LoadPin: Ignore the "contents" argument of the LSM hooks - linux

diff options

author	Kees Cook <keescook@chromium.org>	2022-12-09 20:54:57 +0100
committer	Kees Cook <keescook@chromium.org>	2022-12-14 23:34:18 +0100
commit	1a17e5b513ceebf21100027745b8731b4728edf7 (patch)
tree	c8b4e4ff42a436eb5eada8b3d0da9ad240746ee0 /security/Makefile
parent	ksmbd: replace one-element arrays with flexible-array members (diff)
download	linux-1a17e5b513ceebf21100027745b8731b4728edf7.tar.xz linux-1a17e5b513ceebf21100027745b8731b4728edf7.zip

LoadPin: Ignore the "contents" argument of the LSM hooks

LoadPin only enforces the read-only origin of kernel file reads. Whether or not it was a partial read isn't important. Remove the overly conservative checks so that things like partial firmware reads will succeed (i.e. reading a firmware header). Fixes: 2039bda1fa8d ("LSM: Add "contents" flag to kernel_read_file hook") Cc: Paul Moore <paul@paul-moore.com> Cc: James Morris <jmorris@namei.org> Cc: "Serge E. Hallyn" <serge@hallyn.com> Cc: linux-security-module@vger.kernel.org Signed-off-by: Kees Cook <keescook@chromium.org> Acked-by: Serge Hallyn <serge@hallyn.com> Tested-by: Ping-Ke Shih <pkshih@realtek.com> Link: https://lore.kernel.org/r/20221209195453.never.494-kees@kernel.org

Diffstat (limited to 'security/Makefile')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: