| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 29 Nov 2016 00:41:13 +0100 From: José Bollo <jobol@...adev.net> To: Tetsuo Handa <penguin-kernel@...ove.SAKURA.ne.jp> Cc: linux-security-module@...r.kernel.org, linux-kernel@...r.kernel.org Subject: Re: [RFC 1/1] LSM ptags: Add tagging of processes Le lundi 28 novembre 2016 à 22:41 +0900, Tetsuo Handa a écrit : > Jose Bollo wrote: > > The fact is that ptags is seat behind the implementation of the > > special > > files in /proc/PID/attr/.. Thus, it has to return an allocated > > buffer. > > I'm not aware of what kind of allocation is possible to use for > > this > > subsystem. Is it possible to use vmalloc? I dont know. > > If you replace kfree() with kvfree() in proc_pid_attr_read() in > fs/proc/base.c , > you will be able to use vmalloc(). However, proc_pid_attr_write() > accepts only > PAGE_SIZE bytes from the beginning. If you want to use attributes > longer than > PAGE_SIZE bytes, I think that you will need to use a different > interface because > implementing I/O protocol for ptags which reads/writes PAGE_SIZE > bytes chunk > at a time using /proc/PID/attr/ interface is not userspace friendly. Limiting a line of write to the length of PAGE_SIZE is ok for me. Limiting the space of tags for a thread to 32700 is also ok for me. It is safe, careful and sensible. These limits will allow to advance in the use of ptags without modifying much things. Best regards José
Powered by blists - more mailing lists