Re: [TOMOYO 14/15](repost) LSM expansion for TOMOYO Linux. | KernelTrap

Re: [TOMOYO 14/15](repost) LSM expansion for TOMOYO Linux.

view
thread

!MAILaRCHIVE_VOTE_RePLACE

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

[view in full thread]

From: Tetsuo Handa <penguin-kernel@...>

To: <jmorris@...>

Cc: <linux-kernel@...>, <linux-security-module@...>, <chrisw@...>

Subject: Re: [TOMOYO 14/15](repost) LSM expansion for TOMOYO Linux.

Date: Tuesday, October 2, 2007 - 9:33 am

Hello.

James Morris wrote:
quoted text> Why do you need racy unlocked versions, in addition to the existing 
> security_task_kill() hook which is called safely via 
> check_kill_permission() ?

TOMOYO Linux provides "delayed enforcing mode" which allows administrator
judge interactively for requests that violated policy.

Sometimes, especially after updating software packages, irregular behavior arise.
So, the administrator prepares for such irregular behavior
by invoking "ccs-queryd" userland program.
The "ccs-queryd" prints the contents of policy violation and
asks the administrator whether to grant the request that violated policy.
This can reduce the possibility of "restarting process failed due to permission denied".

Thus, security_task_kill() which is called with tasklist_lock held
is not what TOMOYO Linux wants.

I know this approach is racy, but TOMOYO Linux wants these unlocked versions
to avoid failure due to permission denial caused by MAC's policy.

Regards.

-
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

[TOMOYO 00/15](repost) TOMOYO Linux - MAC based on process i..., Kentaro Takeda, (Tue Oct 2, 3:25 am)

[TOMOYO 03/15](repost) Memory and pathname management functi..., Kentaro Takeda, (Tue Oct 2, 3:30 am)

Re: [TOMOYO 03/15](repost) Memory and pathname management fu..., James Morris, (Wed Oct 3, 3:39 am)

Re: [TOMOYO 03/15](repost) Memory and pathname management fu..., Tetsuo Handa, (Wed Oct 3, 7:12 am)

Re: [TOMOYO 00/15](repost) TOMOYO Linux - MAC based on proce..., Kentaro Takeda, (Tue Oct 2, 3:42 am)

Re: [TOMOYO 00/15](repost) TOMOYO Linux - MAC based on proce..., James Morris, (Tue Oct 2, 6:37 am)

Re: [TOMOYO 00/15](repost) TOMOYO Linux - MAC based on proce..., Kentaro Takeda, (Tue Oct 2, 6:58 am)

[TOMOYO 15/15](repost) Kconfig and Makefile for TOMOYO Linux., Kentaro Takeda, (Tue Oct 2, 3:40 am)

[TOMOYO 14/15](repost) LSM expansion for TOMOYO Linux., Kentaro Takeda, (Tue Oct 2, 3:39 am)

Re: [TOMOYO 14/15](repost) LSM expansion for TOMOYO Linux., James Morris, (Tue Oct 2, 10:36 am)

Re: [TOMOYO 14/15](repost) LSM expansion for TOMOYO Linux., Tetsuo Handa, (Tue Oct 2, 5:49 pm)

Re: [TOMOYO 14/15](repost) LSM expansion for TOMOYO Linux., James Morris, (Tue Oct 2, 8:48 am)

Re: [TOMOYO 14/15](repost) LSM expansion for TOMOYO Linux., Tetsuo Handa, (Tue Oct 2, 9:33 am)

[TOMOYO 13/15](repost) Conditional permission support., Kentaro Takeda, (Tue Oct 2, 3:39 am)

[TOMOYO 12/15](repost) LSM adapter for TOMOYO., Kentaro Takeda, (Tue Oct 2, 3:38 am)

[TOMOYO 11/15](repost) Signal transmission control functions., Kentaro Takeda, (Tue Oct 2, 3:37 am)

[TOMOYO 10/15](repost) Namespace manipulation control functi..., Kentaro Takeda, (Tue Oct 2, 3:37 am)

[TOMOYO 09/15](repost) Networking access control functions., Kentaro Takeda, (Tue Oct 2, 3:36 am)

[TOMOYO 08/15](repost) Argv[0] access control functions., Kentaro Takeda, (Tue Oct 2, 3:35 am)

[TOMOYO 07/15](repost) File access control functions., Kentaro Takeda, (Tue Oct 2, 3:34 am)

[TOMOYO 06/15](repost) Auditing interface., Kentaro Takeda, (Tue Oct 2, 3:33 am)

[TOMOYO 05/15](repost) Domain transition handler functions., Kentaro Takeda, (Tue Oct 2, 3:32 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., James Morris, (Tue Oct 2, 7:15 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., Tetsuo Handa, (Tue Oct 2, 8:44 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., James Morris, (Tue Oct 2, 9:07 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., Tetsuo Handa, (Wed Oct 3, 7:24 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., YOSHIFUJI Hideaki / , (Wed Oct 3, 7:43 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., James Morris, (Wed Oct 3, 8:37 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., Tetsuo Handa, (Mon Oct 15, 8:09 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., Tetsuo Handa, (Wed Oct 3, 9:04 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., KaiGai Kohei, (Wed Oct 3, 9:14 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., Tetsuo Handa, (Wed Oct 3, 9:59 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., Peter Zijlstra, (Wed Oct 3, 10:07 am)

Sleeping in RCU list traversal, Tetsuo Handa, (Sun Oct 7, 6:38 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., Tetsuo Handa, (Wed Oct 3, 10:26 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., Jiri Kosina, (Wed Oct 3, 10:37 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., Peter Zijlstra, (Wed Oct 3, 10:26 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., YOSHIFUJI Hideaki / , (Wed Oct 3, 10:32 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., Tetsuo Handa, (Wed Oct 3, 10:56 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., Tetsuo Handa, (Thu Oct 4, 8:57 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., James Morris, (Wed Oct 3, 10:39 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., Peter Zijlstra, (Wed Oct 3, 9:24 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., Tetsuo Handa, (Wed Oct 3, 10:19 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., David P. Quigley, (Wed Oct 3, 10:35 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., Peter Zijlstra, (Wed Oct 3, 10:28 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., Tetsuo Handa, (Mon Oct 15, 7:46 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., YOSHIFUJI Hideaki / , (Wed Oct 3, 9:11 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., Andi Kleen, (Tue Oct 2, 10:50 am)

Re: [TOMOYO 05/15](repost) Domain transition handler functio..., YOSHIFUJI Hideaki / , (Tue Oct 2, 9:00 am)

[TOMOYO 04/15](repost) Utility functions and securityfs inte..., Kentaro Takeda, (Tue Oct 2, 3:31 am)

Re: [TOMOYO 04/15](repost) Utility functions and securityfs ..., Paul Mundt, (Tue Oct 2, 4:05 am)

Re: [TOMOYO 04/15](repost) Utility functions and securityfs ..., Greg KH, (Tue Oct 2, 10:15 am)

[TOMOYO 02/15](repost) Data structures and prototypes defini..., Kentaro Takeda, (Tue Oct 2, 3:29 am)

[TOMOYO 01/15](repost) Allow use of namespace_sem from LSM m..., Kentaro Takeda, (Tue Oct 2, 3:28 am)

Navigation

Popular discussions


linux-kernel:
Parag Warudkar	BUG: soft lockup - CPU#1 stuck for 15s! [swapper:0]
Tarkan Erimer	Re: Dual-Licensing Linux Kernel with GPL V2 and GPL V3
Greg Kroah-Hartman	[PATCH 010/196] Chinese: add translation of Codingstyle
Andrew Morton	-mm merge plans for 2.6.23
git:

linux-netdev:
Gerrit Renker	[PATCH 24/37] dccp: Processing Confirm options
David Miller	Re: [PATCH] pkt_sched: Destroy gen estimators under rtnl_lock().
Alexey Dobriyan	Re: [GIT]: Networking
david	Re: iptables very slow after commit 784544739a25c30637397ace5489eeb6e15d7d49
openbsd-misc:

Colocation donated by:

Who's online

There are currently 2 users and 695 guests online.

Online users

Syndicate