Re: Out of tree module using LSM

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

From: Andi Kleen

Subject: Re: Out of tree module using LSM

Date: Thursday, November 29, 2007 - 2:09 pm

Alan Cox <alan@lxorguk.ukuu.org.uk> writes:

quoted text> If I want I can have 16 threads executing code in a shared object being
> written to by ten other programs at once and shared over a network while
> we are at it. Its probably not a good idea but I can do it if I have
> reason to.

Actually the kernel prevents writing to files which are executed currently
and you can also not execute what is currently open for writing.
That is what VM_DENYWRITE is good for.

Does not work for shared libraries though -- you cannot set VM_DENYWRITE
in user mmap aka ld.so Man page says

  MAP_DENYWRITE
              This flag is ignored.  (Long ago, it signalled that attempts to write to the underlying file should fail
              with ETXTBUSY.  But this was a source of denial-of-service attacks.)

-Andi
-
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

Out of tree module using LSM, Tvrtko A. Ursulin, (Wed Nov 28, 5:42 am)

Re: Out of tree module using LSM, Christoph Hellwig, (Wed Nov 28, 7:41 am)

Re: Out of tree module using LSM, Casey Schaufler, (Wed Nov 28, 9:38 am)

Re: Out of tree module using LSM, Christoph Hellwig, (Wed Nov 28, 9:46 am)

Re: Out of tree module using LSM, tvrtko.ursulin, (Wed Nov 28, 11:22 am)

Re: Out of tree module using LSM, Al Viro, (Wed Nov 28, 11:30 am)

Re: Out of tree module using LSM, Andi Kleen, (Wed Nov 28, 12:20 pm)

Re: Out of tree module using LSM, Alan Cox, (Wed Nov 28, 12:50 pm)

Re: Out of tree module using LSM, Alan Cox, (Wed Nov 28, 12:52 pm)

Re: Out of tree module using LSM, Valdis.Kletnieks, (Wed Nov 28, 1:05 pm)

Re: Out of tree module using LSM, James Morris, (Wed Nov 28, 5:12 pm)

Re: Out of tree module using LSM, Greg KH, (Wed Nov 28, 5:38 pm)

Re: Out of tree module using LSM, Jan Engelhardt, (Wed Nov 28, 5:51 pm)

Re: Out of tree module using LSM, Jan Engelhardt, (Wed Nov 28, 5:53 pm)

Re: Out of tree module using LSM, Casey Schaufler, (Wed Nov 28, 6:45 pm)

Re: Out of tree module using LSM, tvrtko.ursulin, (Thu Nov 29, 9:12 am)

Re: Out of tree module using LSM, tvrtko.ursulin, (Thu Nov 29, 9:26 am)

Re: Out of tree module using LSM, Jon Masters, (Thu Nov 29, 9:27 am)

Re: Out of tree module using LSM, Jon Masters, (Thu Nov 29, 9:36 am)

Re: Out of tree module using LSM, tvrtko.ursulin, (Thu Nov 29, 9:39 am)

Re: Out of tree module using LSM, Greg KH, (Thu Nov 29, 9:47 am)

Re: Out of tree module using LSM, Greg KH, (Thu Nov 29, 9:51 am)

Re: Out of tree module using LSM, Stephen Hemminger, (Thu Nov 29, 9:51 am)

Re: Out of tree module using LSM, Jan Engelhardt, (Thu Nov 29, 9:52 am)

Re: Out of tree module using LSM, Jan Engelhardt, (Thu Nov 29, 9:53 am)

Re: Out of tree module using LSM, Christoph Hellwig, (Thu Nov 29, 9:57 am)

Re: Out of tree module using LSM, Greg KH, (Thu Nov 29, 10:03 am)

Re: Out of tree module using LSM, Jon Masters, (Thu Nov 29, 10:05 am)

Re: Out of tree module using LSM, Greg KH, (Thu Nov 29, 10:14 am)

Re: Out of tree module using LSM, Alan Cox, (Thu Nov 29, 10:27 am)

Re: Out of tree module using LSM, Ray Lee, (Thu Nov 29, 10:35 am)

Re: Out of tree module using LSM, Alan Cox, (Thu Nov 29, 10:36 am)

Re: Out of tree module using LSM, Al Viro, (Thu Nov 29, 10:51 am)

Re: Out of tree module using LSM, Ray Lee, (Thu Nov 29, 11:03 am)

Re: Out of tree module using LSM, Justin Banks, (Thu Nov 29, 11:19 am)

Re: Out of tree module using LSM, Ray Lee, (Thu Nov 29, 11:40 am)

Re: Out of tree module using LSM, Ray Lee, (Thu Nov 29, 12:11 pm)

Re: Out of tree module using LSM, Jon Masters, (Thu Nov 29, 12:45 pm)

Re: Out of tree module using LSM, Valdis.Kletnieks, (Thu Nov 29, 1:56 pm)

Re: Out of tree module using LSM, Andi Kleen, (Thu Nov 29, 2:09 pm)

Re: Out of tree module using LSM, Alan Cox, (Thu Nov 29, 2:45 pm)

Re: Out of tree module using LSM, Al Viro, (Thu Nov 29, 3:08 pm)

Re: Out of tree module using LSM, Justin Banks, (Thu Nov 29, 3:12 pm)

Re: Out of tree module using LSM, Jon Masters, (Thu Nov 29, 4:31 pm)

Re: Out of tree module using LSM, Jon Masters, (Thu Nov 29, 4:34 pm)

Re: Out of tree module using LSM, James Morris, (Thu Nov 29, 5:50 pm)

Re: Out of tree module using LSM, Al Viro, (Thu Nov 29, 6:48 pm)

Re: Out of tree module using LSM, Valdis.Kletnieks, (Thu Nov 29, 11:20 pm)

Re: Out of tree module using LSM, Alan Cox, (Fri Nov 30, 6:30 am)

Re: Out of tree module using LSM, Justin Banks, (Fri Nov 30, 8:37 am)

Re: Out of tree module using LSM, Pavel Machek, (Sat Dec 1, 1:43 am)

Re: Out of tree module using LSM, Andi Kleen, (Sun Dec 2, 1:06 pm)

Re: Out of tree module using LSM, Pavel Machek, (Sun Dec 2, 1:22 pm)

Re: Out of tree module using LSM, Valdis.Kletnieks, (Sun Dec 2, 2:09 pm)

Re: Out of tree module using LSM, Pavel Machek, (Sun Dec 2, 2:56 pm)

Re: Out of tree module using LSM, Jan Engelhardt, (Sun Dec 2, 4:15 pm)

Re: Out of tree module using LSM, Pavel Machek, (Sun Dec 2, 4:23 pm)

Re: Out of tree module using LSM, Pavel Machek, (Sat Dec 8, 3:50 am)


linux-kernel:
Mel Gorman	Re: [PATCH 1/4] vmstat: remove zone->lock from walk_zones_in_node
Guenter Roeck	Re: [lm-sensors] Location for thermal drivers
David Woodhouse	Re: RFC: Moving firmware blobs out of the kernel.
Siddha, Suresh B	Re: [PATCH 2.6.21 review I] [11/25] x86: default to physical mode on hotplug CPU k...
Peter Zijlstra	Re: [patch 4/6] mm: merge populate and nopage into fault (fixes nonlinear)
git-commits-head:
Linux Kernel Mailing List	[MIPS] Fix potential latency problem due to non-atomic cpu_wait.
Linux Kernel Mailing List	USB: rename USB_SPEED_VARIABLE to USB_SPEED_WIRELESS
Linux Kernel Mailing List	lib/vsprintf.c: fix bug omitting minus sign of numbers (module_param)
Linux Kernel Mailing List	[Bluetooth] Initiate authentication during connection establishment
Linux Kernel Mailing List	[POWERPC] 4xx: Add ppc40x_defconfig
linux-netdev:
MERCEDES	Your mail id has won 950,000.00 in the MERCEDES Benz Online Promo.for claims send:
David Miller	Re: [PATCH] xen/netfront: do not mark packets of length < MSS as GSO
David Miller	Re: skb_segment() questions
Shan Wei	[RFC PATCH net-next 2/5]IPv6:netfilter: Send an ICMPv6 "Fragment Reassembly Timeou...
Stanislaw Gruszka	[PATCH 1/4] bnx2x: use smp_mb() to keep ordering of read write operations
git:
Nicolas Sebrecht	git-svn died of signal 11 (was "3 failures on test t9100 (svn)")
Junio C Hamano	Re: [PATCH 2/2] Add url.<base>.pushInsteadOf: URL rewriting for push only
Martin Langhoff	Re: [PATCH] GIT commit statistics.
Alexandre Julliard	[PATCH] gitweb: Put back shortlog instead of graphiclog in the project list.
Josh Triplett	[PATCH 2/2] Add url.<base>.pushInsteadOf: URL rewriting for push only
openbsd-misc:
Taisto Qvist XX	Re: AMD GEODE LX-800 just works with kernel from install42.iso and kernelpanics wi...
Nico Meijer	Re: gOS Develop Kit with VIA pc-1 Processor Platform VIA C7-D
Andreas Bihlmaier	Re: jetway board sensors (Fintek F71805F)
admin	Drive a 2009 car from R799p/m
Antti Harri	Re: how to create a sha256 hash