Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1752426AbbDQGYt (ORCPT ); Fri, 17 Apr 2015 02:24:49 -0400 Received: from mailout3.samsung.com ([203.254.224.33]:9026 "EHLO mailout3.samsung.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751370AbbDQGYk (ORCPT ); Fri, 17 Apr 2015 02:24:40 -0400 X-AuditID: cbfee690-f796f6d000005054-fd-5530a7262529 From: Seung-Woo Kim To: linux-security-module@vger.kernel.org, linux-kernel@vger.kernel.org, james.l.morris@oracle.com, serge@hallyn.com, casey@schaufler-ca.com Cc: sds@tycho.nsa.gov, sw0312.kim@samsung.com, sumit.semwal@linaro.org, linaro-mm-sig@lists.linaro.org, jy0922.shim@samsung.com Subject: [RESEND PATCH] Smack: ignore private inode for smack_file_receive Date: Fri, 17 Apr 2015 15:25:04 +0900 Message-id: <1429251904-1078-1-git-send-email-sw0312.kim@samsung.com> X-Mailer: git-send-email 1.7.4.1 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFnrILMWRmVeSWpSXmKPExsWyRsSkWFdtuUGowas98hb3tv1is+h7HGTx 4t5FFosvVx4yWVzeNYfN4kPPIzaLw7sXM1ucv3CO3eLU3c/sFjMmv2Rz4PK4tjvS4861PWwe t/89Zvb4+PQWi0ffllWMHkf3L2Lz2Dr9P6vH501yARxRXDYpqTmZZalF+nYJXBlNz+YwFUzn qLiz+z1zA+MTti5GTg4JAROJ5tsPmSFsMYkL99aDxYUEljJKHJuXDVOzcXYbexcjF1B8EaPE ijkb2SCcH4wSsxuusIJUsQnoSOxf8psVJCEi0McosXlOCyOIwyzQyCixbM0xsB3CAl4SV3rX MoHYLAKqEi9mb2MHsXkFXCW+bpzKDrFPQWLBvbdgKyQEVrFLLDpykgWiQUDi2+RDQDYHUEJW YtMBqLslJQ6uuMEygVFwASPDKkbR1ILkguKk9CITveLE3OLSvHS95PzcTYzAkD/979mEHYz3 DlgfYhTgYFTi4ZVIMggVYk0sK67MPcRoCrRhIrOUaHI+MLLySuINjc2MLExNTI2NzC3NlMR5 X0v9DBYSSE8sSc1OTS1ILYovKs1JLT7EyMTBKdXAGJXQ+5IrejpjQkWyTkUh16TASrM9Pu3r RVafc9Pd+S1SqOONueg6+Y+Gz36zcnKycEpviyl+YZzTzHfhyoXSqnknbV+c9G3ouPTJ8VjW FrXOzlytNOPKfXWzn65sbexl/CcW/WD3cvFdeupLJr9ivfw3869G9l69U5cFe8L+/7wuPPH0 8ZbvSizFGYmGWsxFxYkAuT/UInQCAAA= X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFlrDIsWRmVeSWpSXmKPExsVy+t9jAV215QahBttOiFvc2/aLzaLvcZDF i3sXWSy+XHnIZHF51xw2iw89j9gsDu9ezGxx/sI5dotTdz+zW8yY/JLNgcvj2u5IjzvX9rB5 3P73mNnj49NbLB59W1Yxehzdv4jNY+v0/6wenzfJBXBENTDaZKQmpqQWKaTmJeenZOal2yp5 B8c7x5uaGRjqGlpamCsp5CXmptoqufgE6Lpl5gDdqKRQlphTChQKSCwuVtK3wzQhNMRN1wKm MULXNyQIrsfIAA0krGHMaHo2h6lgOkfFnd3vmRsYn7B1MXJySAiYSGyc3cYOYYtJXLi3HijO xSEksIhRYsWcjVDOD0aJ2Q1XWEGq2AR0JPYv+c0KkhAR6GOU2DynhRHEYRZoZJRYtuYYM0iV sICXxJXetUwgNouAqsSL2dvAdvAKuEp83TgVap+CxIJ7b9kmMHIvYGRYxSiaWpBcUJyUnmuo V5yYW1yal66XnJ+7iREcU8+kdjCubLA4xCjAwajEwyuRZBAqxJpYVlyZe4hRgoNZSYTXuA0o xJuSWFmVWpQfX1Sak1p8iNEUaPtEZinR5HxgvOeVxBsam5gZWRqZG1oYGZsrifPO0ZULFRJI TyxJzU5NLUgtgulj4uCUamA8P31Orf1fxpyt1vphB3+3q3lbd11/ZhgtrRRl93eG6qffehN8 VbdNKDc1+tZ0nlF+95wb+QnTzEwPed84cKdxTZaw5bmbjo0lmx5fsplQGeW7fNo0+YyAJ5se M14tiM6e+/hOtkMk21GvqTOi9slLBy5/yRxw4u3CT/57j2zhT9l6/9OCduM/SizFGYmGWsxF xYkAGUM/xb8CAAA= DLP-Filter: Pass X-MTR: 20000000000000000@CPGS X-CFilter-Loop: Reflected Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 1262 Lines: 35 The dmabuf fd can be shared between processes via unix domain socket. The file of dmabuf fd is came from anon_inode. The inode has no set and get xattr operations, so it can not be shared between processes with smack. This patch fixes just to ignore private inode including anon_inode for smack_file_receive. Signed-off-by: Seung-Woo Kim --- I think there was some issue sending my previous mail, so I resend patch again. --- security/smack/smack_lsm.c | 3 +++ 1 files changed, 3 insertions(+), 0 deletions(-) diff --git a/security/smack/smack_lsm.c b/security/smack/smack_lsm.c index 69fdc38..d1bb411 100644 --- a/security/smack/smack_lsm.c +++ b/security/smack/smack_lsm.c @@ -1673,6 +1673,9 @@ static int smack_file_receive(struct file *file) struct smk_audit_info ad; struct inode *inode = file_inode(file); + if (unlikely(IS_PRIVATE(inode))) + return 0; + smk_ad_init(&ad, __func__, LSM_AUDIT_DATA_PATH); smk_ad_setfield_u_fs_path(&ad, file->f_path); /* -- 1.7.4.1 -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/