projects / cascardo / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f59bdfb) | patch
Smack: bidirectional UDS connect check
authorCasey Schaufler <casey@schaufler-ca.com>
Thu, 10 Apr 2014 23:37:08 +0000 (16:37 -0700)
committerCasey Schaufler <casey@schaufler-ca.com>
Fri, 11 Apr 2014 21:35:28 +0000 (14:35 -0700)
commit54e70ec5eb090193b03e69d551fa6771a5a217c4
treef015da7353f4824800a5fc6a89442f37628f62d1tree | snapshot
parentf59bdfba3e2b0ba5182f23d96101d106f18132cacommit | diff
Smack: bidirectional UDS connect check

Smack IPC policy requires that the sender have write access
to the receiver. UDS streams don't do per-packet checks. The
only check is done at connect time. The existing code checks
if the connecting process can write to the other, but not the
other way around. This change adds a check that the other end
can write to the connecting process.

Targeted for git://git.gitorious.org/smack-next/kernel.git

Signed-off-by: Casey Schuafler <casey@schaufler-ca.com>
security/smack/smack.h diff | blob | history
security/smack/smack_lsm.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.