projects / profile / ivi / kernel-x86-ivi.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 965242f) | patch
Smack: bidirectional UDS connect check
authorCasey Schaufler <casey@schaufler-ca.com>
Thu, 10 Apr 2014 23:37:08 +0000 (16:37 -0700)
committerStephane Desneux <stephane.desneux@open.eurogiciel.org>
Thu, 18 Sep 2014 11:02:52 +0000 (13:02 +0200)
commitcb182c345b864d6a16f884efa118eb7d1d93427d
treea0bbf995f2262b7926aeff890c643d10c09caf64tree | snapshot
parent965242f323fcfa32182059100c0f43db07767bfacommit | diff
Smack: bidirectional UDS connect check

Smack IPC policy requires that the sender have write access
to the receiver. UDS streams don't do per-packet checks. The
only check is done at connect time. The existing code checks
if the connecting process can write to the other, but not the
other way around. This change adds a check that the other end
can write to the connecting process.

Targeted for git://git.gitorious.org/smack-next/kernel.git

Change-Id: I0dd9124261cb66a364322ed88e9dcb3213157cb6
Signed-off-by: Casey Schuafler <casey@schaufler-ca.com>
Signed-off-by: Rafal Krypa <r.krypa@samsung.com>
security/smack/smack.h diff | blob | history
security/smack/smack_lsm.c diff | blob | history
Domain: System / Uncategorized;