[GIT PULL] Smack patches for v5.16

Casey Schaufler casey at schaufler-ca.com
Mon Nov 1 22:46:54 UTC 2021


Hello Linus,

Here is the Smack pull request for v5.16.

There is a change for overlayfs support that corrects
the initial attributes on created files. There is
code clean-up for netlabel processing. There are several
fixes in smackfs for a variety of reasons. Errors reported
by W=1 have been addressed. All told, nothing challenging.

I am attempting a revised email setup. Hopefully this will
address the issues I've had with previous pull requests.
Sorry for the multiple copies I've sent. I am trying to
work this out.


--
The following changes since commit 6880fa6c56601bb8ed59df6c30fd390cc5f6dd8f:

  Linux 5.15-rc1 (2021-09-12 16:28:37 -0700)

are available in the Git repository at:

  https://github.com/cschaufler/smack-next tags/Smack-for-5.16

for you to fetch changes up to 0934ad42bb2c5df90a1b9de690f93de735b622fe:

  smackfs: use netlbl_cfg_cipsov4_del() for deleting cipso_v4_doi (2021-10-22 08:46:53 -0700)

----------------------------------------------------------------
Smack changes for 5.16

Multiple corrections to smackfs.
W=1 fixes
Fix for overlayfs.

----------------------------------------------------------------
Casey Schaufler (1):
      Smack: fix W=1 build warnings

Florian Westphal (1):
      smack: remove duplicated hook function

Pawan Gupta (1):
      smackfs: Fix use-after-free in netlbl_catmap_walk()

Sebastian Andrzej Siewior (1):
      smack: Guard smack_ipv6_lock definition within a SMACK_IPV6_PORT_LABELING block

Tetsuo Handa (2):
      smackfs: use __GFP_NOFAIL for smk_cipso_doi()
      smackfs: use netlbl_cfg_cipsov4_del() for deleting cipso_v4_doi

Vishal Goel (1):
      Smack:- Use overlay inode label in smack_inode_copy_up()

 security/smack/smack_lsm.c       | 41 ++++++++++++++++++++++++----------------
 security/smack/smack_netfilter.c | 26 +++----------------------
 security/smack/smackfs.c         | 11 ++++++-----
 3 files changed, 34 insertions(+), 44 deletions(-)



More information about the Linux-security-module-archive mailing list