Re: [RFC] Capabilities still can't be inherited by normal programs

From: Serge Hallyn
Date: Mon Dec 10 2012 - 09:36:04 EST

Next message: Andy Shevchenko: "[PATCHv2 2/2] dw_dmac: check for mapping errors"
Previous message: Mark Brown: "Re: [PATCH 01/12] regulator: gpio-regulator: Demote GPIO Regulatordriver to start later"
In reply to: Andy Lutomirski: "Re: [RFC] Capabilities still can't be inherited by normal programs"
Next in thread: Serge Hallyn: "Re: [RFC] Capabilities still can't be inherited by normal programs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Quoting Andrew G. Morgan (morgan@xxxxxxxxxx):
> > It breaks down because, currently, users with nonzero pI have no
> > direct ability to wield the capabilities. That means that every
> > single binary with fI bits set needs to be as careful as a setuid-root
> > binary to avoid leaking privilege to the caller. (Obviously, binaries
> > with fP set need to be careful. IMO binaries with only fI set should
> > not need to exercise any particular care to defend themselves from
> > their callers.)
>
> True.

Uh, I disagree. Not true.

(I suspect Andrew meant True to the first two sentences, not the
last parenthesized one?)

-serge
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Andy Shevchenko: "[PATCHv2 2/2] dw_dmac: check for mapping errors"
Previous message: Mark Brown: "Re: [PATCH 01/12] regulator: gpio-regulator: Demote GPIO Regulatordriver to start later"
In reply to: Andy Lutomirski: "Re: [RFC] Capabilities still can't be inherited by normal programs"
Next in thread: Serge Hallyn: "Re: [RFC] Capabilities still can't be inherited by normal programs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]