Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S934719AbbGHKZc (ORCPT ); Wed, 8 Jul 2015 06:25:32 -0400 Received: from mailout3.w1.samsung.com ([210.118.77.13]:47992 "EHLO mailout3.w1.samsung.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S934666AbbGHKZY (ORCPT ); Wed, 8 Jul 2015 06:25:24 -0400 X-AuditID: cbfec7f5-f794b6d000001495-ed-559cfa91846c From: Paul Osmialowski To: Paul Moore , James Morris , Casey Schaufler , "Serge E. Hallyn" , Kees Cook , Tetsuo Handa , Stephen Smalley , Neil Brown , Mark Rustad , Greg Kroah-Hartman , Daniel Mack , David Herrmann , Djalal Harouni , Shuah Khan , Al Viro , linux-security-module@vger.kernel.org, linux-kernel@vger.kernel.org, linux-api@vger.kernel.org Cc: Karol Lewandowski , Paul Osmialowski , Lukasz Skalski Subject: [RFC 0/8] Introduce LSM to KDBUS Date: Wed, 08 Jul 2015 12:25:02 +0200 Message-id: <1436351110-5902-1-git-send-email-p.osmialowsk@samsung.com> X-Mailer: git-send-email 1.9.1 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrCLMWRmVeSWpSXmKPExsVy+t/xq7oTf80JNdjzgMPi3rZfbBZNf1+x WCy+LGbRvHg9m0Xf4yCLxk9zmS3OdOdazDnXyGSx+XsHm8XlXXPYLD70PGKzmPP2LZvF3vkN LBYT3hxgtpjd8o7V4vO1X+wWh3cvZrY4f+Ecu8XULx9YLFb+3s5mcf7vcVYHUY/ZDRdZPJ5O mMzucW13pMfOtauYPBbvecnksX/uGnaPFb+OsHt8fHqLxWNL/112j/f7rrJ59G1ZxehxdP8i No/Np6s9tk7/z+rxeZOcx6Ynb5kCBKO4bFJSczLLUov07RK4Mhbe7WQquClbseSGWAPjZdEu Rk4OCQETiTnvr7JB2GISF+6tB7K5OIQEljJKLDr/hAnCaWSSmP3qHSNIFZuAocTN/4fBbBGB XawSb3bEgRQxC3QySszpOscEkhAW0JRoOf8PbCyLgKrEwgUrWEFsXgF3if7GaYwQ6+QkTh6b zDqBkXsBI8MqRtHU0uSC4qT0XCO94sTc4tK8dL3k/NxNjJC4+LqDcekxq0OMAhyMSjy8HjFz QoVYE8uKK3MPMUpwMCuJ8O66ABTiTUmsrEotyo8vKs1JLT7EKM3BoiTOO3PX+xAhgfTEktTs 1NSC1CKYLBMHp1QDo+RZiR1GSw9eapUP4koK1qoNvm3z737IrLc7JmTdlt8sMGGaXMUnlwky l6p1K89HiPGK7Fn+wMiyMJ81PGjOxSgx6e2Gn7WZFLdNL9vY9d5t5mTDAs5H63K2VrczefG7 5Aq5bCzfY+4gKrrm9sNiwz5xl7SnFftEDjXqqr10vp/+Q27CztRJSizFGYmGWsxFxYkAMKq2 HIcCAAA= Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 3967 Lines: 84 This patchset partially summarizes effects of collective work by Karol Lewandowski and Paul Moore towards introduction of LSM into KDBUS. These patches originate from following git repositories: git://git.infradead.org/users/pcmoore/selinux (branch: working-kdbus) https://github.com/lmctl/linux.git (branch: kdbus-lsm-v4.for-systemd-v212) https://github.com/lmctl/kdbus.git (branch: kdbus-lsm-v4.for-systemd-v212) Since kdbus made its way to linux-next tree, I was kindly asked by Karol Lewandowski to fit his work into the current kdbus code existing there. As both kdbus and security related code changed a bit, so are my changes quite substantial in places. Note that SELinux kdbus access control patches are absent - only SMACK part of original work is included. I've also made some changes to kdbus test suite. In order to see LSM hooks in action we need to be able to run tests from different executable binaries holding different security labels. Therefore I added ability to select execution of particular test by executed binary name. This is essential for running newly added 'send' test which should communicate with 'daemon' test running in another process. Karol Lewandowski (1): lsm: make security_file_receive available for external modules Paul Osmialowski (7): lsm: smack: Make ipc/kdbus includes visible so smack callbacks could see them lsm: kdbus security hooks lsm: smack: smack callbacks for kdbus security hooks kdbus: use LSM hooks in kdbus code kdbus: TEST_CREATE_CONN now does no depend on TEST_CREATE_BUS kdbus: selftests extended kdbus: Ability to run kdbus test by executable binary name include/linux/lsm_hooks.h | 67 +++++++++++++ include/linux/security.h | 99 +++++++++++++++++++ ipc/kdbus/bus.c | 12 ++- ipc/kdbus/bus.h | 3 + ipc/kdbus/connection.c | 54 +++++++++++ ipc/kdbus/connection.h | 4 + ipc/kdbus/domain.c | 9 +- ipc/kdbus/domain.h | 2 + ipc/kdbus/endpoint.c | 11 +++ ipc/kdbus/names.c | 11 +++ ipc/kdbus/queue.c | 30 ++++-- security/security.c | 118 +++++++++++++++++++++++ security/smack/Makefile | 2 + security/smack/smack_lsm.c | 68 +++++++++++++ tools/testing/selftests/kdbus/Makefile | 1 + tools/testing/selftests/kdbus/kdbus-test.c | 37 ++++++- tools/testing/selftests/kdbus/kdbus-test.h | 1 + tools/testing/selftests/kdbus/kdbus-util.c | 37 ++++--- tools/testing/selftests/kdbus/kdbus-util.h | 2 +- tools/testing/selftests/kdbus/test-activator.c | 20 ++-- tools/testing/selftests/kdbus/test-chat.c | 6 +- tools/testing/selftests/kdbus/test-connection.c | 8 +- tools/testing/selftests/kdbus/test-fd.c | 2 +- tools/testing/selftests/kdbus/test-message.c | 69 ++++++++----- tools/testing/selftests/kdbus/test-metadata-ns.c | 10 +- tools/testing/selftests/kdbus/test-monitor.c | 9 +- tools/testing/selftests/kdbus/test-policy-ns.c | 8 +- tools/testing/selftests/kdbus/test-policy-priv.c | 48 +++++---- tools/testing/selftests/kdbus/test-send.c | 84 ++++++++++++++++ tools/testing/selftests/kdbus/test-sync.c | 2 +- tools/testing/selftests/kdbus/test-timeout.c | 2 +- 31 files changed, 732 insertions(+), 104 deletions(-) create mode 100644 tools/testing/selftests/kdbus/test-send.c -- 1.9.1 -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/