKbnAL2aemjuT/vo= ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1709074685; c=relaxed/simple; bh=Vr71jqKQJ39d0269hwhew7G+y2kaKz1jSP0H4+MZG4E=; h=Date:Message-ID:From:To:Cc:Subject; b=pIiOmjxLgdxg0SnXQr3QIH8GOhx7QO6JGr44ES2C0tRroGeJjkbuUs9jRhespMlfAhmMmvK7lQ/SOdMCQBwRfhB1j9lBZb2i5phtra992KuKLCeVLacayIBpZUxe9UILeSIgHvgWjO3Ai5iB61WzrXZTjstNdWYIkE3S+LBB708= ARC-Authentication-Results: i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=paul-moore.com; spf=pass smtp.mailfrom=paul-moore.com; dkim=pass (2048-bit key) header.d=paul-moore.com header.i=@paul-moore.com header.b=TFcJprY8; arc=none smtp.client-ip=209.85.161.51 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=paul-moore.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=paul-moore.com Received: by mail-oo1-f51.google.com with SMTP id 006d021491bc7-5a04dd6721dso1358894eaf.0 for ; Tue, 27 Feb 2024 14:58:02 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=paul-moore.com; s=google; t=1709074681; x=1709679481; darn=vger.kernel.org; h=subject:cc:to:from:message-id:date:from:to:cc:subject:date :message-id:reply-to; bh=aQORNsSdhj+SgaznGPg3hUT/9RbkqE/djugNonksFls=; b=TFcJprY8Yie5+Fw3xy1WuJcr/fSEClWKTfDsimwCOTU1R+CdzFAKyZM0uA80x9/JTN SjYWBO+6ILRtJ9SMusbIg1vcgm2uIB2coVSktyhw6CYFk3PR1ISziCFlT2hawHKScIA3 VIXYfs7kdWHI25xuLQoP5pWumuQOUcJMVvHgTq2ygZCjgOEGdjjRuzaFZpN0XfG5WcIu jA0Pbe39ljFtROFIkuyF4GWhece/Uf5NskMezersHtFgPW2Oa9VygzGQCEkwtrAjR1mK ssnQZ6kCQump9Giq1PzFWNuAtZ9YZt3MQVhSPsC9NYzJlAgkeUwtmoYnptFmU3KdutBu 1i+g== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1709074681; x=1709679481; h=subject:cc:to:from:message-id:date:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=aQORNsSdhj+SgaznGPg3hUT/9RbkqE/djugNonksFls=; b=szjePY+ySXrAJzgJc6Lp6fGllOSbw1MXR+GGm4HtoQeHflynRwKwbGl5r5A1hw+0N+ 36eoFwFbpxtZ4nBccQch1KdCwlJzAueWt6klgYJcAefdvLgqoC0CS/maSqc2T/wedni+ c1lEm72xOw1+5BIkS6FAer2MoCzcGb9rJHsoJV1lVL8yicJgnAvcUwvhU4/S9waDFpm6 IdzfouoavrtINI7nuC9lyLckqvNZVjnDqFCsplVo0xjx/594WLwejCFVQ4XQLlDxKEpA yqOBFqCTcDp661UGql60nuMCtzO0jOUQ5aB057JupvsgHdS9N35AKuFWrlWhfUOj5BJE CgGQ== X-Forwarded-Encrypted: i=1; AJvYcCUjYIsqg/cXN5K4JKmxVKpxYfrsR/4dnsG7DU1Po2tUwCk5HVp8H6hr7T32Ifi77+TUPfhlZQHOybZ4mWiVZUW+kEgab+1+VDxLjTi8 X-Gm-Message-State: AOJu0YxtzKFzOPK4LLVQLN+5mvZdm8d4uTUXiT4/raw30BgBGzWqcXz4 NTA55vB6M3Kli41oz3D6WMwwAFjsitxoFF5Dqoanw3DHWBx+Q6VzSgg2M1L8RA== X-Received: by 2002:a05:6358:5e04:b0:17b:4b52:d3fc with SMTP id q4-20020a0563585e0400b0017b4b52d3fcmr9991484rwn.21.1709074680213; Tue, 27 Feb 2024 14:58:00 -0800 (PST) Received: from localhost ([70.22.175.108]) by smtp.gmail.com with ESMTPSA id b8-20020a0cf048000000b0068f11ceb309sm4584551qvl.128.2024.02.27.14.57.59 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 27 Feb 2024 14:57:59 -0800 (PST) Date: Tue, 27 Feb 2024 17:57:59 -0500 Message-ID: <64a1045e4c018f135b78952c2c5ae3e9@paul-moore.com> From: Paul Moore To: Linus Torvalds Cc: linux-security-module@vger.kernel.org, linux-kernel@vger.kernel.org Subject: [GIT PULL] lsm/lsm-pr-20240227 Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: X-getmail-retrieved-from-mailbox: INBOX X-GMAIL-THRID: 1792094712530265641 X-GMAIL-MSGID: 1792094712530265641 Hi Linus, Two small patches, one for AppArmor and one for SELinux, to fix potential uninitialized variable problems in the new LSM syscalls we added during the v6.8 merge window. We haven't been able to get a response from John on the AppArmor patch, but considering both the importance of the patch and it's rather simple nature it seems like a good idea to get this merged sooner rather than later. I'm sure John is just taking some much needed vacation; if we need to revise this when he gets back to his email we can. You will likely notice a forced push on the branch below, that's due to some false starts on the commit descriptions and nothing nefarious. As usual, the pull tag also has my signature on it to help alleviate any concerns. Please merge, -Paul --- The following changes since commit d8bdd795d383a23e38ac48a40d3d223caf47b290: lsm: fix integer overflow in lsm_set_self_attr() syscall (2024-02-14 13:53:15 -0500) are available in the Git repository at: https://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/lsm.git tags/lsm-pr-20240227 for you to fetch changes up to 6d2fb472ea9ea27f765f10ba65ec73d30f6b7977: apparmor: fix lsm_get_self_attr() (2024-02-23 17:16:33 -0500) ---------------------------------------------------------------- lsm/stable-6.8 PR 20240227 ---------------------------------------------------------------- Mickaël Salaün (2): selinux: fix lsm_get_self_attr() apparmor: fix lsm_get_self_attr() security/apparmor/lsm.c | 2 +- security/selinux/hooks.c | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) -- paul-moore.com