* [GIT PULL] Keyrings (& NFS) fixes
@ 2014-11-21 21:53 David Howells
0 siblings, 0 replies; 4+ messages in thread
From: David Howells @ 2014-11-21 21:53 UTC (permalink / raw)
To: jmorris
Cc: dhowells, linux-nfs, linux-security-module, keyrings, linux-kernel
Hi James,
Can you pass these patches on to Linus please?
The first one fixes the handling of maximum buffer size for key descriptions,
fixing the size at 4095 + NUL char rather than whatever PAGE_SIZE happens to
be and permits you to read back the full description without it getting
clipped because some extra information got prepended.
The second and third fix a bug in NFS idmapper handling whereby a key
representing a mapping between an id and a name expires and causing
EKEYEXPIRED to be seen internally in NFS (which prevents the mapping from
happening) rather than re-looking up the mapping.
Thanks,
David
---
The following changes since commit a6aacbde406eeb6f8fc218b2c6172825f5e73fcf:
Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity into next (2014-11-19 21:36:07 +1100)
are available in the git repository at:
git://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs.git tags/keys-fixes-20141121
for you to fetch changes up to 15761d91a57e3ff8032e31c5d82bf7836f6a1b20:
KEYS: request_key() should reget expired keys rather than give EKEYEXPIRED (2014-11-20 13:38:17 +0000)
----------------------------------------------------------------
(from the branch description for keys-fixes local branch)
Keyrings fixes
Keyrings fixes
----------------------------------------------------------------
David Howells (3):
KEYS: Fix the size of the key description passed to/from userspace
KEYS: Simplify KEYRING_SEARCH_{NO,DO}_STATE_CHECK flags
KEYS: request_key() should reget expired keys rather than give EKEYEXPIRED
security/keys/internal.h | 1 +
security/keys/keyctl.c | 56 +++++++++++++++++++---------------------
security/keys/keyring.c | 10 ++++---
security/keys/request_key.c | 2 ++
security/keys/request_key_auth.c | 1 +
5 files changed, 36 insertions(+), 34 deletions(-)
^ permalink raw reply [flat|nested] 4+ messages in thread
* [GIT PULL] Keyrings (& NFS) fixes
@ 2014-12-01 23:16 David Howells
0 siblings, 0 replies; 4+ messages in thread
From: David Howells @ 2014-12-01 23:16 UTC (permalink / raw)
To: jmorris
Cc: dhowells, linux-nfs, linux-security-module, keyrings, linux-kernel
Hi James,
Can you pass these patches on to Linus please?
The first one fixes the handling of maximum buffer size for key descriptions,
fixing the size at 4095 + NUL char rather than whatever PAGE_SIZE happens to
be and permits you to read back the full description without it getting
clipped because some extra information got prepended.
The second and third fix a bug in NFS idmapper handling whereby a key
representing a mapping between an id and a name expires and causing
EKEYEXPIRED to be seen internally in NFS (which prevents the mapping from
happening) rather than re-looking up the mapping.
Thanks,
David
---
The following changes since commit 009d0431c3914de64666bec0d350e54fdd59df6a:
Linux 3.18-rc7 (2014-11-30 16:42:27 -0800)
are available in the git repository at:
git://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs.git tags/keys-fixes-20141201
for you to fetch changes up to 0b0a84154eff56913e91df29de5c3a03a0029e38:
KEYS: request_key() should reget expired keys rather than give EKEYEXPIRED (2014-12-01 22:52:53 +0000)
----------------------------------------------------------------
(from the branch description for keys-fixes local branch)
Keyrings fixes
Keyrings fixes
----------------------------------------------------------------
David Howells (3):
KEYS: Fix the size of the key description passed to/from userspace
KEYS: Simplify KEYRING_SEARCH_{NO,DO}_STATE_CHECK flags
KEYS: request_key() should reget expired keys rather than give EKEYEXPIRED
security/keys/internal.h | 1 +
security/keys/keyctl.c | 56 +++++++++++++++++++---------------------
security/keys/keyring.c | 10 ++++---
security/keys/request_key.c | 2 ++
security/keys/request_key_auth.c | 1 +
5 files changed, 36 insertions(+), 34 deletions(-)
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [GIT PULL] Keyrings (& NFS) fixes
2014-12-01 10:17 David Howells
@ 2014-12-01 22:49 ` James Morris
0 siblings, 0 replies; 4+ messages in thread
From: James Morris @ 2014-12-01 22:49 UTC (permalink / raw)
To: David Howells; +Cc: linux-nfs, linux-security-module, keyrings, linux-kernel
On Mon, 1 Dec 2014, David Howells wrote:
> Hi James,
>
> Can you pass these patches on to Linus please?
>
> The first one fixes the handling of maximum buffer size for key descriptions,
> fixing the size at 4095 + NUL char rather than whatever PAGE_SIZE happens to
> be and permits you to read back the full description without it getting
> clipped because some extra information got prepended.
>
> The second and third fix a bug in NFS idmapper handling whereby a key
> representing a mapping between an id and a name expires and causing
> EKEYEXPIRED to be seen internally in NFS (which prevents the mapping from
> happening) rather than re-looking up the mapping.
>
> Thanks,
> David
> ---
> The following changes since commit a6aacbde406eeb6f8fc218b2c6172825f5e73fcf:
>
> Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity into next (2014-11-19 21:36:07 +1100)
>
> are available in the git repository at:
>
>
> git://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs.git tags/keys-fixes-20141121
>
Because these patches are going to current Linus, you need to apply these
patches to a tree based on his tree, and send a pull req to me for that.
--
James Morris
<jmorris@namei.org>
^ permalink raw reply [flat|nested] 4+ messages in thread
* [GIT PULL] Keyrings (& NFS) fixes
@ 2014-12-01 10:17 David Howells
2014-12-01 22:49 ` James Morris
0 siblings, 1 reply; 4+ messages in thread
From: David Howells @ 2014-12-01 10:17 UTC (permalink / raw)
To: jmorris
Cc: dhowells, linux-nfs, linux-security-module, keyrings, linux-kernel
Hi James,
Can you pass these patches on to Linus please?
The first one fixes the handling of maximum buffer size for key descriptions,
fixing the size at 4095 + NUL char rather than whatever PAGE_SIZE happens to
be and permits you to read back the full description without it getting
clipped because some extra information got prepended.
The second and third fix a bug in NFS idmapper handling whereby a key
representing a mapping between an id and a name expires and causing
EKEYEXPIRED to be seen internally in NFS (which prevents the mapping from
happening) rather than re-looking up the mapping.
Thanks,
David
---
The following changes since commit a6aacbde406eeb6f8fc218b2c6172825f5e73fcf:
Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity into next (2014-11-19 21:36:07 +1100)
are available in the git repository at:
git://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs.git tags/keys-fixes-20141121
for you to fetch changes up to 15761d91a57e3ff8032e31c5d82bf7836f6a1b20:
KEYS: request_key() should reget expired keys rather than give EKEYEXPIRED (2014-11-20 13:38:17 +0000)
----------------------------------------------------------------
(from the branch description for keys-fixes local branch)
Keyrings fixes
Keyrings fixes
----------------------------------------------------------------
David Howells (3):
KEYS: Fix the size of the key description passed to/from userspace
KEYS: Simplify KEYRING_SEARCH_{NO,DO}_STATE_CHECK flags
KEYS: request_key() should reget expired keys rather than give EKEYEXPIRED
security/keys/internal.h | 1 +
security/keys/keyctl.c | 56 +++++++++++++++++++---------------------
security/keys/keyring.c | 10 ++++---
security/keys/request_key.c | 2 ++
security/keys/request_key_auth.c | 1 +
5 files changed, 36 insertions(+), 34 deletions(-)
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2014-12-01 23:16 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2014-11-21 21:53 [GIT PULL] Keyrings (& NFS) fixes David Howells
2014-12-01 10:17 David Howells
2014-12-01 22:49 ` James Morris
2014-12-01 23:16 David Howells
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).