LSM: Infrastructure management of the file security Move management of the file->f_security blob out of the individual security modules and into the infrastructure. The modules no longer allocate or free the data, instead they tell the infrastructure how much space they require. Signed-off-by: Casey Schaufler <casey@schaufler-ca.com> Reviewed-by: Kees Cook <keescook@chromium.org> [kees: adjusted for ordered init series] Signed-off-by: Kees Cook <keescook@chromium.org>

commit: 33bf60cabcc7687b194a689b068b65e9ecd556be [log] [tgz]
author: Casey Schaufler <casey@schaufler-ca.com> Mon Nov 12 12:02:49 2018 -0800
committer: Kees Cook <keescook@chromium.org> Tue Jan 08 13:18:44 2019 -0800
tree: f8bbf4c27ce73e33ab5f1efa7e99448ab9755373
parent: f28952ac900822a189fc383a5b73631e72c69356 [diff] [blame]
diff --git a/security/selinux/include/objsec.h b/security/selinux/include/objsec.h
index e0ac299..96374db 100644
--- a/security/selinux/include/objsec.h
+++ b/security/selinux/include/objsec.h

@@ -167,7 +167,7 @@
 
 static inline struct file_security_struct *selinux_file(const struct file *file)
 {
-	return file->f_security;
+	return file->f_security + selinux_blob_sizes.lbs_file;
 }
 
 #endif /* _SELINUX_OBJSEC_H_ */
commit	33bf60cabcc7687b194a689b068b65e9ecd556be	[log] [tgz]
author	Casey Schaufler <casey@schaufler-ca.com>	Mon Nov 12 12:02:49 2018 -0800
committer	Kees Cook <keescook@chromium.org>	Tue Jan 08 13:18:44 2019 -0800
tree	f8bbf4c27ce73e33ab5f1efa7e99448ab9755373
parent	f28952ac900822a189fc383a5b73631e72c69356 [diff] [blame]