Re: [PATCH 5/6] proc: make check_mem_permission() return an mm_struct on success

From: KOSAKI Motohiro
Date: Wed Mar 09 2011 - 01:20:25 EST

Next message: Mahesh Jagannath Salgaonkar: "Re: [PATCH 1/2] kdump: Allow shrinking of kdump region to be overridden"
Previous message: KOSAKI Motohiro: "Re: [PATCH] mm: check zone->all_unreclaimable in all_unreclaimable()"
In reply to: Stephen Wilson: "[PATCH 5/6] proc: make check_mem_permission() return an mm_struct on success"
Next in thread: Stephen Wilson: "[PATCH 4/6] proc: disable mem_write after exec"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> This change allows us to take advantage of access_remote_vm(), which in turn
> enables a secure mem_write() implementation.
>
> The previous implementation of mem_write() was insecure since the target task
> could exec a setuid-root binary between the permission check and the actual
> write. Holding a reference to the target mm_struct eliminates this
> vulnerability.
>
> Signed-off-by: Stephen Wilson <wilsons@xxxxxxxx>

OK, I like this idea. So, I suppose you will resend newer version as applied Al's
comment and I'll be able to ack this.

Thanks.

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Mahesh Jagannath Salgaonkar: "Re: [PATCH 1/2] kdump: Allow shrinking of kdump region to be overridden"
Previous message: KOSAKI Motohiro: "Re: [PATCH] mm: check zone->all_unreclaimable in all_unreclaimable()"
In reply to: Stephen Wilson: "[PATCH 5/6] proc: make check_mem_permission() return an mm_struct on success"
Next in thread: Stephen Wilson: "[PATCH 4/6] proc: disable mem_write after exec"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]