| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 13 May 2009 14:58:18 +0200 From: Kay Sievers <kay.sievers@...y.org> To: Stephen Smalley <sds@...ho.nsa.gov> Cc: "David P. Quigley" <dpquigl@...ho.nsa.gov>, Greg KH <greg@...ah.com>, linux-kernel@...r.kernel.org, Greg KH <gregkh@...e.de>, Jan Blunck <jblunck@...e.de>, James Morris <jmorris@...ei.org>, Eric Paris <eparis@...isplace.org>, David Howells <dhowells@...hat.com> Subject: Re: [patch 00/13] devtmpfs patches On Wed, May 13, 2009 at 14:22, Stephen Smalley <sds@...ho.nsa.gov> wrote: > I think you'll actually need to switch credentials around the entire > sequence starting from vfs_path_lookup() and going through the > vfs_mknod() call in order to avoid any denials from vfs_path_lookup, > vfs_mkdir (via create_path), and vfs_mknod. > > Then the same issue applies to devtmpfs_delete_node() to prevent unlink > denials against the current process when a node is removed, similarly > wrapping everything from the vfs_path_lookup() through the final > delete_path() call. Ok, good, will do that. Anything like this to keep in mind when creating/removing simple subdirectories? Thanks, Kay -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists