Received: by 10.192.165.148 with SMTP id m20csp111843imm; Fri, 4 May 2018 07:29:45 -0700 (PDT) X-Google-Smtp-Source: AB8JxZpWL+KpIaU+ErMHE9bmPWvYFCnb8p6gE/053XJyVHYnzk4n4fpEaUqZForGDg91JdU4Hmg3 X-Received: by 2002:a17:902:9a48:: with SMTP id x8-v6mr24062172plv.244.1525444185402; Fri, 04 May 2018 07:29:45 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1525444185; cv=none; d=google.com; s=arc-20160816; b=LUVmh3SShI5WrjVo8+poLQt14dxxLo7YesuQprjKybBWshnKZHUDbiSKd7BERTAZHG 66QYT37cTPovlW9smjR4+mB2amKtrR1710Gt8nspQx2IDFpoEG+XtgTfpSZYpNmSqiH6 QBqjFtamEbb8FVnd2ijKWfjerYZjXOQK81EMvbeud6rargtBfPElNhUTro82prSb52Kv yV8iIq8PMSqpVbC7sihNCFKWlTRptTjFJt42alwkk98nQwy5sYKhMBFDISQDR6U8av17 jGjNBmipEr+HTZVpbIZ/9t3uLRTB+bgWj5e34nncif6JrsWUoX58DcvKRcS/e7e16x9q Pmpw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :references:in-reply-to:mime-version:dkim-signature :arc-authentication-results; bh=23HBiAB9fISoCo2nyfdcDxqEdwwjNCsoZxGlaARUvhA=; b=xhXX9/aHwuZ7fkqo0TFbBy79NOZe0hNOTa6LXY01+zFmrTBpijHamBDvZzj13AgBq8 eeRTYSjb8zSz91WYTuDDfJBzZkTBmokc6wEKulctdOdlw2e2GWJHCnzwKcSpYK9238Fd xlgQ5pQmd6/IUoo5ELS8FKww1PUs6Aokx7mEAxXyHqYaNjrE6W0l1kQ5PImLLkbPl1Nd EnzPN2LYVRJf2VAW3E6mcjqG0+ZMFM9GTLHvbftvDI3ImlBGO7e4tbHHidiRO/RO/ufb 8wBVdYLASMe+827y/n6903DOqLZoDRCZgpqF61ksEJSSP4GH0SGQ96clmVX2Wqk5UkqY ziIw== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@gmail.com header.s=20161025 header.b=kn8Qeh+k; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id u47-v6si13549607pgn.488.2018.05.04.07.29.31; Fri, 04 May 2018 07:29:45 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@gmail.com header.s=20161025 header.b=kn8Qeh+k; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1751579AbeEDO3T (ORCPT + 99 others); Fri, 4 May 2018 10:29:19 -0400 Received: from mail-io0-f196.google.com ([209.85.223.196]:41194 "EHLO mail-io0-f196.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751001AbeEDO3P (ORCPT ); Fri, 4 May 2018 10:29:15 -0400 Received: by mail-io0-f196.google.com with SMTP id e12-v6so25853041iob.8; Fri, 04 May 2018 07:29:15 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=23HBiAB9fISoCo2nyfdcDxqEdwwjNCsoZxGlaARUvhA=; b=kn8Qeh+kjK13vGz72mr2IEO5w8cWOtjwLAVEHI2oLja6qSvJ3uW4nqe06bFzoN4Dev mvhkezqaPICWuwwEt+dw+z35MIN+tSC88m0tdIAwsKh21QpgIda1lVQ4voXyhHTwzs0d LgfPergaRgzfSA6vPVQ7oM/8XTuiwJGepflDnQXbAqPvVAW8JiZXW98E9ol6latWC+wl IosJZMvH5Bh3aav8Tqsgbfn4onsmUdTOP7K/4aw06N6doXVJsMSdJokj1uTfTlhTuEcJ 4/BT5wPzJiBIWIYXIrvV083eoCNDVrF1Hc6ebDdCcFnoLaDa5ergs8Aq+r0NUWxuQ8Bo azRA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=23HBiAB9fISoCo2nyfdcDxqEdwwjNCsoZxGlaARUvhA=; b=pvmISVVDJuiUIlfUUdKC7MQcB1JM4YvQwxKnd6B8kWWnJ5EbM5P8Hx2cM6jR1WacY1 u1VPvikQXp8N0FHYx30cJssbQyrSJCvcRfMuUX6NIW7IFM8RT68GaJ75MsN7VxvLBRUj 2DCCskh3/tCfiAUjIMovlJgbfOod/bLzAu58tj7n/rrMGqUppc0m/waMyaZ3+gPSeWoB 2x9Fz1FCtuw4auYZGSBhgtVtCWXiU2zVMNkVJ43YeJGSiyYnEiVw/2T/wqiBw6L99arO nXCrv0R7/zLRllY/KpaQdfPL7mqquElwWEnt0GaJMgGdrDhBkJpRsow/ZCQa4yECceX6 ErEg== X-Gm-Message-State: ALQs6tDh3E3vffQx0A5KVjx78HFdbKYJmL0b0jtvGsVsHbExIiroJI3B 6WL06BqXsTU+srIGvg9GMftZbQxpSjrYky+MXbY= X-Received: by 2002:a6b:8544:: with SMTP id h65-v6mr27998636iod.271.1525444154739; Fri, 04 May 2018 07:29:14 -0700 (PDT) MIME-Version: 1.0 Received: by 10.107.157.13 with HTTP; Fri, 4 May 2018 07:29:14 -0700 (PDT) In-Reply-To: References: <20180423133015.5455-1-dh.herrmann@gmail.com> From: David Herrmann Date: Fri, 4 May 2018 16:29:14 +0200 Message-ID: Subject: Re: [PATCH 0/3] Introduce LSM-hook for socketpair(2) To: James Morris Cc: Paul Moore , linux-kernel , Tom Gundersen , Stephen Smalley , selinux@tycho.nsa.gov, LSM , Eric Paris , "Serge E. Hallyn" , "David S. Miller" , netdev Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Hey On Wed, Apr 25, 2018 at 9:02 PM, James Morris wrote: > On Wed, 25 Apr 2018, Paul Moore wrote: > >> On Wed, Apr 25, 2018 at 2:44 PM, James Morris wrote: >> > On Mon, 23 Apr 2018, David Herrmann wrote: >> >> This patch series tries to close this gap and makes both behave the >> >> same. A new LSM-hook is added which allows LSMs to cache the correct >> >> peer information on newly created socket-pairs. >> > >> > Looks okay to me. >> > >> > Once it's respun with the Smack backend and maybe the hook name change, >> > I'll merge this unless DaveM wants it to go in via his networking tree. >> >> Note my objection to the hook placement in patch 2/3; I think we >> should move the hook out of the AF_UNIX layer and up into the socket >> layer. > > I vote for this as it maintains the intended abstraction of the socket > API. Sounds good, I changed it. I will send v2 shortly. Thanks David