| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20240821.oBeepeel9ir1@digikod.net> Date: Wed, 21 Aug 2024 12:13:28 +0200 From: Mickaël Salaün <mic@...ikod.net> To: Tahera Fahimi <fahimitahera@...il.com> Cc: outreachy@...ts.linux.dev, gnoack@...gle.com, paul@...l-moore.com, jmorris@...ei.org, serge@...lyn.com, linux-security-module@...r.kernel.org, linux-kernel@...r.kernel.org, bjorn3_gh@...tonmail.com, jannh@...gle.com, netdev@...r.kernel.org Subject: Re: [PATCH v3 2/6] Landlock: Adding file_send_sigiotask signal scoping support On Thu, Aug 15, 2024 at 12:29:21PM -0600, Tahera Fahimi wrote: > This patch adds two new hooks "hook_file_set_fowner" and > "hook_file_free_security" to set and release a pointer to the > domain of the file owner. This pointer "fown_domain" in > "landlock_file_security" will be used in "file_send_sigiotask" > to check if the process can send a signal. > > Signed-off-by: Tahera Fahimi <fahimitahera@...il.com> > --- > security/landlock/fs.c | 18 ++++++++++++++++++ > security/landlock/fs.h | 6 ++++++ > security/landlock/task.c | 27 +++++++++++++++++++++++++++ > 3 files changed, 51 insertions(+) Please squash this patch with the previous one, both are enforcing the signal scoping restriction with LANDLOCK_SCOPED_SIGNAL. You'll also need to update the scoped_test.c file with LANDLOCK_SCOPED_SIGNAL (in this same squashed patch).
Powered by blists - more mailing lists