LSM: Update comment on security_sock_rcv_skb

author Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp>

Wed, 6 Jan 2010 00:23:54 +0000 (09:23 +0900)

committer James Morris <jmorris@namei.org>

Sun, 10 Jan 2010 21:53:23 +0000 (08:53 +1100)
author Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp>
Wed, 6 Jan 2010 00:23:54 +0000 (09:23 +0900)
committer James Morris <jmorris@namei.org>
Sun, 10 Jan 2010 21:53:23 +0000 (08:53 +1100)
diff --git a/include/linux/security.h b/include/linux/security.h

index 466cbad..3696ca3 100644 (file)
--- a/include/linux/security.h
+++ b/include/linux/security.h
@@ -978,6 +978,7 @@ static inline void security_free_mnt_opts(struct security_mnt_opts *opts)
   *     Check permissions on incoming network packets.  This hook is distinct
   *     from Netfilter's IP input hooks since it is the first time that the
   *     incoming sk_buff @skb has been associated with a particular socket, @sk.
+ *     Must not sleep inside this hook because some callers hold spinlocks.
   *     @sk contains the sock (not socket) associated with the incoming sk_buff.
   *     @skb contains the incoming network data.
   * @socket_getpeersec_stream:
author	Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp>
	Wed, 6 Jan 2010 00:23:54 +0000 (09:23 +0900)
committer	James Morris <jmorris@namei.org>
	Sun, 10 Jan 2010 21:53:23 +0000 (08:53 +1100)