Re: [PATCH v2 1/2] exec: add a flag for "reasonable" execveat() comm

From: Eric W. Biederman
Date: Mon Sep 30 2024 - 16:11:24 EST

Next message: Jeff Layton: "Re: [PATCH v8 01/11] timekeeping: move multigrain timestamp floor handling into timekeeper"
Previous message: Andrew Lunn: "Re: [PATCH 1/2] net: mdio: switch to scoped device_for_each_child_node()"
In reply to: Kees Cook: "Re: [PATCH v2 1/2] exec: add a flag for "reasonable" execveat() comm"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

"Eric W. Biederman" <ebiederm@xxxxxxxxxxxx> writes:

> Kees Cook <kees@xxxxxxxxxx> writes:

>> I'm not super comfortable doing this regardless of bprm->fdpath; that
>> seems like too many cases getting changed. Can we just leave it as
>> depending on bprm->fdpath?

I was recommending that because I did not expect that there was any
widespread usage of aliasing of binary names using symlinks.

I realized today that on debian there are many aliases
of binaries created with the /etc/alternatives mechanism.
So there is much wider exposure to problems than I would have
supposed.

So I remove any objections to making the new code conditional on bprm->fdpath.

Eric

Next message: Jeff Layton: "Re: [PATCH v8 01/11] timekeeping: move multigrain timestamp floor handling into timekeeper"
Previous message: Andrew Lunn: "Re: [PATCH 1/2] net: mdio: switch to scoped device_for_each_child_node()"
In reply to: Kees Cook: "Re: [PATCH v2 1/2] exec: add a flag for "reasonable" execveat() comm"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]