Re: [PATCH 1/1] file capabilities: remove cap_task_kill()

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

From: Luiz Fernando N. Capitulino <lcapitulino@...>

To: <serge@...>

Cc: lkml <linux-kernel@...>, <linux-security-module@...>, Andrew Morgan <morgan@...>, Stephen Smalley <sds@...>, Mike Galbraith <efault@...>, <buraphalinuxserver@...>, <elendil@...>

Subject: Re: [PATCH 1/1] file capabilities: remove cap_task_kill()

Date: Friday, February 29, 2008 - 4:40 pm

Em Thu, 28 Feb 2008 11:38:17 -0600
serge@hallyn.com escreveu:

| The original justification for cap_task_kill() was as follows:
| 
| 	check_kill_permission() does appropriate uid equivalence checks.
| 	However with file capabilities it becomes possible for an
| 	unprivileged user to execute a file with file capabilities
| 	resulting in a more privileged task with the same uid.
| 
| However now that cap_task_kill() always returns 0 (permission
| granted) when p->uid==current->uid, the whole hook is worthless,
| and only likely to create more subtle problems in the corner cases
| where it might still be called but return -EPERM.  Those cases
| are basically when uids are different but euid/suid is equivalent
| as per the check in check_kill_permission().
| 
| This patch removes cap_task_kill().

 2.6.24 seems to have the same bug, what about a rediff for it and
submit the patch to -stable team?

 Thanks.

-- 
Luiz Fernando N. Capitulino
--
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

[PATCH 1/1] file capabilities: remove cap_task_kill(), , (Thu Feb 28, 1:38 pm)

Re: [PATCH 1/1] file capabilities: remove cap_task_kill(), Andrew G. Morgan, (Sat Mar 1, 6:05 pm)

Re: [PATCH 1/1] file capabilities: remove cap_task_kill(), Luiz Fernando N. Capitulino..., (Fri Feb 29, 4:40 pm)

Re: [PATCH 1/1] file capabilities: remove cap_task_kill(), , (Fri Feb 29, 5:26 pm)

Re: [PATCH 1/1] file capabilities: remove cap_task_kill(), Chris Friedhoff, (Wed Mar 5, 3:17 pm)

Re: [PATCH 1/1] file capabilities: remove cap_task_kill(), Luiz Fernando N. Capitulino..., (Mon Mar 3, 8:50 am)

Re: [PATCH 1/1] file capabilities: remove cap_task_kill(), BuraphaLinux Server, (Thu Feb 28, 3:14 pm)

Re: [PATCH 1/1] file capabilities: remove cap_task_kill(), Serge E. Hallyn, (Thu Feb 28, 3:42 pm)


linux-kernel:
Benjamin Herrenschmidt	Re: [PATCH] Remove process freezer from suspend to RAM pathway
Greg KH	[GIT PATCH] driver core patches against 2.6.24
Mariusz Kozlowski	[PATCH 03] drivers/sbus/char/bbc_envctrl.c: kmalloc + memset conversion to kzalloc
Yinghai Lu	[PATCH 02/16] x86: introduce nr_irqs for 64bit v3
git:

linux-netdev:

Gerrit Renker	[PATCH 13/37] dccp: Deprecate Ack Ratio sysctl
James Morris	Re: [GIT]: Networking
Jeff Garzik	Re: [bug?] tg3: Failed to load firmware "tigon/tg3_tso.bin"
git-commits-head:

Re: [PATCH 1/1] file capabilities: remove cap_task_kill()

Online users