Re: syscall: sys_promote

From: Qi Yong
Date: Wed Aug 31 2005 - 02:59:09 EST

Next message: Mark Underwood: "Re: SPI redux ... driver model support"
Previous message: Florian Weimer: "Re: Atheros and rt2x00 driver"
In reply to: Qi Yong: "Re: syscall: sys_promote"
Next in thread: Erik Mouw: "Re: syscall: sys_promote"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Alan Cox wrote:

On Llu, 2005-08-29 at 11:54 +0800, qiyong wrote:

We can ignore it safely. sys_promote is a different approach from selinux. sys_promote is to let sysadmin manually manipulate a running process,

You can ignore the patch easily enough. Ignoring the locking doesn't
work because functionality like fork process counting, exec, and setuid
all make definite assumptions that are not safe to tamper without unless
you fix the uid locking.

Will this be helpful?

kill -STOP $pid
promote $pid
kill -CONT $pid

Fixing it might be useful in some obscure cases anyway - POSIX threads
might benefit from it too, providing the functionality of changing all
thread uids at once isnt triggered for sensible threaded app behaviour.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Mark Underwood: "Re: SPI redux ... driver model support"
Previous message: Florian Weimer: "Re: Atheros and rt2x00 driver"
In reply to: Qi Yong: "Re: syscall: sys_promote"
Next in thread: Erik Mouw: "Re: syscall: sys_promote"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]