Re: [PATCH v2 0/5] Add support for O_MAYEXEC

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Re: [PATCH v2 0/5] Add support for O_MAYEXEC
From: Florian Weimer <fweimer@xxxxxxxxxx>
Date: Fri, 06 Sep 2019 20:57:00 +0200
Cc: Mickaël Salaün <mic@xxxxxxxxxxx>, linux-kernel@xxxxxxxxxxxxxxx, Aleksa Sarai <cyphar@xxxxxxxxxx>, Alexei Starovoitov <ast@xxxxxxxxxx>, Al Viro <viro@xxxxxxxxxxxxxxxxxx>, Andy Lutomirski <luto@xxxxxxxxxx>, Christian Heimes <christian@xxxxxxxxxx>, Daniel Borkmann <daniel@xxxxxxxxxxxxx>, Eric Chiang <ericchiang@xxxxxxxxxx>, James Morris <jmorris@xxxxxxxxx>, Jan Kara <jack@xxxxxxx>, Jann Horn <jannh@xxxxxxxxxx>, Jonathan Corbet <corbet@xxxxxxx>, Kees Cook <keescook@xxxxxxxxxxxx>, Matthew Garrett <mjg59@xxxxxxxxxx>, Matthew Wilcox <willy@xxxxxxxxxxxxx>, Michael Kerrisk <mtk.manpages@xxxxxxxxx>, Mickaël Salaün <mickael.salaun@xxxxxxxxxxx>, Mimi Zohar <zohar@xxxxxxxxxxxxx>, Philippe Trébuchet <philippe.trebuchet@xxxxxxxxxxx>, Scott Shell <scottsh@xxxxxxxxxxxxx>, Sean Christopherson <sean.j.christopherson@xxxxxxxxx>, Shuah Khan <shuah@xxxxxxxxxx>, Song Liu <songliubraving@xxxxxx>, Steve Dower <steve.dower@xxxxxxxxxx>, Thibaut Sautereau <thibaut.sautereau@xxxxxxxxxxx>, Vincent Strubel <vincent.strubel@xxxxxxxxxxx>, Yves-Alexis Perez <yves-alexis.perez@xxxxxxxxxxx>, kernel-hardening@xxxxxxxxxxxxxxxxxx, linux-api@xxxxxxxxxxxxxxx, linux-security-module@xxxxxxxxxxxxxxx, linux-fsdevel@xxxxxxxxxxxxxxx
Delivered-to: mailing list kernel-hardening@xxxxxxxxxxxxxxxxxx
In-reply-to: <2989749.1YmIBkDdQn@x2> (Steve Grubb's message of "Fri, 06 Sep 2019 14:50:02 -0400")
Mailing-list: contact kernel-hardening-help@xxxxxxxxxxxxxxxxxx; run by ezmlm
User-agent: Gnus/5.13 (Gnus v5.13) Emacs/26.2 (gnu/linux)

* Steve Grubb:

> Now with LD_AUDIT
> $ LD_AUDIT=/home/sgrubb/test/openflags/strip-flags.so.0 strace ./test 2>&1 | grep passwd
> openat(3, "passwd", O_RDONLY)           = 4
>
> No O_CLOEXEC flag.

I think you need to explain in detail why you consider this a problem.

With LD_PRELOAD and LD_AUDIT, you can already do anything, including
scanning other loaded objects for a system call instruction and jumping
to that (in case a security module in the kernel performs a PC check to
confer additional privileges).

Thanks,
Florian

Follow-Ups:
- Re: [PATCH v2 0/5] Add support for O_MAYEXEC
  - From: Steve Grubb

References:
- [PATCH v2 0/5] Add support for O_MAYEXEC
  - From: Mickaël Salaün
- Re: [PATCH v2 0/5] Add support for O_MAYEXEC
  - From: Steve Grubb

Prev by Date: Re: [PATCH v2 0/5] Add support for O_MAYEXEC
Next by Date: Re: [PATCH v2 1/5] fs: Add support for an O_MAYEXEC flag on sys_open()
Previous by thread: Re: [PATCH v2 0/5] Add support for O_MAYEXEC
Next by thread: Re: [PATCH v2 0/5] Add support for O_MAYEXEC
Index(es):
- Date
- Thread

[Index of Archives] [Linux Samsung SoC] [Linux Rockchip SoC] [Linux Actions SoC] [Linux for Synopsys ARC Processors] [Linux NFS] [Linux NILFS] [Linux USB Devel] [Video for Linux] [Linux Audio Users] [Yosemite News] [Linux Kernel] [Linux SCSI]