mbox series

[v5.19.y,0/3] Backport the io_uring/LSM CMD passthrough controls

Message ID 166249766105.409408.12118839467847524983.stgit@olly (mailing list archive)
Headers show
Series Backport the io_uring/LSM CMD passthrough controls | expand

Message

Paul Moore Sept. 6, 2022, 9:03 p.m. UTC
The stable patch merging tools failed to automatically merge the
io_uring/LSM CMD passthrough controls into the stable v5.19.y branch,
so I'm doing the backport manually and submitting them directly to
stable for the next v5.19.y release.  The backport is necessary due
to the reorg/decomposition of the io_uring code in io_uring/ during
the v5.19->v6.0 merge window.  Other than the differences in the
filenames under io_uring, the code changes are pretty much the same.

I've done some basic sanity testing this afternoon with these
patches and everything looks good to me.

If you would prefer to pull these directly from a git tree instead
of email, they are available via the LSM tree on the stable-5.19
branch, using the lsm-pr-20220906 tag.

  git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/lsm.git
        lsm-pr-20220906

---

Paul Moore (3):
      lsm,io_uring: add LSM hooks for the new uring_cmd file op
      selinux: implement the security_uring_cmd() LSM hook
      Smack: Provide read control for io_uring_cmd


 include/linux/lsm_hook_defs.h       |  1 +
 include/linux/lsm_hooks.h           |  3 +++
 include/linux/security.h            |  5 +++++
 io_uring/io_uring.c                 |  4 ++++
 security/security.c                 |  4 ++++
 security/selinux/hooks.c            | 24 ++++++++++++++++++++++
 security/selinux/include/classmap.h |  2 +-
 security/smack/smack_lsm.c          | 32 +++++++++++++++++++++++++++++
 8 files changed, 74 insertions(+), 1 deletion(-)

Comments

Greg Kroah-Hartman Sept. 11, 2022, 11:36 a.m. UTC | #1
On Tue, Sep 06, 2022 at 05:03:36PM -0400, Paul Moore wrote:
> The stable patch merging tools failed to automatically merge the
> io_uring/LSM CMD passthrough controls into the stable v5.19.y branch,
> so I'm doing the backport manually and submitting them directly to
> stable for the next v5.19.y release.  The backport is necessary due
> to the reorg/decomposition of the io_uring code in io_uring/ during
> the v5.19->v6.0 merge window.  Other than the differences in the
> filenames under io_uring, the code changes are pretty much the same.
> 
> I've done some basic sanity testing this afternoon with these
> patches and everything looks good to me.
> 
> If you would prefer to pull these directly from a git tree instead
> of email, they are available via the LSM tree on the stable-5.19
> branch, using the lsm-pr-20220906 tag.
> 
>   git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/lsm.git
>         lsm-pr-20220906
> 

Now queued up, thanks.  Note, you dropped the original signed-off-by of
the original commits, which I had to add back by hand :(

greg k-h