From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <linux-fsdevel-owner@vger.kernel.org>
Received: from mail-yb1-f195.google.com ([209.85.219.195]:35032 "EHLO
        mail-yb1-f195.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1726261AbeIMFBb (ORCPT
        <rfc822;linux-fsdevel@vger.kernel.org>);
        Thu, 13 Sep 2018 01:01:31 -0400
Received: by mail-yb1-f195.google.com with SMTP id o17-v6so2551495yba.2
        for <linux-fsdevel@vger.kernel.org>; Wed, 12 Sep 2018 16:54:40 -0700 (PDT)
Received: from mail-yb1-f181.google.com (mail-yb1-f181.google.com. [209.85.219.181])
        by smtp.gmail.com with ESMTPSA id w207-v6sm2918303yww.17.2018.09.12.16.54.38
        for <linux-fsdevel@vger.kernel.org>
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Wed, 12 Sep 2018 16:54:39 -0700 (PDT)
Received: by mail-yb1-f181.google.com with SMTP id e18-v6so2542357ybq.5
        for <linux-fsdevel@vger.kernel.org>; Wed, 12 Sep 2018 16:54:38 -0700 (PDT)
MIME-Version: 1.0
In-Reply-To: <65bccad6-5669-9f4a-a645-35e0da301817@schaufler-ca.com>
References: <cbf848ae-a1ac-c5ab-f23b-bc9217fceebe@schaufler-ca.com> <65bccad6-5669-9f4a-a645-35e0da301817@schaufler-ca.com>
From: Kees Cook <keescook@chromium.org>
Date: Wed, 12 Sep 2018 16:54:37 -0700
Message-ID: <CAGXu5jKVXdz+9qp+UCxRiVoXJrMbPxQcNDYy21e3E37pVF5ymg@mail.gmail.com>
Subject: Re: [PATCH 05/10] SELinux: Abstract use of file security blob
To: Casey Schaufler <casey@schaufler-ca.com>
Cc: LSM <linux-security-module@vger.kernel.org>,
        James Morris <jmorris@namei.org>,
        LKLM <linux-kernel@vger.kernel.org>,
        SE Linux <selinux@tycho.nsa.gov>,
        John Johansen <john.johansen@canonical.com>,
        Tetsuo Handa <penguin-kernel@i-love.sakura.ne.jp>,
        Paul Moore <paul@paul-moore.com>,
        Stephen Smalley <sds@tycho.nsa.gov>,
        "linux-fsdevel@vger.kernel.org" <linux-fsdevel@vger.kernel.org>,
        Alexey Dobriyan <adobriyan@gmail.com>,
        "Schaufler, Casey" <casey.schaufler@intel.com>
Content-Type: text/plain; charset="UTF-8"
Sender: linux-fsdevel-owner@vger.kernel.org
List-ID: <linux-fsdevel.vger.kernel.org>

On Tue, Sep 11, 2018 at 9:41 AM, Casey Schaufler <casey@schaufler-ca.com> wrote:
> Don't use the file->f_security pointer directly.
> Provide a helper function that provides the security blob pointer.
>
> Signed-off-by: Casey Schaufler <casey@schaufler-ca.com>

Seems delightfully mechanical.

Reviewed-by: Kees Cook <keescook@chromium.org>

-Kees

-- 
Kees Cook
Pixel Security