Merge branch 'next' of git://selinuxproject.org/~jmorris/linux-security

* 'next' of git://selinuxproject.org/~jmorris/linux-security: (95 commits) TOMOYO: Fix incomplete read after seek. Smack: allow to access /smack/access as normal user TOMOYO: Fix unused kernel config option. Smack: fix: invalid length set for the result of /smack/access Smack: compilation fix Smack: fix for /smack/access output, use string instead of byte Smack: domain transition protections (v3) Smack: Provide information for UDS getsockopt(SO_PEERCRED) Smack: Clean up comments Smack: Repair processing of fcntl Smack: Rule list lookup performance Smack: check permissions from user space (v2) TOMOYO: Fix quota and garbage collector. TOMOYO: Remove redundant tasklist_lock. TOMOYO: Fix domain transition failure warning. TOMOYO: Remove tomoyo_policy_memory_lock spinlock. TOMOYO: Simplify garbage collector. TOMOYO: Fix make namespacecheck warnings. target: check hex2bin result encrypted-keys: check hex2bin result ...
author: Linus Torvalds <torvalds@linux-foundation.org> 2011-10-25 03:45:31 -0400
committer: Linus Torvalds <torvalds@linux-foundation.org> 2011-10-25 03:45:31 -0400
commit: 36b8d186e6cc8e32cb5227f5645a58e1bc0af190 (patch)
tree: 1000ad26e189e6ff2c53fb7eeff605f59c7ad94e /fs/xfs/xfs_iops.c
parent: cd85b557414fe4cd44ea6608825e96612a5fe2b2 (diff)
parent: c45ed235abf1b0b6666417e3c394f18717976acd (diff)
1 files changed, 20 insertions, 19 deletions
diff --git a/fs/xfs/xfs_iops.c b/fs/xfs/xfs_iops.c
index 673704fab748..28856accb4fa 100644
--- a/fs/xfs/xfs_iops.c
+++ b/fs/xfs/xfs_iops.c
@@ -102,37 +102,38 @@ xfs_mark_inode_dirty(
 }
+int xfs_initxattrs(struct inode *inode, const struct xattr *xattr_array,
+                   void *fs_info)
+{
+        const struct xattr *xattr;
+        struct xfs_inode *ip = XFS_I(inode);
+        int error = 0;
+        for (xattr = xattr_array; xattr->name != NULL; xattr++) {
+                error = xfs_attr_set(ip, xattr->name, xattr->value,
+                                     xattr->value_len, ATTR_SECURE);
+                if (error < 0)
+                        break;
+        }
+        return error;
+}
 /*
 * Hook in SELinux.  This is not quite correct yet, what we really need
 * here (as we do for default ACLs) is a mechanism by which creation of
 * these attrs can be journalled at inode creation time (along with the
 * inode, of course, such that log replay can't cause these to be lost).
 */
 STATIC int
 xfs_init_security(
        struct inode    *inode,
        struct inode    *dir,
        const struct qstr *qstr)
 {
-        struct xfs_inode *ip = XFS_I(inode);
+        return security_inode_init_security(inode, dir, qstr,
-        size_t          length;
+                                            &xfs_initxattrs, NULL);
-        void            *value;
-        unsigned char   *name;
-        int             error;
-        error = security_inode_init_security(inode, dir, qstr, (char **)&name,
-                                             &value, &length);
-        if (error) {
-                if (error == -EOPNOTSUPP)
-                        return 0;
-                return -error;
-        }
-        error = xfs_attr_set(ip, name, value, length, ATTR_SECURE);
-        kfree(name);
-        kfree(value);
-        return error;
 }
 static void
author	Linus Torvalds <torvalds@linux-foundation.org>	2011-10-25 03:45:31 -0400
committer	Linus Torvalds <torvalds@linux-foundation.org>	2011-10-25 03:45:31 -0400
commit	36b8d186e6cc8e32cb5227f5645a58e1bc0af190 (patch)
tree	1000ad26e189e6ff2c53fb7eeff605f59c7ad94e /fs/xfs/xfs_iops.c
parent	cd85b557414fe4cd44ea6608825e96612a5fe2b2 (diff)
parent	c45ed235abf1b0b6666417e3c394f18717976acd (diff)