Received: by 2002:ac0:8845:0:0:0:0:0 with SMTP id g63csp1030274img; Tue, 26 Feb 2019 12:52:20 -0800 (PST) X-Google-Smtp-Source: AHgI3IadGFr6KAM7XLXRnTw/tNDTTVMcTWlUgxnQpRH0SA2MEbvR+jMAsPI05+V70QEBRybk0n6N X-Received: by 2002:a63:2682:: with SMTP id m124mr25675516pgm.35.1551214340553; Tue, 26 Feb 2019 12:52:20 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1551214340; cv=none; d=google.com; s=arc-20160816; b=TizHZ//phskVqQBSFR9XsGDmFumbBpfqyp/6D/NhNblDzEyl4Sqkt5h7GaPZAs5GFl Bd9ctCxZdOY/dz+lIoUiP3A7FKKYDCQhwiqERSsbSjk+oq/LlUxX9U9CfRXhvsNSGBn4 FoOv/LKMS5mLs2kaQMJNmKzRMFr8H8JJFuBsYdwUUyOGIw21SKO2OcikHcqa1FnfSVqn bxa+0NAjm2A2HiNfhT1DFY5C/PoVlHW/FfkLvGYDoIlDV+tu4sYtRFzOV9gAI5LXMAQ7 m31FSTtBM1EGAPMpoFjQFbA6aaPEKG7XGLUFtGP1DGm+adJChMo4LaaTH1xiIcm/dkeb 9gfw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:references:in-reply-to:references :in-reply-to:message-id:date:subject:cc:to:from; bh=G9L4lseI9s/Owrtf+3myAeQhGq1gTpFd8GMKvTcacvI=; b=H+yt/7l4zvQ23Uf8r3uEuF+AomxPj+pkCB2jQ3TUOjS9P9WpKPucQLdRomrV/vkTvu 4djuKZbZ4ffMBhX7kKbliI9vpUOGbt4stBOu/FptzZOrRX9/SXxZo8p/+ZXniJh+tcM3 f03DWCAz8i+X2JlfAHOCOGeIwAmOmbHddHyORF9SY+tDPCmrlTr4qRAZzo01MnEPR9LD nhZujJhCR4inkzboetTOI2OiE1+usY3B6te9cTN8rLIk48++IH06nvr4Um+0Kw4PaSPG BXr51qZNoiB/Ore7co4qBSzo4yo/Z/+D7IY6yvLV5ypADNKfmEfFkrAyJ4epm/JY/1Ye 3dgA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id e33si13191750pld.397.2019.02.26.12.52.05; Tue, 26 Feb 2019 12:52:20 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1729329AbfBZUvN (ORCPT + 99 others); Tue, 26 Feb 2019 15:51:13 -0500 Received: from mail.ispras.ru ([83.149.199.45]:45474 "EHLO mail.ispras.ru" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1729285AbfBZUvJ (ORCPT ); Tue, 26 Feb 2019 15:51:09 -0500 Received: from green.intra.ispras.ru (pluton2.ispras.ru [83.149.199.44]) by mail.ispras.ru (Postfix) with ESMTPSA id 44EAE5400E3; Tue, 26 Feb 2019 23:51:07 +0300 (MSK) From: Denis Efremov To: "Eric W. Biederman" Cc: Denis Efremov , Casey Schaufler , Eric Paris , Kees Cook , John Johansen , James Morris , "Serge E. Hallyn" , Paul Moore , Kentaro Takeda , linux-security-module@vger.kernel.org, linux-kernel@vger.kernel.org Subject: [PATCH v2 10/11] LSM: fix documentation for the shm_* hooks Date: Tue, 26 Feb 2019 23:49:11 +0300 Message-Id: X-Mailer: git-send-email 2.17.2 In-Reply-To: References: In-Reply-To: References: Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org The shm_* hooks were changed in the commit "shm/security: Pass kern_ipc_perm not shmid_kernel into the shm security hooks" (7191adff2a55). The type of the argument shp was changed from shmid_kernel to kern_ipc_perm. This patch updates the documentation for the hooks accordingly. Signed-off-by: Denis Efremov --- include/linux/lsm_hooks.h | 36 ++++++++++++++++++------------------ 1 file changed, 18 insertions(+), 18 deletions(-) diff --git a/include/linux/lsm_hooks.h b/include/linux/lsm_hooks.h index 06fefe39a397..f4a168c5e85c 100644 --- a/include/linux/lsm_hooks.h +++ b/include/linux/lsm_hooks.h @@ -1139,34 +1139,34 @@ * Security hooks for System V Shared Memory Segments * * @shm_alloc_security: - * Allocate and attach a security structure to the shp->shm_perm.security - * field. The security field is initialized to NULL when the structure is + * Allocate and attach a security structure to the @perm->security + * field. The security field is initialized to NULL when the structure is * first created. - * @shp contains the shared memory structure to be modified. + * @perm contains the IPC permissions of the shared memory structure. * Return 0 if operation was successful and permission is granted. * @shm_free_security: - * Deallocate the security struct for this memory segment. - * @shp contains the shared memory structure to be modified. + * Deallocate the security structure @perm->security for the memory segment. + * @perm contains the IPC permissions of the shared memory structure. * @shm_associate: * Check permission when a shared memory region is requested through the - * shmget system call. This hook is only called when returning the shared + * shmget system call. This hook is only called when returning the shared * memory region identifier for an existing region, not when a new shared * memory region is created. - * @shp contains the shared memory structure to be modified. + * @perm contains the IPC permissions of the shared memory structure. * @shmflg contains the operation control flags. * Return 0 if permission is granted. * @shm_shmctl: * Check permission when a shared memory control operation specified by - * @cmd is to be performed on the shared memory region @shp. - * The @shp may be NULL, e.g. for IPC_INFO or SHM_INFO. - * @shp contains shared memory structure to be modified. + * @cmd is to be performed on the shared memory region with permissions @perm. + * The @perm may be NULL, e.g. for IPC_INFO or SHM_INFO. + * @perm contains the IPC permissions of the shared memory structure. * @cmd contains the operation to be performed. * Return 0 if permission is granted. * @shm_shmat: * Check permissions prior to allowing the shmat system call to attach the - * shared memory segment @shp to the data segment of the calling process. - * The attaching address is specified by @shmaddr. - * @shp contains the shared memory structure to be modified. + * shared memory segment with permissions @perm to the data segment of the + * calling process. The attaching address is specified by @shmaddr. + * @perm contains the IPC permissions of the shared memory structure. * @shmaddr contains the address to attach memory region to. * @shmflg contains the operational flags. * Return 0 if permission is granted. @@ -1629,11 +1629,11 @@ union security_list_options { struct task_struct *target, long type, int mode); - int (*shm_alloc_security)(struct kern_ipc_perm *shp); - void (*shm_free_security)(struct kern_ipc_perm *shp); - int (*shm_associate)(struct kern_ipc_perm *shp, int shmflg); - int (*shm_shmctl)(struct kern_ipc_perm *shp, int cmd); - int (*shm_shmat)(struct kern_ipc_perm *shp, char __user *shmaddr, + int (*shm_alloc_security)(struct kern_ipc_perm *perm); + void (*shm_free_security)(struct kern_ipc_perm *perm); + int (*shm_associate)(struct kern_ipc_perm *perm, int shmflg); + int (*shm_shmctl)(struct kern_ipc_perm *perm, int cmd); + int (*shm_shmat)(struct kern_ipc_perm *perm, char __user *shmaddr, int shmflg); int (*sem_alloc_security)(struct kern_ipc_perm *perm); -- 2.17.2