Received: by 2002:ac0:a582:0:0:0:0:0 with SMTP id m2-v6csp1563295imm; Wed, 10 Oct 2018 17:26:47 -0700 (PDT) X-Google-Smtp-Source: ACcGV61xaDbR0FrgPE1vmOarQ8IyVyyLik3Rhu5DTtYQKltgdafReDJEj451Uwjjw2Yky5bE/UxJ X-Received: by 2002:a62:db46:: with SMTP id f67-v6mr36338843pfg.1.1539217607551; Wed, 10 Oct 2018 17:26:47 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1539217607; cv=none; d=google.com; s=arc-20160816; b=fhVY7IhdQTEycU3RCQmuo5chkR56mC1P38Uy3POvtrtw5byGJl9/pL1VhqDjUg1f9J cD8Sxu4vFNPZ9wni0NSlFbfnZNfqEu8Ss7y6wrlX0qU3Bo2wtOQPj1HjUgKwUQfgtqO8 nwRsivFcPv6alBknGAQj6stkVhWTsy2IL5WzQXlCtyuuzhSlsb/xNmoEIURE3WMJBCIy 5uS6kLjmmAyG4qgDXk8LgHeAOfYlMdDF4wsMdrlghkDKi1HecHr8zOyJJ5cJuTBPUxrm MZsupto2I3TmwdDgpwn7AgsUFdoYgJJ6Ldr/i6xEv9XTHF6zRTZueidxoo8bzC0Y9Qrc lllQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:references:in-reply-to:message-id:date :subject:cc:to:from:dkim-signature; bh=IKJr22+ArqQau5eHRp/gArdrGaRS+9hQmMHuu8m9jEg=; b=mICJxqinFYX6ug/emRpEEKBJQ+cqGmd978JkZj7irdneTrjmfuN6UvvrBCNbiCnk8G v8cCUgR9FGRaHLfqJKBJq7VMX3OUAL8Vdb0Wt4QozljuTqyrJiAnLSepIiWxICm8f7C1 k69KYCzUeIWpj4sGj11WCPuKjxtAkVAF5F8FLuKLDP+THO2/C/v9gLfzKufBQIRWv/Kn C3n0n3xU6hcB+zCXaD0xN7SfdPKBFWBLC5tTZCSYprUYTFEJ84JWW19rH+hCJTbzVUpa 8sekdKGLCdzhku3655+E6D2rP5JKu2/sEnwQX42VW3UpD0WwYU0ORbUHP5tpL4q8DIez ktWA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@chromium.org header.s=google header.b=ATJmINTA; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id 5-v6si27645833pfz.160.2018.10.10.17.26.33; Wed, 10 Oct 2018 17:26:47 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@chromium.org header.s=google header.b=ATJmINTA; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727193AbeJKHue (ORCPT + 99 others); Thu, 11 Oct 2018 03:50:34 -0400 Received: from mail-pg1-f194.google.com ([209.85.215.194]:42395 "EHLO mail-pg1-f194.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1727128AbeJKHue (ORCPT ); Thu, 11 Oct 2018 03:50:34 -0400 Received: by mail-pg1-f194.google.com with SMTP id i4-v6so3273681pgq.9 for ; Wed, 10 Oct 2018 17:25:57 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; h=from:to:cc:subject:date:message-id:in-reply-to:references; bh=IKJr22+ArqQau5eHRp/gArdrGaRS+9hQmMHuu8m9jEg=; b=ATJmINTA5StSNCj0pPjYkH38S5HIB4GmfSh05agNfZdmcdk4MUyJrFyx/DxH1t1spX aVZQ947MBmkicK/he7Zuo+0ykRQosImfjSgS+gTA9IGfXDi82jpv0OgSlyFoJpCqROxM Vvwe7L8cr23Fp+F2kL7eTw5AZbTY8D0kL1LDU= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to :references; bh=IKJr22+ArqQau5eHRp/gArdrGaRS+9hQmMHuu8m9jEg=; b=FxQeulCMuBwxXqJ/E1ZLdQTqoAdPKTWAekUju7U/NiH/lZV3qqWT8LTFNO9D+hdktO eTiZH9VwJJ1/KIMnK1+X1MJ2ONvGbZMnHt9LelhkluEW2O9YwIvfsWMTKb6yBhRB+MUa ecJdqdAKx3wh9ziY5JmwWClU3FBJ3ELFQ57uSvKJ3UpDPTLpnXQo6CMYucDRKwV1mIDC SVmIO6jYX2iMewGaHyxhb9K6EcpIwCC01lcq8FQT7xffo6CSArPC/5yIniIHGFYZzyJ/ I5cDrrW9t3T6Ar1Y8gWDDfYSOgcxrhiwHd/VqrZc8TJWrHvybMyFD4eOb+mVnNy0kyBd 5YXw== X-Gm-Message-State: ABuFfojdoGvDFQh2w2mPQYCiJf8h+oV4CeSRMLO45xgksXhc+sdy1FRy 7I2tDMF/yaLpeslHGCg8loPQMw== X-Received: by 2002:a62:3047:: with SMTP id w68-v6mr12340587pfw.19.1539217557357; Wed, 10 Oct 2018 17:25:57 -0700 (PDT) Received: from www.outflux.net (173-164-112-133-Oregon.hfc.comcastbusiness.net. [173.164.112.133]) by smtp.gmail.com with ESMTPSA id q24-v6sm22973712pff.83.2018.10.10.17.25.49 (version=TLS1_2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256/256); Wed, 10 Oct 2018 17:25:50 -0700 (PDT) From: Kees Cook To: James Morris Cc: Kees Cook , Casey Schaufler , John Johansen , Stephen Smalley , Paul Moore , Tetsuo Handa , Mimi Zohar , Randy Dunlap , Jordan Glover , LSM , linux-doc@vger.kernel.org, linux-arch@vger.kernel.org, linux-kernel@vger.kernel.org Subject: [PATCH security-next v5 19/30] LSM: Tie enabling logic to presence in ordered list Date: Wed, 10 Oct 2018 17:18:35 -0700 Message-Id: <20181011001846.30964-20-keescook@chromium.org> X-Mailer: git-send-email 2.17.1 In-Reply-To: <20181011001846.30964-1-keescook@chromium.org> References: <20181011001846.30964-1-keescook@chromium.org> Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Until now, any LSM without an enable storage variable was considered enabled. This inverts the logic and sets defaults to true only if the LSM gets added to the ordered initialization list. (And an exception continues for the major LSMs until they are integrated into the ordered initialization in a later patch.) Signed-off-by: Kees Cook --- include/linux/lsm_hooks.h | 2 +- security/security.c | 14 +++++++++++--- 2 files changed, 12 insertions(+), 4 deletions(-) diff --git a/include/linux/lsm_hooks.h b/include/linux/lsm_hooks.h index 9ecb623fb39d..b6b05d351eb4 100644 --- a/include/linux/lsm_hooks.h +++ b/include/linux/lsm_hooks.h @@ -2044,7 +2044,7 @@ extern void security_add_hooks(struct security_hook_list *hooks, int count, struct lsm_info { const char *name; /* Required. */ unsigned long flags; /* Optional: flags describing LSM */ - int *enabled; /* Optional: NULL means enabled. */ + int *enabled; /* Optional: controlled by CONFIG_LSM */ int (*init)(void); /* Required. */ }; diff --git a/security/security.c b/security/security.c index 70cb2d0004e9..f3777ed4ca80 100644 --- a/security/security.c +++ b/security/security.c @@ -63,10 +63,10 @@ static __initdata bool debug; static bool __init is_enabled(struct lsm_info *lsm) { - if (!lsm->enabled || *lsm->enabled) - return true; + if (!lsm->enabled) + return false; - return false; + return *lsm->enabled; } /* Mark an LSM's enabled flag. */ @@ -117,7 +117,11 @@ static void __init append_ordered_lsm(struct lsm_info *lsm, const char *from) if (WARN(last_lsm == LSM_COUNT, "%s: out of LSM slots!?\n", from)) return; + /* Enable this LSM, if it is not already set. */ + if (!lsm->enabled) + lsm->enabled = &lsm_enabled_true; ordered_lsms[last_lsm++] = lsm; + init_debug("%s ordering: %s (%sabled)\n", from, lsm->name, is_enabled(lsm) ? "en" : "dis"); } @@ -210,6 +214,10 @@ static void __init major_lsm_init(void) if ((lsm->flags & LSM_FLAG_LEGACY_MAJOR) == 0) continue; + /* Enable this LSM, if it is not already set. */ + if (!lsm->enabled) + lsm->enabled = &lsm_enabled_true; + maybe_initialize_lsm(lsm); } } -- 2.17.1