| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 23 Jan 2014 20:31:24 +0100 From: Kay Sievers <kay@...y.org> To: Jan Kaluža <jkaluza@...hat.com> Cc: Tejun Heo <tj@...nel.org>, Eric Paris <eparis@...hat.com>, David Miller <davem@...emloft.net>, LKML <linux-kernel@...r.kernel.org>, netdev@...r.kernel.org, rgb@...hat.com, lizefan@...wei.com, containers@...ts.linux-foundation.org, cgroups@...r.kernel.org, viro@...iv.linux.org.uk Subject: Re: [PATCH v4 0/3] Send audit/procinfo/cgroup data in socket-level control message On Thu, Jan 16, 2014 at 10:29 AM, Jan Kaluža <jkaluza@...hat.com> wrote: > On 01/16/2014 12:23 AM, Tejun Heo wrote: >> On Wed, Jan 15, 2014 at 06:21:43PM -0500, Eric Paris wrote: >>> >>> Reliably being able to audit what process requested an action is >>> extremely useful. And I like the audit patch, as it is a couple of ints >>> we are storing. >>> >>> procinfo and cgroup can both be up to 4k of data. >>> >>> Is there an alternative he should consider? Some way to grab a >>> reference on task_struct and just attach that to the message? >> >> Or maybe it can be made separately optional instead of tagging along >> on an existing option so that it doesn't tax use cases which don't >> care about the new stuff? > > Right, I could add new option next to SOCK_PASSCRED which could be used to > send newly added stuff. Would this be acceptable? > > I would still vote for SCM_AUDIT to be part of SOCK_PASSCRED and move > SCM_CGROUP and SCM_PROCINFO into new option. Maybe we could just add a new SOCK_PASS_TASKINFO bit to set in socket->flags. Set that bit with a new SO_PASS_TASKINFO sockoption. The SOCK_PASS_TASKINFO can carry all sorts of "struct task" related stuff, also include the audit data. It is all fully conditional, so users which do not explicitly subscribe to TASKINFO will never see the data or needlessly pay for the overhead. A TASKINFO sounds generic enough to be possibly extended with new data in the future, without wasting extra bits in the socket flags. Users which subscribe with SO_PASS_TASKINFO expect some overhead anyway. In the end it's still a lot cheaper than parsing /proc for the data; which is also racy and does therefore not work for any short-living program. Thanks, Kay -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists