Re: [PATCH] split security_key_alloc into two functions
- From: Stephen Smalley <sds@xxxxxxxxxxxxx>
- Date: Tue, 28 Mar 2006 09:18:52 -0500
On Tue, 2006-03-28 at 07:53 -0600, Serge E. Hallyn wrote:
Quoting Stephen Smalley (sds@xxxxxxxxxxxxx):
Are you sure that the key cannot be accessed (looked up) by another
process as soon as it is assigned a serial number? If it can be, then
you risk having it accessed before its security structure is set up.
Ah, that makes sense, and even rings a bell.
So if we were to add a post_alloc() hook, it should likely go into
key_alloc_serial() under the key_serial_lock?
Still assuming that storing the serial number is desirable...
I'm not sure how/why SELinux would want that information, as we would
just be labeling the key based on its creator (possibly via a transition
computation to allow derived types), and then later possibly support
explicit labeling by security-aware applications as permitted by policy.
Serial number wouldn't be used for access control, and audit is being
handled separately these days (e.g. one might introduce audit hooks to
collect the serial number at the right points for later inclusion in
audit records emitted at syscall exit).
--
Stephen Smalley
National Security Agency
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
- References:
- [PATCH] split security_key_alloc into two functions
- From: Serge E. Hallyn
- Re: [PATCH] split security_key_alloc into two functions
- From: Stephen Smalley
- Re: [PATCH] split security_key_alloc into two functions
- From: Serge E. Hallyn
- [PATCH] split security_key_alloc into two functions
- Prev by Date: Re: [PATCH] split security_key_alloc into two functions
- Next by Date: Re: Correction: 2.6.16-git12 killed networking -- 3c900 card
- Previous by thread: Re: [PATCH] split security_key_alloc into two functions
- Next by thread: Re: [PATCH] split security_key_alloc into two functions
- Index(es):
Relevant Pages
- RE: syslog
... For the same kind of environment, I am using Computer Associates eTrust ...
Audit integrated with Security command center for an easy event management ... and
consolidation of logs + administration of all the Security ... (Security-Basics) - RE: Blue Team ROE
... These types of constraints are a way to create the illusion of due ... diligence
in that they are having an outside company perform a security ... the audit by client
constraints. ... Cenzic Hailstorm finds vulnerabilities fast. ... (Pen-Test) - Re: How to determine who changed permissions on a directory?
... I used the "Security Monitoring and Attack Detection Planning Guide" from ...
Audit Account Logon events - Success, Failure ... Audit Object Access - Success,
... (microsoft.public.security) - Re: How to determine who changed permissions on a directory?
... I used the "Security Monitoring and Attack Detection Planning Guide" from ...
Audit Account Logon events - Success, Failure ... Audit Object Access - Success,
... (microsoft.public.security) - RE: [lists] How tos in Hacking AS400
... In 15 minutes I made the $40K I charged for the audit. ... If you spend more
on coffee than on IT security, ... Download FREE whitepaper on how a managed
service can help ... (Pen-Test)
