Re: [AppArmor 39/45] AppArmor: Profile loading and manipulation, pathname matching

On Sun, 10 Jun 2007, Pavel Machek wrote:

quoted text

>>>> extended out this can come close to giving each file it's own label. AA >>>> essentially does this and calls the label the path and computes it at >>>> runtime instead of storing it somewhere. >>> >>> Yes, and in the process, AA stores compiled regular expressions in >>> kernel. Ouch. I'll take "each file it's own label" over _that_ any time. >> >> and if each file has it's own label you are going to need regex or similar >> to deal with them as well. > > But you have that regex in _user_ space, in a place where policy > is loaded into kernel.

then the kernel is going to have to call out to userspace every time a file is created or renamed and the policy is going to be enforced incorrectly until userspace finished labeling/relabeling whatever is moved. building this sort of race condigion for security into the kernel is highly questionable at best.

quoted text

> AA has regex parser in _kernel_ space, which is very wrong.

see Linus' rants about why it's not automaticaly the best thing to move functionality into userspace. remember that the files covered by an AA policy can change as files are renamed. this isn't the case with SELinux so it doesn't have this sort of problem. David Lang -

unsubscribe notice

To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/


linux-kernel:
Arjan van de Ven	[Patch v2] Make PCI extended config space (MMCONFIG) a driver opt-in
Tilman Schmidt	git guidance
Vu Pham	Re: [Scst-devel] Integration of SCST in the mainstream Linux kernel
Greg KH	[GIT PATCH] driver core patches against 2.6.24
git:
David Miller	Re: Git and GCC
Mike	I don't want the .git directory next to my code.
Steffen Prohaska	merge vs rebase: Is visualization in gitk the only problem?
David Kastrup	What is the idea for bare repositories?
openbsd-misc:
Richard Stallman	Real men don't attack straw men
GVG GVG	ssh_exchange_identification: Connection closed by remote host
Falk Brockerhoff	ftp-proxy and no route to host issue
Pieter Verberne	Remove escape characters from file
linux-netdev:
Chuck Lever	Re: [bug?] tg3: Failed to load firmware "tigon/tg3_tso.bin"
David Miller	Re: [PATCH] pkt_sched: Destroy gen estimators under rtnl_lock().
Stefan Richter	Re: [GIT]: Networking
jamal	Re: [LARTC] ifb and ppp


usb mic not detected	18 minutes ago	Applications and Utilities
Add ext2 inode field	9 hours ago	Linux kernel
the kernel how to power off the machine	18 hours ago	Linux kernel
struct gendisk via request_queue	21 hours ago	Linux kernel
page initialization during kernel initialization	1 day ago	Linux kernel
Read Transport Layer Data form network packets (tcp/ip)	2 days ago	Linux kernel
Getting blinking screen in Fedora 9	2 days ago	Linux general
Problem with kernel + libata	3 days ago	Linux kernel
How to detect usb device insertioin and removal event ?	3 days ago	Linux general
toshiba m30x-129 herbinaiton problem	3 days ago	Hardware

Re: [AppArmor 39/45] AppArmor: Profile loading and manipulation, pathname matching

Online users