Re: [PATCH 2.6.5-mm4] sys_access race fix

From: Chris Wright
Date: Tue Apr 13 2004 - 19:17:30 EST

Next message: Hanna Linder: "[PATCH 2.6.5] Add class support to drivers/char/ip2main.c"
Previous message: Andrew Morton: "Re: [PATCH] Increase number of dynamic inodes in procfs (2.6.5)"
In reply to: Andrew Morton: "Re: [PATCH 2.6.5-mm4] sys_access race fix"
Next in thread: Jamie Lokier: "Re: [PATCH 2.6.5-mm4] sys_access race fix"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

* Andrew Morton (akpm@xxxxxxxx) wrote:
> Do races in access() actually matter? I mean, some other process could
> change things a nanosecond after access() has completed and the value which
> the access() caller received is wrong anyway.
>
> Or is there some deeper problem which you are addressing here?

There is a race where, the saved off capabilities could blow away recently
updated capabilites when they are restored. But, it's only raceable
against tasks that have SETPCAP and are setting another task's caps.
Otherwise it's serialised by the fact that we're dealing with a single
task that can only be in one syscall at a time. Fixing it would require
something like passing creds into the permission function, instead of
them being deduced from current, a rather invasive change.

thanks,
-chris
--
Linux Security Modules http://lsm.immunix.org http://lsm.bkbits.net
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Hanna Linder: "[PATCH 2.6.5] Add class support to drivers/char/ip2main.c"
Previous message: Andrew Morton: "Re: [PATCH] Increase number of dynamic inodes in procfs (2.6.5)"
In reply to: Andrew Morton: "Re: [PATCH 2.6.5-mm4] sys_access race fix"
Next in thread: Jamie Lokier: "Re: [PATCH 2.6.5-mm4] sys_access race fix"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]