LSM: Update comment on security_sock_rcv_skb It is not permitted to do sleeping operation inside security_sock_rcv_skb(). Signed-off-by: Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp> Acked-by: Serge Hallyn <serue@us.ibm.com> -- Signed-off-by: James Morris <jmorris@namei.org>

commit: 0ed731859e24cd6e3ec058cf2b49b2a0df80e86b [log] [tgz]
author: Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp> Wed Jan 06 09:23:54 2010 +0900
committer: James Morris <jmorris@namei.org> Mon Jan 11 08:53:23 2010 +1100
tree: d3af7dc11eb8de2ed96d4153c19449f0a46dd54c
parent: f737d95ddfea4df68a36ffc9231db4bf34b06d13 [diff] [blame]
diff --git a/include/linux/security.h b/include/linux/security.h
index 466cbad..3696ca3 100644
--- a/include/linux/security.h
+++ b/include/linux/security.h

@@ -978,6 +978,7 @@
  *	Check permissions on incoming network packets.  This hook is distinct
  *	from Netfilter's IP input hooks since it is the first time that the
  *	incoming sk_buff @skb has been associated with a particular socket, @sk.
+ *	Must not sleep inside this hook because some callers hold spinlocks.
  *	@sk contains the sock (not socket) associated with the incoming sk_buff.
  *	@skb contains the incoming network data.
  * @socket_getpeersec_stream:
commit	0ed731859e24cd6e3ec058cf2b49b2a0df80e86b	[log] [tgz]
author	Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp>	Wed Jan 06 09:23:54 2010 +0900
committer	James Morris <jmorris@namei.org>	Mon Jan 11 08:53:23 2010 +1100
tree	d3af7dc11eb8de2ed96d4153c19449f0a46dd54c
parent	f737d95ddfea4df68a36ffc9231db4bf34b06d13 [diff] [blame]