Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S932640AbYB1XtW (ORCPT ); Thu, 28 Feb 2008 18:49:22 -0500 Received: (majordomo@vger.kernel.org) by vger.kernel.org id S1755594AbYB1XtH (ORCPT ); Thu, 28 Feb 2008 18:49:07 -0500 Received: from bombadil.infradead.org ([18.85.46.34]:53525 "EHLO bombadil.infradead.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751332AbYB1XtF (ORCPT ); Thu, 28 Feb 2008 18:49:05 -0500 Date: Thu, 28 Feb 2008 18:48:50 -0500 From: Christoph Hellwig To: Stephen Smalley Cc: casey@schaufler-ca.com, Dave Quigley , hch@infradead.org, viro@ftp.linux.org.uk, trond.myklebust@fys.uio.no, bfields@fieldses.org, linux-kernel@vger.kernel.org, linux-fsdevel@vger.kernel.org, LSM List Subject: Re: [PATCH 01/11] Security: Add hook to get full maclabel xattr name Message-ID: <20080228234850.GA25829@infradead.org> References: <746385.69480.qm@web36611.mail.mud.yahoo.com> <1204227035.31790.207.camel@moss-spartans.epoch.ncsc.mil> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <1204227035.31790.207.camel@moss-spartans.epoch.ncsc.mil> User-Agent: Mutt/1.5.17 (2007-11-01) X-SRS-Rewrite: SMTP reverse-path rewritten from by bombadil.infradead.org See http://www.infradead.org/rpr.html Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 1901 Lines: 34 On Thu, Feb 28, 2008 at 02:30:35PM -0500, Stephen Smalley wrote: > This is an interface to be used by NFS to get information from the > security module. The information desired is specific to the MAC > labeling functionality in NFSv4 that is being proposed. That > functionality is MAC specific (necessarily so, just like the ACL > functionality is ACL specific). We are hiding the SELinux-specific bits > behind the LSM interface, and non-MAC LSMs are free to return NULL in > order to indicate that they don't support MAC labeling. We do NOT want > the capability module to return its security blob here, or any other > non-MAC LSM - it will yield the wrong semantics for the NFS MAC support. I think Casey is totally right here. The LSM interface should not be as specific here. If you want to limit the NFSv4 interface to single MAC xattr label based systems add an additional method to check if the LSM is that. But the proper fix is of course to not add somthing so specific to NFSv4 at all, as it's got enough shortcoming already. Please add a proper xattr protocol. It's not like it's hard, SGI has been doing this in IRIX for NFSv3 for ages as a sideband protocol, and even release the reference source under the GPL. Just either use that with NFSv4 or if you feel fancy merge it into the NFS spec for NFSv6^H4.2. > In any event, I don't think we need your permission. Wow, that's rude even to someone as direct as me. Casey is the only other person having an in-tree LSM, and I think his input in this area is important. But if not I as a VFS person can happily give you my "no" for the current version from the VFS point of view. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/