1
linux/net/xfrm
Joy Latten 4aa2e62c45 xfrm: Add security check before flushing SAD/SPD
Currently we check for permission before deleting entries from SAD and
SPD, (see security_xfrm_policy_delete() security_xfrm_state_delete())
However we are not checking for authorization when flushing the SPD and
the SAD completely. It was perhaps missed in the original security hooks
patch.

This patch adds a security check when flushing entries from the SAD and
SPD.  It runs the entire database and checks each entry for a denial.
If the process attempting the flush is unable to remove all of the
entries a denial is logged the the flush function returns an error
without removing anything.

This is particularly useful when a process may need to create or delete
its own xfrm entries used for things like labeled networking but that
same process should not be able to delete other entries or flush the
entire database.

Signed-off-by: Joy Latten<latten@austin.ibm.com>
Signed-off-by: Eric Paris <eparis@parisplace.org>
Signed-off-by: James Morris <jmorris@namei.org>
2007-06-07 13:42:46 -07:00
..
Kconfig [PFKEYV2]: CONFIG_NET_KEY_MIGRATE option 2007-02-08 13:15:05 -08:00
Makefile
xfrm_algo.c [IPSEC]: Fix warnings with casting int to pointer 2007-05-22 16:12:26 -07:00
xfrm_hash.c [IPSEC]: Don't warn if high-order hash resize fails 2007-05-14 02:19:11 -07:00
xfrm_hash.h [XFRM] STATE: Use destination address for src hash. 2006-10-04 00:31:02 -07:00
xfrm_input.c [SK_BUFF]: Introduce skb_transport_header(skb) 2007-04-25 22:25:31 -07:00
xfrm_policy.c xfrm: Add security check before flushing SAD/SPD 2007-06-07 13:42:46 -07:00
xfrm_state.c xfrm: Add security check before flushing SAD/SPD 2007-06-07 13:42:46 -07:00
xfrm_user.c xfrm: Add security check before flushing SAD/SPD 2007-06-07 13:42:46 -07:00