projects / platform / adaptation / renesas_rcar / renesas_kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 774d0fc) | patch
Smack: bidirectional UDS connect check
authorCasey Schaufler <casey@schaufler-ca.com>
Thu, 10 Apr 2014 23:37:08 +0000 (16:37 -0700)
committerDamian Hobson-Garcia <dhobsong@igel.co.jp>
Thu, 11 Dec 2014 07:53:28 +0000 (16:53 +0900)
commit613ebfd38d1567f04f1eac179dc2feab93f41f82
treeda3ca7d1883989d0feb50427a1b18d2f6e586850tree | snapshot
parent774d0fc013a844dfc858b34fe328f32c4f0d81f3commit | diff
Smack: bidirectional UDS connect check

Smack IPC policy requires that the sender have write access
to the receiver. UDS streams don't do per-packet checks. The
only check is done at connect time. The existing code checks
if the connecting process can write to the other, but not the
other way around. This change adds a check that the other end
can write to the connecting process.

Targeted for git://git.gitorious.org/smack-next/kernel.git

Change-Id: I0dd9124261cb66a364322ed88e9dcb3213157cb6
Signed-off-by: Casey Schuafler <casey@schaufler-ca.com>
Signed-off-by: Rafal Krypa <r.krypa@samsung.com>
(cherry picked from commit cb182c345b864d6a16f884efa118eb7d1d93427d)

Signed-off-by: Damian Hobson-Garcia <dhobsong@igel.co.jp>
security/smack/smack.h diff | blob | history
security/smack/smack_lsm.c diff | blob | history
Domain: System / Uncategorized;