diff options
| author | David P. Quigley <dpquigl@tycho.nsa.gov> | 2008-02-05 01:29:39 -0500 |
|---|---|---|
| committer | Linus Torvalds <torvalds@woody.linux-foundation.org> | 2008-02-05 12:44:20 -0500 |
| commit | 42492594043d621a7910ff5877c3eb9202870b45 (patch) | |
| tree | 9188d112c019a189606847dc1d90ccc63c1bacf2 /fs | |
| parent | 3729145821e3088a0c3c4183037fde356204bf97 (diff) | |
VFS/Security: Rework inode_getsecurity and callers to return resulting buffer
This patch modifies the interface to inode_getsecurity to have the function
return a buffer containing the security blob and its length via parameters
instead of relying on the calling function to give it an appropriately sized
buffer.
Security blobs obtained with this function should be freed using the
release_secctx LSM hook. This alleviates the problem of the caller having to
guess a length and preallocate a buffer for this function allowing it to be
used elsewhere for Labeled NFS.
The patch also removed the unused err parameter. The conversion is similar to
the one performed by Al Viro for the security_getprocattr hook.
Signed-off-by: David P. Quigley <dpquigl@tycho.nsa.gov>
Cc: Stephen Smalley <sds@tycho.nsa.gov>
Cc: Chris Wright <chrisw@sous-sol.org>
Acked-by: James Morris <jmorris@namei.org>
Acked-by: Serge Hallyn <serue@us.ibm.com>
Cc: Casey Schaufler <casey@schaufler-ca.com>
Cc: Al Viro <viro@zeniv.linux.org.uk>
Cc: Christoph Hellwig <hch@lst.de>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
Diffstat (limited to 'fs')
| -rw-r--r-- | fs/xattr.c | 30 |
1 files changed, 28 insertions, 2 deletions
diff --git a/fs/xattr.c b/fs/xattr.c index 6645b7313b33..1858552a6a1a 100644 --- a/fs/xattr.c +++ b/fs/xattr.c | |||
| @@ -105,6 +105,33 @@ out: | |||
| 105 | EXPORT_SYMBOL_GPL(vfs_setxattr); | 105 | EXPORT_SYMBOL_GPL(vfs_setxattr); |
| 106 | 106 | ||
| 107 | ssize_t | 107 | ssize_t |
| 108 | xattr_getsecurity(struct inode *inode, const char *name, void *value, | ||
| 109 | size_t size) | ||
| 110 | { | ||
| 111 | void *buffer = NULL; | ||
| 112 | ssize_t len; | ||
| 113 | |||
| 114 | if (!value || !size) { | ||
| 115 | len = security_inode_getsecurity(inode, name, &buffer, false); | ||
| 116 | goto out_noalloc; | ||
| 117 | } | ||
| 118 | |||
| 119 | len = security_inode_getsecurity(inode, name, &buffer, true); | ||
| 120 | if (len < 0) | ||
| 121 | return len; | ||
| 122 | if (size < len) { | ||
| 123 | len = -ERANGE; | ||
| 124 | goto out; | ||
| 125 | } | ||
| 126 | memcpy(value, buffer, len); | ||
| 127 | out: | ||
| 128 | security_release_secctx(buffer, len); | ||
| 129 | out_noalloc: | ||
| 130 | return len; | ||
| 131 | } | ||
| 132 | EXPORT_SYMBOL_GPL(xattr_getsecurity); | ||
| 133 | |||
| 134 | ssize_t | ||
| 108 | vfs_getxattr(struct dentry *dentry, char *name, void *value, size_t size) | 135 | vfs_getxattr(struct dentry *dentry, char *name, void *value, size_t size) |
| 109 | { | 136 | { |
| 110 | struct inode *inode = dentry->d_inode; | 137 | struct inode *inode = dentry->d_inode; |
| @@ -126,8 +153,7 @@ vfs_getxattr(struct dentry *dentry, char *name, void *value, size_t size) | |||
| 126 | if (!strncmp(name, XATTR_SECURITY_PREFIX, | 153 | if (!strncmp(name, XATTR_SECURITY_PREFIX, |
| 127 | XATTR_SECURITY_PREFIX_LEN)) { | 154 | XATTR_SECURITY_PREFIX_LEN)) { |
| 128 | const char *suffix = name + XATTR_SECURITY_PREFIX_LEN; | 155 | const char *suffix = name + XATTR_SECURITY_PREFIX_LEN; |
| 129 | int ret = security_inode_getsecurity(inode, suffix, value, | 156 | int ret = xattr_getsecurity(inode, suffix, value, size); |
| 130 | size, error); | ||
| 131 | /* | 157 | /* |
| 132 | * Only overwrite the return value if a security module | 158 | * Only overwrite the return value if a security module |
| 133 | * is actually active. | 159 | * is actually active. |