linux.git/include/linux/reiserfs_xattr.h, branch master Linux kernel source tree UAPI: (Scripted) Disintegrate include/linux 2012-10-13T09:46:48+00:00 David Howells dhowells@redhat.com 2012-10-13T09:46:48+00:00 607ca46e97a1b6594b29647d98a32d545c24bdff Signed-off-by: David Howells <dhowells@redhat.com> Acked-by: Arnd Bergmann <arnd@arndb.de> Acked-by: Thomas Gleixner <tglx@linutronix.de> Acked-by: Michael Kerrisk <mtk.manpages@gmail.com> Acked-by: Paul E. McKenney <paulmck@linux.vnet.ibm.com> Acked-by: Dave Jones <davej@redhat.com> 
Signed-off-by: David Howells <dhowells@redhat.com>
Acked-by: Arnd Bergmann <arnd@arndb.de>
Acked-by: Thomas Gleixner <tglx@linutronix.de>
Acked-by: Michael Kerrisk <mtk.manpages@gmail.com>
Acked-by: Paul E. McKenney <paulmck@linux.vnet.ibm.com>
Acked-by: Dave Jones <davej@redhat.com>
take private bits of reiserfs_xattr.h to fs/reiserfs/xattr.h 2012-03-21T01:29:42+00:00 Al Viro viro@zeniv.linux.org.uk 2012-03-17T04:59:06+00:00 c45ac8887e778c4fa2b572c51a94a681a0955d4d Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> 
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
fs: take the ACL checks to common code 2011-07-25T18:30:23+00:00 Christoph Hellwig hch@lst.de 2011-07-23T15:37:31+00:00 4e34e719e457f2e031297175410fc0bd4016a085 Replace the ->check_acl method with a ->get_acl method that simply reads an ACL from disk after having a cache miss. This means we can replace the ACL checking boilerplate code with a single implementation in namei.c. Signed-off-by: Christoph Hellwig <hch@lst.de> Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> 
Replace the ->check_acl method with a ->get_acl method that simply reads an
ACL from disk after having a cache miss.  This means we can replace the ACL
checking boilerplate code with a single implementation in namei.c.

Signed-off-by: Christoph Hellwig <hch@lst.de>
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
->permission() sanitizing: don't pass flags to ->permission() 2011-07-20T05:43:24+00:00 Al Viro viro@zeniv.linux.org.uk 2011-06-20T23:28:19+00:00 10556cb21a0d0b24d95f00ea6df16f599a3345b2 not used by the instances anymore. Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> 
not used by the instances anymore.

Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
->permission() sanitizing: don't pass flags to ->check_acl() 2011-07-20T05:43:21+00:00 Al Viro viro@zeniv.linux.org.uk 2011-06-20T23:12:17+00:00 7e40145eb111a5192e6d819f764db9d6828d1abb not used in the instances anymore. Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> 
not used in the instances anymore.

Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
kill check_acl callback of generic_permission() 2011-07-20T05:43:16+00:00 Al Viro viro@zeniv.linux.org.uk 2011-06-20T15:31:30+00:00 178ea73521d64ba41d7aa5488fb9f549c6d4507d its value depends only on inode and does not change; we might as well store it in ->i_op->check_acl and be done with that. Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> 
its value depends only on inode and does not change; we might as
well store it in ->i_op->check_acl and be done with that.

Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
fs/vfs/security: pass last path component to LSM on inode creation 2011-02-01T16:12:29+00:00 Eric Paris eparis@redhat.com 2011-02-01T16:05:39+00:00 2a7dba391e5628ad665ce84ef9a6648da541ebab SELinux would like to implement a new labeling behavior of newly created inodes. We currently label new inodes based on the parent and the creating process. This new behavior would also take into account the name of the new object when deciding the new label. This is not the (supposed) full path, just the last component of the path. This is very useful because creating /etc/shadow is different than creating /etc/passwd but the kernel hooks are unable to differentiate these operations. We currently require that userspace realize it is doing some difficult operation like that and than userspace jumps through SELinux hoops to get things set up correctly. This patch does not implement new behavior, that is obviously contained in a seperate SELinux patch, but it does pass the needed name down to the correct LSM hook. If no such name exists it is fine to pass NULL. Signed-off-by: Eric Paris <eparis@redhat.com> 
SELinux would like to implement a new labeling behavior of newly created
inodes.  We currently label new inodes based on the parent and the creating
process.  This new behavior would also take into account the name of the
new object when deciding the new label.  This is not the (supposed) full path,
just the last component of the path.

This is very useful because creating /etc/shadow is different than creating
/etc/passwd but the kernel hooks are unable to differentiate these
operations.  We currently require that userspace realize it is doing some
difficult operation like that and than userspace jumps through SELinux hoops
to get things set up correctly.  This patch does not implement new
behavior, that is obviously contained in a seperate SELinux patch, but it
does pass the needed name down to the correct LSM hook.  If no such name
exists it is fine to pass NULL.

Signed-off-by: Eric Paris <eparis@redhat.com>
fs: provide rcu-walk aware permission i_ops 2011-01-07T06:50:29+00:00 Nick Piggin npiggin@kernel.dk 2011-01-07T06:49:58+00:00 b74c79e99389cd79b31fcc08f82c24e492e63c7e Signed-off-by: Nick Piggin <npiggin@kernel.dk> 
Signed-off-by: Nick Piggin <npiggin@kernel.dk>
reiserfs: constify xattr_handler 2010-05-21T22:31:19+00:00 Stephen Hemminger shemminger@vyatta.com 2010-05-14T00:53:19+00:00 94d09a98cdb163be12fb5c76841fa295f0bee22a Signed-off-by: Stephen Hemminger <shemminger@vyatta.com> Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> 
Signed-off-by: Stephen Hemminger <shemminger@vyatta.com>
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
reiserfs: fix oops while creating privroot with selinux enabled 2010-03-24T23:31:21+00:00 Jeff Mahoney jeffm@suse.com 2010-03-23T20:35:38+00:00 6cb4aff0a77cc0e6bae9475d62205319e3ebbf3f Commit 57fe60df ("reiserfs: add atomic addition of selinux attributes during inode creation") contains a bug that will cause it to oops when mounting a file system that didn't previously contain extended attributes on a system using security.* xattrs. The issue is that while creating the privroot during mount reiserfs_security_init calls reiserfs_xattr_jcreate_nblocks which dereferences the xattr root. The xattr root doesn't exist, so we get an oops. Addresses http://bugzilla.kernel.org/show_bug.cgi?id=15309 Signed-off-by: Jeff Mahoney <jeffm@suse.com> Signed-off-by: Andrew Morton <akpm@linux-foundation.org> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org> 
Commit 57fe60df ("reiserfs: add atomic addition of selinux attributes
during inode creation") contains a bug that will cause it to oops when
mounting a file system that didn't previously contain extended attributes
on a system using security.* xattrs.

The issue is that while creating the privroot during mount
reiserfs_security_init calls reiserfs_xattr_jcreate_nblocks which
dereferences the xattr root.  The xattr root doesn't exist, so we get an
oops.

Addresses http://bugzilla.kernel.org/show_bug.cgi?id=15309

Signed-off-by: Jeff Mahoney <jeffm@suse.com>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>