delta/linux-next.git - git.kernel.org: pub/scm/linux/kernel/git/next/linux-next.git

diff options

author	Kees Cook <keescook@chromium.org>	2022-12-09 11:54:57 -0800
committer	Kees Cook <keescook@chromium.org>	2022-12-14 14:34:18 -0800
commit	1a17e5b513ceebf21100027745b8731b4728edf7 (patch)
tree	c8b4e4ff42a436eb5eada8b3d0da9ad240746ee0 /security/bpf
parent	d272e01fa0a2f15c5c331a37cd99c6875c7b7186 (diff)
download	linux-next-1a17e5b513ceebf21100027745b8731b4728edf7.tar.gz

LoadPin: Ignore the "contents" argument of the LSM hooks

LoadPin only enforces the read-only origin of kernel file reads. Whether or not it was a partial read isn't important. Remove the overly conservative checks so that things like partial firmware reads will succeed (i.e. reading a firmware header). Fixes: 2039bda1fa8d ("LSM: Add "contents" flag to kernel_read_file hook") Cc: Paul Moore <paul@paul-moore.com> Cc: James Morris <jmorris@namei.org> Cc: "Serge E. Hallyn" <serge@hallyn.com> Cc: linux-security-module@vger.kernel.org Signed-off-by: Kees Cook <keescook@chromium.org> Acked-by: Serge Hallyn <serge@hallyn.com> Tested-by: Ping-Ke Shih <pkshih@realtek.com> Link: https://lore.kernel.org/r/20221209195453.never.494-kees@kernel.org

Diffstat (limited to 'security/bpf')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: