~apparmor-dev/apparmor/2_3

« back to all changes in this revision

Viewing changes to kernel-patches/for-mainline/sysctl-pathname.diff

Committer: jrjohansen
Date: 2008-05-27 12:04:33 UTC
Revision ID: svn-v4:40609528-9d10-0410-9bd8-e926d5471da9:branches/2_3:1265

remove for-mainline dir from kernel patches

files removed:
kernel-patches/for-mainline

kernel-patches/for-mainline/__d_path-keep-connected.diff

kernel-patches/for-mainline/apparmor-audit-flags2.diff

kernel-patches/for-mainline/apparmor-audit.diff

kernel-patches/for-mainline/apparmor-bootdisable.diff

kernel-patches/for-mainline/apparmor-builtin-only.diff

kernel-patches/for-mainline/apparmor-create-append.diff

kernel-patches/for-mainline/apparmor-failed-name-error.diff

kernel-patches/for-mainline/apparmor-features.diff

kernel-patches/for-mainline/apparmor-fix-lock-letter.diff

kernel-patches/for-mainline/apparmor-fix-sysctl-refcount.diff

kernel-patches/for-mainline/apparmor-intree.diff

kernel-patches/for-mainline/apparmor-link-pairs.diff

kernel-patches/for-mainline/apparmor-lsm.diff

kernel-patches/for-mainline/apparmor-main-2.diff

kernel-patches/for-mainline/apparmor-main.diff

kernel-patches/for-mainline/apparmor-misc.diff

kernel-patches/for-mainline/apparmor-module_interface.diff

kernel-patches/for-mainline/apparmor-network.diff

kernel-patches/for-mainline/apparmor-rlimits.diff

kernel-patches/for-mainline/apparmor-secondary-accept.diff

kernel-patches/for-mainline/apparmor-security-goal.diff

kernel-patches/for-mainline/audit-log-type-in-syslog.diff

kernel-patches/for-mainline/audit-uid.diff

kernel-patches/for-mainline/cap-set.diff

kernel-patches/for-mainline/change-profile-kernel-v2.diff

kernel-patches/for-mainline/d_namespace_path.diff

kernel-patches/for-mainline/do_path_lookup-nameidata.diff

kernel-patches/for-mainline/ecryptfs-d_revalidate.diff

kernel-patches/for-mainline/expand-dfa.diff

kernel-patches/for-mainline/extend-x-mods.diff

kernel-patches/for-mainline/fgetattr.diff

kernel-patches/for-mainline/file-handle-ops.diff

kernel-patches/for-mainline/file_permission-nameidata.diff

kernel-patches/for-mainline/fix-change_profile-namespace.diff

kernel-patches/for-mainline/fix-d_path.diff

kernel-patches/for-mainline/fix-dfa.diff

kernel-patches/for-mainline/fix-fuse.diff

kernel-patches/for-mainline/fix-getcwd.diff

kernel-patches/for-mainline/fix-link-subset.diff

kernel-patches/for-mainline/fix-name-errorpath.diff

kernel-patches/for-mainline/fix-named-transitions.diff

kernel-patches/for-mainline/fix-net.diff

kernel-patches/for-mainline/fix-profile-namespaces.diff

kernel-patches/for-mainline/fix-rcu-deref.diff

kernel-patches/for-mainline/fix-user-audit.diff

kernel-patches/for-mainline/fix-vfs_rmdir.diff

kernel-patches/for-mainline/foobar.diff

kernel-patches/for-mainline/fsetattr-reintro-ATTR_FILE.diff

kernel-patches/for-mainline/fsetattr.diff

kernel-patches/for-mainline/hat_perm.diff

kernel-patches/for-mainline/may_create-args.diff

kernel-patches/for-mainline/may_delete-args.diff

kernel-patches/for-mainline/mount-consistent-__d_path.diff

kernel-patches/for-mainline/nfs-nameidata-check.diff

kernel-patches/for-mainline/nfsd_permission-nameidata.diff

kernel-patches/for-mainline/no-safex-link-subset.diff

kernel-patches/for-mainline/null_module

kernel-patches/for-mainline/null_module/Kbuild

kernel-patches/for-mainline/null_module/Makefile

kernel-patches/for-mainline/null_module/foobar-lsm.c

kernel-patches/for-mainline/owner-perm-set.diff

kernel-patches/for-mainline/parent-permission.diff

kernel-patches/for-mainline/proc-mounts-check-d_path-result.diff

kernel-patches/for-mainline/proc-mounts-cleanup.diff

kernel-patches/for-mainline/profile-namespaces.diff

kernel-patches/for-mainline/remove_suid.diff

kernel-patches/for-mainline/security-create.diff

kernel-patches/for-mainline/security-getxattr.diff

kernel-patches/for-mainline/security-link.diff

kernel-patches/for-mainline/security-listxattr.diff

kernel-patches/for-mainline/security-mkdir.diff

kernel-patches/for-mainline/security-mknod.diff

kernel-patches/for-mainline/security-readlink.diff

kernel-patches/for-mainline/security-removexattr.diff

kernel-patches/for-mainline/security-rename.diff

kernel-patches/for-mainline/security-rmdir.diff

kernel-patches/for-mainline/security-setattr.diff

kernel-patches/for-mainline/security-setxattr.diff

kernel-patches/for-mainline/security-symlink.diff

kernel-patches/for-mainline/security-unlink.diff

kernel-patches/for-mainline/security-xattr-file.diff

kernel-patches/for-mainline/security_chroot.diff

kernel-patches/for-mainline/series

kernel-patches/for-mainline/should_remove_suid.diff

kernel-patches/for-mainline/slash-null-dfa.diff

kernel-patches/for-mainline/split-up-nameidata.diff

kernel-patches/for-mainline/split_init.diff

kernel-patches/for-mainline/statvfs-2.diff

kernel-patches/for-mainline/statvfs.diff

kernel-patches/for-mainline/struct_path

kernel-patches/for-mainline/struct_path/series

kernel-patches/for-mainline/struct_path/struct_path-getattr-iop.diff

kernel-patches/for-mainline/struct_path/struct_path-nameidata.diff

kernel-patches/for-mainline/struct_path/struct_path-nfsfh.diff

kernel-patches/for-mainline/struct_path/struct_path-security-getattr.diff

kernel-patches/for-mainline/struct_path/struct_path-vfs_getattr.diff

kernel-patches/for-mainline/sys_fchdir-nameidata.diff

kernel-patches/for-mainline/sysctl-pathname.diff

kernel-patches/for-mainline/unambiguous-__d_path.diff

kernel-patches/for-mainline/vfs-getxattr.diff

kernel-patches/for-mainline/vfs-link.diff

kernel-patches/for-mainline/vfs-listxattr.diff

kernel-patches/for-mainline/vfs-mkdir.diff

kernel-patches/for-mainline/vfs-mknod.diff

kernel-patches/for-mainline/vfs-notify_change.diff

kernel-patches/for-mainline/vfs-removexattr.diff

kernel-patches/for-mainline/vfs-rename.diff

kernel-patches/for-mainline/vfs-rmdir.diff

kernel-patches/for-mainline/vfs-setxattr.diff

kernel-patches/for-mainline/vfs-symlink.diff

kernel-patches/for-mainline/vfs-unlink.diff

kernel-patches/for-mainline/vfs_create-args.diff

kernel-patches/for-mainline/vfs_create-nameidata.diff

kernel-patches/for-mainline/vfs_link-args.diff

kernel-patches/for-mainline/vfs_mkdir-args.diff

kernel-patches/for-mainline/vfs_mknod-args.diff

kernel-patches/for-mainline/vfs_rename-args.diff

kernel-patches/for-mainline/vfs_rmdir-args.diff

kernel-patches/for-mainline/vfs_symlink-args.diff

kernel-patches/for-mainline/vfs_unlink-args.diff

kernel-patches/for-mainline/xattr_permission.diff

Show diffs side-by-side

added added

removed removed

kernel-patches/for-mainline/sysctl-pathname.diff

From: Andreas Gruenbacher <agruen@suse.de>

Subject: Factor out sysctl pathname code

Convert the selinux sysctl pathname computation code into a standalone

function.

Signed-off-by: Andreas Gruenbacher <agruen@suse.de>

Signed-off-by: John Johansen <jjohansen@suse.de>

Reviewed-by: James Morris <jmorris@namei.org>

---

include/linux/sysctl.h | 2 ++

kernel/sysctl.c | 27 +++++++++++++++++++++++++++

security/selinux/hooks.c | 35 +++++------------------------------

3 files changed, 34 insertions(+), 30 deletions(-)

--- a/include/linux/sysctl.h

+++ b/include/linux/sysctl.h

@@ -983,6 +983,8 @@ extern int proc_doulongvec_minmax(struct

extern int proc_doulongvec_ms_jiffies_minmax(struct ctl_table *table, int,

struct file *, void __user *, size_t *, loff_t *);

+extern char *sysctl_pathname(ctl_table *, char *, int);

extern int do_sysctl (int __user *name, int nlen,

void __user *oldval, size_t __user *oldlenp,

void __user *newval, size_t newlen);

--- a/kernel/sysctl.c

+++ b/kernel/sysctl.c

@@ -1327,6 +1327,33 @@ struct ctl_table_header *sysctl_head_nex

return NULL;

}

+char *sysctl_pathname(ctl_table *table, char *buffer, int buflen)

+ if (buflen < 1)

+ return NULL;

+ buffer += --buflen;

+ *buffer = '\0';

+ while (table) {

+ int namelen = strlen(table->procname);

+ if (buflen < namelen + 1)

+ return NULL;

+ buflen -= namelen + 1;

+ buffer -= namelen;

+ memcpy(buffer, table->procname, namelen);

+ *--buffer = '/';

+ table = table->parent;

+ }

+ if (buflen < 4)

+ return NULL;

+ buffer -= 4;

+ memcpy(buffer, "/sys", 4);

+ return buffer;

+EXPORT_SYMBOL(sysctl_pathname);

#ifdef CONFIG_SYSCTL_SYSCALL

int do_sysctl(int __user *name, int nlen, void __user *oldval, size_t __user *oldlenp,

void __user *newval, size_t newlen)

--- a/security/selinux/hooks.c

+++ b/security/selinux/hooks.c

@@ -1431,40 +1431,15 @@ static int selinux_capable(struct task_s

static int selinux_sysctl_get_sid(ctl_table *table, u16 tclass, u32 *sid)

{

- int buflen, rc;

- char *buffer, *path, *end;

+ char *buffer, *path;

+ int rc = -ENOMEM;

- rc = -ENOMEM;

buffer = (char*)__get_free_page(GFP_KERNEL);

if (!buffer)

goto out;

- buflen = PAGE_SIZE;

- end = buffer+buflen;

- *--end = '\0';

- buflen--;

- path = end-1;

- *path = '/';

- while (table) {

- const char *name = table->procname;

- size_t namelen = strlen(name);

- buflen -= namelen + 1;

- if (buflen < 0)

- goto out_free;

- end -= namelen;

- memcpy(end, name, namelen);

- *--end = '/';

- path = end;

- table = table->parent;

- }

- buflen -= 4;

- if (buflen < 0)

100

- goto out_free;

101

- end -= 4;

102

- memcpy(end, "/sys", 4);

103

- path = end;

104

- rc = security_genfs_sid("proc", path, tclass, sid);

105

-out_free:

106

+ path = sysctl_pathname(table, buffer, PAGE_SIZE);

107

+ if (path)

108

+ rc = security_genfs_sid("proc", path, tclass, sid);

109

free_page((unsigned long)buffer);

110

out:

111

return rc;

Older »