* [PATCH] (2.6.24-rc3-mm2) -mm Smack mutex cleanup
@ 2007-12-03 18:39 Casey Schaufler
2007-12-03 23:20 ` Jiri Slaby
0 siblings, 1 reply; 3+ messages in thread
From: Casey Schaufler @ 2007-12-03 18:39 UTC (permalink / raw)
To: akpm, torvalds; +Cc: linux-kernel, linux-security-module
From: Casey Schaufler <casey@schaufler-ca.com>
Clean out unnecessary mutex initializations for Smack list locks.
Once this is done, there is no need for them to be shared among
multiple files, so pull them out of the header file and put them
in the files where they belong.
Pull unnecessary locking from smack_inode_setsecurity, it used
to be required when the assignment was not guaranteed to be a
scalar value but isn't now.
Change uses of __capable(current,...) to capable(...).
Take out an inappropriate cast. Use container_of() instead
of doing the same calculation by hand.
Fix comment spelling errors.
Signed-off-by: Casey Schaufler <casey@schaufler-ca.com>
---
Tested with stamp-2007-11-30-16-39
security/smack/smack.h | 3 --
security/smack/smack_access.c | 3 ++
security/smack/smack_lsm.c | 34 +++++++++-----------------------
security/smack/smackfs.c | 6 +++++
4 files changed, 19 insertions(+), 27 deletions(-)
diff -uprN -X linux-2.6.24-rc3-mm2-base/Documentation/dontdiff linux-2.6.24-rc3-mm2-base/security/smack/smack_access.c linux-2.6.24-rc3-mm2-smack/security/smack/smack_access.c
--- linux-2.6.24-rc3-mm2-base/security/smack/smack_access.c 2007-11-27 16:47:05.000000000 -0800
+++ linux-2.6.24-rc3-mm2-smack/security/smack/smack_access.c 2007-11-28 11:46:01.000000000 -0800
@@ -58,6 +58,7 @@ struct smack_known smack_known_invalid =
};
struct smack_known *smack_known = &smack_known_invalid;
+
/*
* The initial value needs to be bigger than any of the
* known values above.
@@ -173,6 +174,8 @@ int smk_curacc(char *obj_label, u32 mode
return rc;
}
+DEFINE_MUTEX(smack_known_lock);
+
/**
* smk_import_entry - import a label, return the list entry
* @string: a text string that might be a Smack label
diff -uprN -X linux-2.6.24-rc3-mm2-base/Documentation/dontdiff linux-2.6.24-rc3-mm2-base/security/smack/smackfs.c linux-2.6.24-rc3-mm2-smack/security/smack/smackfs.c
--- linux-2.6.24-rc3-mm2-base/security/smack/smackfs.c 2007-11-27 16:47:05.000000000 -0800
+++ linux-2.6.24-rc3-mm2-smack/security/smack/smackfs.c 2007-11-28 11:44:34.000000000 -0800
@@ -41,6 +41,12 @@ enum smk_inos {
};
/*
+ * List locks
+ */
+DEFINE_MUTEX(smack_list_lock);
+DEFINE_MUTEX(smack_cipso_lock);
+
+/*
* This is the "ambient" label for network traffic.
* If it isn't somehow marked, use this.
* It can be reset via smackfs/ambient
diff -uprN -X linux-2.6.24-rc3-mm2-base/Documentation/dontdiff linux-2.6.24-rc3-mm2-base/security/smack/smack.h linux-2.6.24-rc3-mm2-smack/security/smack/smack.h
--- linux-2.6.24-rc3-mm2-base/security/smack/smack.h 2007-11-27 16:47:05.000000000 -0800
+++ linux-2.6.24-rc3-mm2-smack/security/smack/smack.h 2007-11-28 11:47:07.000000000 -0800
@@ -186,7 +186,6 @@ extern int smack_net_nltype;
extern char *smack_net_ambient;
extern struct smack_known *smack_known;
-extern struct mutex smack_known_lock;
extern struct smack_known smack_known_floor;
extern struct smack_known smack_known_hat;
extern struct smack_known smack_known_huh;
@@ -195,8 +194,6 @@ extern struct smack_known smack_known_st
extern struct smack_known smack_known_unset;
extern struct smk_list_entry *smack_list;
-extern struct mutex smack_list_lock;
-extern struct mutex smack_cipso_lock;
/*
* Stricly for CIPSO level manipulation.
diff -uprN -X linux-2.6.24-rc3-mm2-base/Documentation/dontdiff linux-2.6.24-rc3-mm2-base/security/smack/smack_lsm.c linux-2.6.24-rc3-mm2-smack/security/smack/smack_lsm.c
--- linux-2.6.24-rc3-mm2-base/security/smack/smack_lsm.c 2007-11-27 16:47:05.000000000 -0800
+++ linux-2.6.24-rc3-mm2-smack/security/smack/smack_lsm.c 2007-11-28 11:46:13.000000000 -0800
@@ -126,7 +126,7 @@ static int smack_syslog(int type)
if (rc != 0)
return rc;
- if (__capable(current, CAP_MAC_OVERRIDE))
+ if (capable(CAP_MAC_OVERRIDE))
return 0;
if (sp != smack_known_floor.smk_known)
@@ -584,8 +584,7 @@ static int smack_inode_getattr(struct vf
static int smack_inode_setxattr(struct dentry *dentry, char *name,
void *value, size_t size, int flags)
{
- if (strcmp(name, XATTR_NAME_SMACK) == 0 &&
- !__capable(current, CAP_MAC_ADMIN))
+ if (strcmp(name, XATTR_NAME_SMACK) == 0 && !capable(CAP_MAC_ADMIN))
return -EPERM;
return smk_curacc(smk_of_inode(dentry->d_inode), MAY_WRITE);
@@ -655,8 +654,7 @@ static int smack_inode_getxattr(struct d
*/
static int smack_inode_removexattr(struct dentry *dentry, char *name)
{
- if (strcmp(name, XATTR_NAME_SMACK) == 0 &&
- !__capable(current, CAP_MAC_ADMIN))
+ if (strcmp(name, XATTR_NAME_SMACK) == 0 && !capable(CAP_MAC_ADMIN))
return -EPERM;
return smk_curacc(smk_of_inode(dentry->d_inode), MAY_WRITE);
@@ -736,7 +734,7 @@ static int smack_inode_setsecurity(struc
const void *value, size_t size, int flags)
{
char *sp;
- struct inode_smack *nsp = (struct inode_smack *)inode->i_security;
+ struct inode_smack *nsp = inode->i_security;
struct socket_smack *ssp;
struct socket *sock;
@@ -748,9 +746,7 @@ static int smack_inode_setsecurity(struc
return -EINVAL;
if (strcmp(name, XATTR_SMACK_SUFFIX) == 0) {
- mutex_lock(&nsp->smk_lock);
nsp->smk_inode = sp;
- mutex_unlock(&nsp->smk_lock);
return 0;
}
/*
@@ -950,7 +946,7 @@ static int smack_file_send_sigiotask(str
/*
* struct fown_struct is never outside the context of a struct file
*/
- file = (struct file *)((long)fown - offsetof(struct file, f_owner));
+ file = container_of(fown, struct file, f_owner);
rc = smk_access(file->f_security, tsk->security, MAY_WRITE);
if (rc != 0 && __capable(tsk, CAP_MAC_OVERRIDE))
return 0;
@@ -987,7 +983,7 @@ static int smack_file_receive(struct fil
* @tsk: the task in need of a blob
*
* Smack isn't using copies of blobs. Everyone
- * points to an immutible list. No alloc required.
+ * points to an immutable list. No alloc required.
* No data copy required.
*
* Always returns 0
@@ -1004,7 +1000,7 @@ static int smack_task_alloc_security(str
* @task: the task with the blob
*
* Smack isn't using copies of blobs. Everyone
- * points to an immutible list. The blobs never go away.
+ * points to an immutable list. The blobs never go away.
* There is no leak here.
*/
static void smack_task_free_security(struct task_struct *task)
@@ -1192,8 +1188,7 @@ static int smack_task_wait(struct task_s
* state into account in the decision as well as
* the smack value.
*/
- if (__capable(current, CAP_MAC_OVERRIDE) ||
- __capable(p, CAP_MAC_OVERRIDE))
+ if (capable(CAP_MAC_OVERRIDE) || __capable(p, CAP_MAC_OVERRIDE))
return 0;
return rc;
@@ -1226,12 +1221,12 @@ static void smack_task_to_inode(struct t
*
* Returns 0 on success, -ENOMEM is there's no memory
*/
-static int smack_sk_alloc_security(struct sock *sk, int family, gfp_t priority)
+static int smack_sk_alloc_security(struct sock *sk, int family, gfp_t gfp_flags)
{
char *csp = current->security;
struct socket_smack *ssp;
- ssp = kzalloc(sizeof(struct socket_smack), priority);
+ ssp = kzalloc(sizeof(struct socket_smack), gfp_flags);
if (ssp == NULL)
return -ENOMEM;
@@ -1252,7 +1247,6 @@ static int smack_sk_alloc_security(struc
static void smack_sk_free_security(struct sock *sk)
{
kfree(sk->sk_security);
- sk->sk_security = NULL;
}
/**
@@ -2481,10 +2475,6 @@ static struct security_operations smack_
.release_secctx = smack_release_secctx,
};
-DEFINE_MUTEX(smack_list_lock);
-DEFINE_MUTEX(smack_known_lock);
-DEFINE_MUTEX(smack_cipso_lock);
-
/**
* smack_init - initialize the smack system
*
@@ -2509,10 +2499,6 @@ static __init int smack_init(void)
spin_lock_init(&smack_known_floor.smk_cipsolock);
spin_lock_init(&smack_known_invalid.smk_cipsolock);
- mutex_init(&smack_known_lock);
- mutex_init(&smack_list_lock);
- mutex_init(&smack_cipso_lock);
-
/*
* Register with LSM
*/
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [PATCH] (2.6.24-rc3-mm2) -mm Smack mutex cleanup
2007-12-03 18:39 [PATCH] (2.6.24-rc3-mm2) -mm Smack mutex cleanup Casey Schaufler
@ 2007-12-03 23:20 ` Jiri Slaby
2007-12-04 5:04 ` Casey Schaufler
0 siblings, 1 reply; 3+ messages in thread
From: Jiri Slaby @ 2007-12-03 23:20 UTC (permalink / raw)
To: casey; +Cc: akpm, torvalds, linux-kernel, linux-security-module
On 12/03/2007 07:39 PM, Casey Schaufler wrote:
> From: Casey Schaufler <casey@schaufler-ca.com>
>
> Clean out unnecessary mutex initializations for Smack list locks.
> Once this is done, there is no need for them to be shared among
> multiple files, so pull them out of the header file and put them
> in the files where they belong.
Then it might be static.
> Pull unnecessary locking from smack_inode_setsecurity, it used
> to be required when the assignment was not guaranteed to be a
> scalar value but isn't now.
>
> Change uses of __capable(current,...) to capable(...).
> Take out an inappropriate cast. Use container_of() instead
> of doing the same calculation by hand.
> Fix comment spelling errors.
Too many different changes according to the name of the patch.
> Signed-off-by: Casey Schaufler <casey@schaufler-ca.com>
>
> ---
>
> Tested with stamp-2007-11-30-16-39
>
> security/smack/smack.h | 3 --
> security/smack/smack_access.c | 3 ++
> security/smack/smack_lsm.c | 34 +++++++++-----------------------
> security/smack/smackfs.c | 6 +++++
> 4 files changed, 19 insertions(+), 27 deletions(-)
>
> diff -uprN -X linux-2.6.24-rc3-mm2-base/Documentation/dontdiff linux-2.6.24-rc3-mm2-base/security/smack/smack_lsm.c linux-2.6.24-rc3-mm2-smack/security/smack/smack_lsm.c
> --- linux-2.6.24-rc3-mm2-base/security/smack/smack_lsm.c 2007-11-27 16:47:05.000000000 -0800
> +++ linux-2.6.24-rc3-mm2-smack/security/smack/smack_lsm.c 2007-11-28 11:46:13.000000000 -0800
[...]
> @@ -748,9 +746,7 @@ static int smack_inode_setsecurity(struc
> return -EINVAL;
>
> if (strcmp(name, XATTR_SMACK_SUFFIX) == 0) {
> - mutex_lock(&nsp->smk_lock);
> nsp->smk_inode = sp;
> - mutex_unlock(&nsp->smk_lock);
> return 0;
> }
> /*
Ok, it still might be atomic as a variable change, but it will break scenarios
such as
mutex_lock(&nsp->smk_lock);
create(nsp->smk_inode);
cook_a_dinner();
get_info(nsp->smk_inode);
mutex_unlock(&nsp->smk_lock);
While cook_a_dinner(), smack_inode_setsecurity() is called and the attribute
changed...
Doesn't this matter?
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [PATCH] (2.6.24-rc3-mm2) -mm Smack mutex cleanup
2007-12-03 23:20 ` Jiri Slaby
@ 2007-12-04 5:04 ` Casey Schaufler
0 siblings, 0 replies; 3+ messages in thread
From: Casey Schaufler @ 2007-12-04 5:04 UTC (permalink / raw)
To: Jiri Slaby, casey; +Cc: akpm, torvalds, linux-kernel, linux-security-module
--- Jiri Slaby <jirislaby@gmail.com> wrote:
> On 12/03/2007 07:39 PM, Casey Schaufler wrote:
> > From: Casey Schaufler <casey@schaufler-ca.com>
> >
> > Clean out unnecessary mutex initializations for Smack list locks.
> > Once this is done, there is no need for them to be shared among
> > multiple files, so pull them out of the header file and put them
> > in the files where they belong.
>
> Then it might be static.
Doh. Right you are.
> > Pull unnecessary locking from smack_inode_setsecurity, it used
> > to be required when the assignment was not guaranteed to be a
> > scalar value but isn't now.
> >
> > Change uses of __capable(current,...) to capable(...).
> > Take out an inappropriate cast. Use container_of() instead
> > of doing the same calculation by hand.
> > Fix comment spelling errors.
>
> Too many different changes according to the name of the patch.
OK, that's fair.
> > Signed-off-by: Casey Schaufler <casey@schaufler-ca.com>
> >
> > ---
> >
> > Tested with stamp-2007-11-30-16-39
> >
> > security/smack/smack.h | 3 --
> > security/smack/smack_access.c | 3 ++
> > security/smack/smack_lsm.c | 34 +++++++++-----------------------
> > security/smack/smackfs.c | 6 +++++
> > 4 files changed, 19 insertions(+), 27 deletions(-)
> >
> > diff -uprN -X linux-2.6.24-rc3-mm2-base/Documentation/dontdiff
> linux-2.6.24-rc3-mm2-base/security/smack/smack_lsm.c
> linux-2.6.24-rc3-mm2-smack/security/smack/smack_lsm.c
> > --- linux-2.6.24-rc3-mm2-base/security/smack/smack_lsm.c 2007-11-27
> 16:47:05.000000000 -0800
> > +++ linux-2.6.24-rc3-mm2-smack/security/smack/smack_lsm.c 2007-11-28
> 11:46:13.000000000 -0800
> [...]
> > @@ -748,9 +746,7 @@ static int smack_inode_setsecurity(struc
> > return -EINVAL;
> >
> > if (strcmp(name, XATTR_SMACK_SUFFIX) == 0) {
> > - mutex_lock(&nsp->smk_lock);
> > nsp->smk_inode = sp;
> > - mutex_unlock(&nsp->smk_lock);
> > return 0;
> > }
> > /*
>
> Ok, it still might be atomic as a variable change, but it will break
> scenarios
> such as
>
> mutex_lock(&nsp->smk_lock);
> create(nsp->smk_inode);
> cook_a_dinner();
> get_info(nsp->smk_inode);
> mutex_unlock(&nsp->smk_lock);
>
> While cook_a_dinner(), smack_inode_setsecurity() is called and the attribute
> changed...
>
> Doesn't this matter?
The only place dinner can get cooked is during d_instantiate, and
you can't call inode_security until after that's finished. No,
it doesn't matter.
Casey Schaufler
casey@schaufler-ca.com
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2007-12-04 5:04 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2007-12-03 18:39 [PATCH] (2.6.24-rc3-mm2) -mm Smack mutex cleanup Casey Schaufler
2007-12-03 23:20 ` Jiri Slaby
2007-12-04 5:04 ` Casey Schaufler
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).