Re: [PATCH v4 1/5] fs: Add support for an O_MAYEXEC flag on openat2(2)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Mickaël Salaün <mic@xxxxxxxxxxx>, linux-kernel@xxxxxxxxxxxxxxx
Subject: Re: [PATCH v4 1/5] fs: Add support for an O_MAYEXEC flag on openat2(2)
From: Deven Bowers <deven.desai@xxxxxxxxxxxxxxxxxxx>
Date: Fri, 1 May 2020 13:36:08 -0700
Cc: Aleksa Sarai <cyphar@xxxxxxxxxx>, Alexei Starovoitov <ast@xxxxxxxxxx>, Al Viro <viro@xxxxxxxxxxxxxxxxxx>, Andy Lutomirski <luto@xxxxxxxxxx>, Christian Heimes <christian@xxxxxxxxxx>, Daniel Borkmann <daniel@xxxxxxxxxxxxx>, Eric Chiang <ericchiang@xxxxxxxxxx>, Florian Weimer <fweimer@xxxxxxxxxx>, James Morris <jmorris@xxxxxxxxx>, Jan Kara <jack@xxxxxxx>, Jann Horn <jannh@xxxxxxxxxx>, Jonathan Corbet <corbet@xxxxxxx>, Kees Cook <keescook@xxxxxxxxxxxx>, Matthew Garrett <mjg59@xxxxxxxxxx>, Matthew Wilcox <willy@xxxxxxxxxxxxx>, Michael Kerrisk <mtk.manpages@xxxxxxxxx>, Mickaël Salaün <mickael.salaun@xxxxxxxxxxx>, Mimi Zohar <zohar@xxxxxxxxxxxxx>, Philippe Trébuchet <philippe.trebuchet@xxxxxxxxxxx>, Scott Shell <scottsh@xxxxxxxxxxxxx>, Sean Christopherson <sean.j.christopherson@xxxxxxxxx>, Shuah Khan <shuah@xxxxxxxxxx>, Steve Dower <steve.dower@xxxxxxxxxx>, Steve Grubb <sgrubb@xxxxxxxxxx>, Thibaut Sautereau <thibaut.sautereau@xxxxxxxxxxx>, Vincent Strubel <vincent.strubel@xxxxxxxxxxx>, kernel-hardening@xxxxxxxxxxxxxxxxxx, linux-api@xxxxxxxxxxxxxxx, linux-security-module@xxxxxxxxxxxxxxx, linux-fsdevel@xxxxxxxxxxxxxxx
In-reply-to: <20200430132320.699508-2-mic@digikod.net>
User-agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:68.0) Gecko/20100101 Thunderbird/68.7.0



On 4/30/2020 6:23 AM, Mickaël Salaün wrote:

When the O_MAYEXEC flag is passed, openat2(2) may be subject to
additional restrictions depending on a security policy managed by the
kernel through a sysctl or implemented by an LSM thanks to the

inode_permission hook.This new flag is ignored by open(2) and openat(2).


Reviewed-by: Deven Bowers <deven.desai@xxxxxxxxxxxxxxxxxxx>

References:
- [PATCH v4 0/5] Add support for O_MAYEXEC
  - From: Mickaël Salaün
- [PATCH v4 1/5] fs: Add support for an O_MAYEXEC flag on openat2(2)
  - From: Mickaël Salaün

Prev by Date: Re: [PATCH 2/2] epoll: atomically remove wait entry on wake up
Next by Date: Re: [PATCH 2/2] exec: open code copy_string_kernel
Previous by thread: [PATCH v4 1/5] fs: Add support for an O_MAYEXEC flag on openat2(2)
Next by thread: [PATCH] pipe: read/write_iter() handler should check for IOCB_NOWAIT
Index(es):
- Date
- Thread

[Index of Archives] [Linux Ext4 Filesystem] [Union Filesystem] [Filesystem Testing] [Ceph Users] [Ecryptfs] [AutoFS] [Kernel Newbies] [Share Photos] [Security] [Netfilter] [Bugtraq] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux Cachefs] [Reiser Filesystem] [Linux RAID] [Samba] [Device Mapper] [CEPH Development]