06 Nov, 2019

1 commit

• 3484eba91   FROMLIST: Add flags option to get xattr method paired to __vfs_getxattr ... Browse Code »

  Add a flag option to get xattr method that could have a bit flag of
  XATTR_NOSECURITY passed to it. XATTR_NOSECURITY is generally then
  set in the __vfs_getxattr path when called by security
  infrastructure.

  This handles the case of a union filesystem driver that is being
  requested by the security layer to report back the xattr data.

  For the use case where access is to be blocked by the security layer.

  The path then could be security(dentry) ->
  __vfs_getxattr(dentry...XATTR_NOSECURITY) ->
  handler->get(dentry...XATTR_NOSECURITY) ->
  __vfs_getxattr(lower_dentry...XATTR_NOSECURITY) ->
  lower_handler->get(lower_dentry...XATTR_NOSECURITY)
  which would report back through the chain data and success as
  expected, the logging security layer at the top would have the
  data to determine the access permissions and report back the target
  context that was blocked.

  Without the get handler flag, the path on a union filesystem would be
  the errant security(dentry) -> __vfs_getxattr(dentry) ->
  handler->get(dentry) -> vfs_getxattr(lower_dentry) -> nested ->
  security(lower_dentry, log off) -> lower_handler->get(lower_dentry)
  which would report back through the chain no data, and -EACCES.

  For selinux for both cases, this would translate to a correctly
  determined blocked access. In the first case with this change a correct avc
  log would be reported, in the second legacy case an incorrect avc log
  would be reported against an uninitialized u:object_r:unlabeled:s0
  context making the logs cosmetically useless for audit2allow.

  This patch series is inert and is the wide-spread addition of the
  flags option for xattr functions, and a replacement of __vfs_getxattr
  with __vfs_getxattr(...XATTR_NOSECURITY).

  Signed-off-by: Mark Salyzyn
  Reviewed-by: Jan Kara
  Acked-by: Jan Kara
  Acked-by: Jeff Layton
  Acked-by: David Sterba
  Acked-by: Darrick J. Wong
  Acked-by: Mike Marshall
  Cc: Stephen Smalley
  Cc: linux-kernel@vger.kernel.org
  Cc: kernel-team@android.com
  Cc: linux-security-module@vger.kernel.org

  (cherry picked from (rejected from archive because of too many recipients))
  Signed-off-by: Mark Salyzyn
  Bug: 133515582
  Bug: 136124883
  Bug: 129319403
  Change-Id: Iabbb8771939d5f66667a26bb23ddf4c562c349a1

  Mark Salyzyn

  2019-11-06 05:50:57 +0800  

02 Nov, 2017

1 commit

• b24413180   License cleanup: add SPDX GPL-2.0 license identifier to files with no license ... Browse Code »

  Many source files in the tree are missing licensing information, which
  makes it harder for compliance tools to determine the correct license.

  By default all files without license information are under the default
  license of the kernel, which is GPL version 2.

  Update the files which contain no license information with the 'GPL-2.0'
  SPDX license identifier. The SPDX identifier is a legally binding
  shorthand, which can be used instead of the full boiler plate text.

  This patch is based on work done by Thomas Gleixner and Kate Stewart and
  Philippe Ombredanne.

  How this work was done:

  Patches were generated and checked against linux-4.14-rc6 for a subset of
  the use cases:
  - file had no licensing information it it.
  - file was a */uapi/* one with no licensing information in it,
  - file was a */uapi/* one with existing licensing information,

  Further patches will be generated in subsequent months to fix up cases
  where non-standard license headers were used, and references to license
  had to be inferred by heuristics based on keywords.

  The analysis to determine which SPDX License Identifier to be applied to
  a file was done in a spreadsheet of side by side results from of the
  output of two independent scanners (ScanCode & Windriver) producing SPDX
  tag:value files created by Philippe Ombredanne. Philippe prepared the
  base worksheet, and did an initial spot review of a few 1000 files.

  The 4.13 kernel was the starting point of the analysis with 60,537 files
  assessed. Kate Stewart did a file by file comparison of the scanner
  results in the spreadsheet to determine which SPDX license identifier(s)
  to be applied to the file. She confirmed any determination that was not
  immediately clear with lawyers working with the Linux Foundation.

  Criteria used to select files for SPDX license identifier tagging was:
  - Files considered eligible had to be source code files.
  - Make and config files were included as candidates if they contained >5
  lines of source
  - File already had some variant of a license header in it (even if
  Reviewed-by: Philippe Ombredanne
  Reviewed-by: Thomas Gleixner
  Signed-off-by: Greg Kroah-Hartman

  Greg Kroah-Hartman

  2017-11-02 18:10:55 +0800  

28 May, 2016

1 commit

• 593012268   switch xattr_handler->set() to passing dentry and inode separately ... Browse Code »

  preparation for similar switch in ->setxattr() (see the next commit for
  rationale).

  Signed-off-by: Al Viro

  Al Viro

  2016-05-28 03:39:43 +0800  

11 Apr, 2016

1 commit

• b296821a7   xattr_handler: pass dentry and inode as separate arguments of ->get() ... Browse Code »

  ... and do not assume they are already attached to each other

  Signed-off-by: Al Viro

  Al Viro

  2016-04-11 08:48:24 +0800  

14 Dec, 2015

1 commit

• 764a5c6b1   xattr handlers: Simplify list operation ... Browse Code »

  Change the list operation to only return whether or not an attribute
  should be listed. Copying the attribute names into the buffer is moved
  to the callers.

  Since the result only depends on the dentry and not on the attribute
  name, we do not pass the attribute name to list operations.

  Signed-off-by: Andreas Gruenbacher
  Signed-off-by: Al Viro

  Andreas Gruenbacher

  2015-12-14 08:46:12 +0800  

07 Dec, 2015

1 commit

• 98e9cb571   vfs: Distinguish between full xattr names and proper prefixes ... Browse Code »

  Add an additional "name" field to struct xattr_handler. When the name
  is set, the handler matches attributes with exactly that name. When the
  prefix is set instead, the handler matches attributes with the given
  prefix and with a non-empty suffix.

  This patch should avoid bugs like the one fixed in commit c361016a in
  the future.

  Signed-off-by: Andreas Gruenbacher
  Reviewed-by: James Morris
  Signed-off-by: Al Viro

  Andreas Gruenbacher

  2015-12-07 10:33:52 +0800  

14 Nov, 2015

1 commit

• d9a82a040   xattr handlers: Pass handler to operations instead of flags ... Browse Code »

  The xattr_handler operations are currently all passed a file system
  specific flags value which the operations can use to disambiguate between
  different handlers; some file systems use that to distinguish the xattr
  namespace, for example. In some oprations, it would be useful to also have
  access to the handler prefix. To allow that, pass a pointer to the handler
  to operations instead of the flags value alone.

  Signed-off-by: Andreas Gruenbacher
  Reviewed-by: Christoph Hellwig
  Signed-off-by: Al Viro

  Andreas Gruenbacher

  2015-11-14 09:34:32 +0800  

16 Apr, 2015

1 commit

• 2b0143b5c   VFS: normal filesystems (and lustre): d_inode() annotations ... Browse Code »

  that's the bulk of filesystem drivers dealing with inodes of their own

  Signed-off-by: David Howells
  Signed-off-by: Al Viro

  David Howells

  2015-04-16 03:06:57 +0800  

09 Jan, 2012

1 commit

• 302bf2f32   ext2/3/4: delete unneeded includes of module.h ... Browse Code »

  Delete any instances of include module.h that were not strictly
  required. In the case of ext2, the declaration of MODULE_LICENSE
  etc. were in inode.c but the module_init/exit were in super.c, so
  relocate the MODULE_LICENCE/AUTHOR block to super.c which makes it
  consistent with ext3 and ext4 at the same time.

  Signed-off-by: Paul Gortmaker
  Signed-off-by: Jan Kara

  Paul Gortmaker

  2012-01-09 20:52:10 +0800  

22 May, 2010

1 commit

• 11e275280   ext4: constify xattr_handler ... Browse Code »

  Signed-off-by: Stephen Hemminger
  Signed-off-by: Al Viro

  Stephen Hemminger

  2010-05-22 06:31:19 +0800  

17 Dec, 2009

1 commit

• 431547b3c   sanitize xattr handler prototypes ... Browse Code »

  Add a flags argument to struct xattr_handler and pass it to all xattr
  handler methods. This allows using the same methods for multiple
  handlers, e.g. for the ACL methods which perform exactly the same action
  for the access and default ACLs, just using a different underlying
  attribute. With a little more groundwork it'll also allow sharing the
  methods for the regular user/trusted/secure handlers in extN, ocfs2 and
  jffs2 like it's already done for xfs in this patch.

  Also change the inode argument to the handlers to a dentry to allow
  using the handlers mechnism for filesystems that require it later,
  e.g. cifs.

  [with GFS2 bits updated by Steven Whitehouse ]

  Signed-off-by: Christoph Hellwig
  Reviewed-by: James Morris
  Acked-by: Joel Becker
  Signed-off-by: Al Viro

  Christoph Hellwig

  2009-12-17 01:16:49 +0800  

12 Jul, 2008

1 commit

• 3537576a7   ext4: remove double definitions of xattr macros ... Browse Code »

  remove the definitions of macros XATTR_TRUSTED_PREFIX and XATTR_USER_PREFIX
  since they are defined in linux/xattr.h

  Signed-off-by: Shen Feng
  Signed-off-by: Mingming Cao
  Signed-off-by: "Theodore Ts'o"

  Shen Feng

  2008-07-12 07:27:31 +0800  

30 Apr, 2008

1 commit

• 3dcf54515   ext4: move headers out of include/linux ... Browse Code »

  Move ext4 headers out of include/linux. This is just the trivial move,
  there's some more thing that could be done later.

  Signed-off-by: Christoph Hellwig
  Signed-off-by: Mingming Cao
  Signed-off-by: "Theodore Ts'o"

  Christoph Hellwig

  2008-04-30 06:13:32 +0800  

09 May, 2007

1 commit

• e63340ae6   header cleaning: don't include smp_lock.h when not used ... Browse Code »

  Remove includes of where it is not used/needed.
  Suggested by Al Viro.

  Builds cleanly on x86_64, i386, alpha, ia64, powerpc, sparc,
  sparc64, and arm (all 59 defconfigs).

  Signed-off-by: Randy Dunlap
  Signed-off-by: Andrew Morton
  Signed-off-by: Linus Torvalds

  Randy Dunlap

  2007-05-09 02:15:07 +0800  

12 Oct, 2006

3 commits

• dab291af8   [PATCH] jbd2: enable building of jbd2 and have ext4 use it rather than jbd ... Browse Code »

  Reworked from a patch by Mingming Cao and Randy Dunlap

  Signed-off-By: Randy Dunlap
  Signed-off-by: Mingming Cao
  Signed-off-by: Dave Kleikamp
  Signed-off-by: Andrew Morton
  Signed-off-by: Linus Torvalds

  Mingming Cao

  2006-10-12 02:14:16 +0800  
• 617ba13b3   [PATCH] ext4: rename ext4 symbols to avoid duplication of ext3 symbols ... Browse Code »

  Mingming Cao originally did this work, and Shaggy reproduced it using some
  scripts from her.

  Signed-off-by: Mingming Cao
  Signed-off-by: Dave Kleikamp
  Signed-off-by: Andrew Morton
  Signed-off-by: Linus Torvalds

  Mingming Cao

  2006-10-12 02:14:15 +0800  
• ac27a0ec1   [PATCH] ext4: initial copy of files from ext3 ... Browse Code »

  Start of the ext4 patch series. See Documentation/filesystems/ext4.txt for
  details.

  This is a simple copy of the files in fs/ext3 to fs/ext4 and
  /usr/incude/linux/ext3* to /usr/include/ex4*

  Signed-off-by: Dave Kleikamp
  Signed-off-by: Andrew Morton
  Signed-off-by: Linus Torvalds

  Dave Kleikamp

  2006-10-12 02:14:15 +0800