projects / platform / kernel / linux-stable.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: eef470b) | patch
Smack: bidirectional UDS connect check
authorCasey Schaufler <casey@schaufler-ca.com>
Thu, 10 Apr 2014 23:37:08 +0000 (16:37 -0700)
committerStephane Desneux <stephane.desneux@open.eurogiciel.org>
Wed, 4 Feb 2015 10:23:22 +0000 (11:23 +0100)
commitd906cb03f391d903c785e17015fc0b3eca82e816
tree4a67eae5ae0b640650760459accea2f2f03f2a5ftree | snapshot
parenteef470b54962c9e90f4cb6443b859fdeb1f9267ccommit | diff
Smack: bidirectional UDS connect check

Smack IPC policy requires that the sender have write access
to the receiver. UDS streams don't do per-packet checks. The
only check is done at connect time. The existing code checks
if the connecting process can write to the other, but not the
other way around. This change adds a check that the other end
can write to the connecting process.

Targeted for git://git.gitorious.org/smack-next/kernel.git

Change-Id: I0dd9124261cb66a364322ed88e9dcb3213157cb6
Signed-off-by: Casey Schuafler <casey@schaufler-ca.com>
Signed-off-by: Rafal Krypa <r.krypa@samsung.com>
security/smack/smack.h diff | blob | history
security/smack/smack_lsm.c diff | blob | history
Domain: System / Kernel;