git.samba.org - sfrench/cifs-2.6.git/commit

author	Daniel Jurgens <danielj@mellanox.com>
	Fri, 19 May 2017 12:48:54 +0000 (15:48 +0300)
committer	Paul Moore <paul@paul-moore.com>
	Tue, 23 May 2017 16:27:21 +0000 (12:27 -0400)
commit	47a2b338fe63200d716d2e24131cdb49f17c77da
tree	2214ac893b108716acf44eb4098686fc34e48b03	tree
parent	8f408ab64be6319cb7736cbc6982838dcc362306	commit \| diff

IB/core: Enforce security on management datagrams

Allocate and free a security context when creating and destroying a MAD
agent.  This context is used for controlling access to PKeys and sending
and receiving SMPs.

When sending or receiving a MAD check that the agent has permission to
access the PKey for the Subnet Prefix of the port.

During MAD and snoop agent registration for SMI QPs check that the
calling process has permission to access the manage the subnet  and
register a callback with the LSM to be notified of policy changes. When
notificaiton of a policy change occurs recheck permission and set a flag
indicating sending and receiving SMPs is allowed.

When sending and receiving MADs check that the agent has access to the
SMI if it's on an SMI QP.  Because security policy can change it's
possible permission was allowed when creating the agent, but no longer
is.

Signed-off-by: Daniel Jurgens <danielj@mellanox.com>
Acked-by: Doug Ledford <dledford@redhat.com>
[PM: remove the LSM hook init code]
Signed-off-by: Paul Moore <paul@paul-moore.com>

drivers/infiniband/core/core_priv.h		diff \| blob \| history
drivers/infiniband/core/mad.c		diff \| blob \| history
drivers/infiniband/core/security.c		diff \| blob \| history
include/linux/lsm_hooks.h		diff \| blob \| history
include/linux/security.h		diff \| blob \| history
include/rdma/ib_mad.h		diff \| blob \| history
security/security.c		diff \| blob \| history