[PATCH] Remove extra call to security_sock_rcv_skb()

• Previous message: Chris Wright: "[PATCH][RFC] Remove inode_permission_lite hook"
• Next in thread: Stephen D. Smalley: "Re: [PATCH] Remove extra call to security_sock_rcv_skb()"
• Reply: Stephen D. Smalley: "Re: [PATCH] Remove extra call to security_sock_rcv_skb()"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

u
Drop the extraneous call to security_sock_rcv_skb() in
net/ipv4/tcp_ipv4.c::tcp_v4_rcv().  This is now handled in
sk_filter().  Noted by Stephen Smalley.

thanks,
-chris
-- 
Linux Security Modules     http://lsm.immunix.org     http://lsm.bkbits.net

===== net/ipv4/tcp_ipv4.c 1.34 vs edited =====
--- 1.34/net/ipv4/tcp_ipv4.c	Mon Mar 24 18:02:41 2003
+++ edited/net/ipv4/tcp_ipv4.c	Wed Mar 26 00:25:02 2003
@@ -1800,9 +1800,6 @@
 		goto no_tcp_socket;
 
 process:
-	if (security_sock_rcv_skb(sk, skb))
-		goto discard_and_relse;
-
 	if (sk->state == TCP_TIME_WAIT)
 		goto do_time_wait;
 
_______________________________________________
linux-security-module mailing list
linux-security-moduleat_private
http://mail.wirex.com/mailman/listinfo/linux-security-module

• Next message: Jonathan Heusser: "Re: OWL module implementation"
• Previous message: Chris Wright: "[PATCH][RFC] Remove inode_permission_lite hook"
• Next in thread: Stephen D. Smalley: "Re: [PATCH] Remove extra call to security_sock_rcv_skb()"
• Reply: Stephen D. Smalley: "Re: [PATCH] Remove extra call to security_sock_rcv_skb()"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Mar 26 2003 - 00:34:49 PST