Re: [PATCH v3 0/5] Add support for RESOLVE_MAYEXEC

[PATCH v3 0/5] Add support for RESOLVE_MAYEXEC · Mickaël Salaün <mic@digikod.net> · 2020-04-28
[PATCH v3 2/5] fs: Add a MAY_EXECMOUNT flag to infer the noexec mount property · Mickaël Salaün <mic@digikod.net> · 2020-04-28
Re: [PATCH v3 2/5] fs: Add a MAY_EXECMOUNT flag to infer the noexec mount property · James Morris <jmorris@namei.org> · 2020-05-01
Re: [PATCH v3 2/5] fs: Add a MAY_EXECMOUNT flag to infer the noexec mount property · Mickaël Salaün <mic@digikod.net> · 2020-05-01
[PATCH v3 3/5] fs: Enable to enforce noexec mounts or file exec through RESOLVE_MAYEXEC · Mickaël Salaün <mic@digikod.net> · 2020-04-28
Re: [PATCH v3 3/5] fs: Enable to enforce noexec mounts or file exec through RESOLVE_MAYEXEC · James Morris <jmorris@namei.org> · 2020-05-01
Re: [PATCH v3 3/5] fs: Enable to enforce noexec mounts or file exec through RESOLVE_MAYEXEC · Mickaël Salaün <mic@digikod.net> · 2020-05-01
Re: [PATCH v3 3/5] fs: Enable to enforce noexec mounts or file exec through RESOLVE_MAYEXEC · James Morris <jmorris@namei.org> · 2020-05-01
[PATCH v3 5/5] doc: Add documentation for the fs.open_mayexec_enforce sysctl · Mickaël Salaün <mic@digikod.net> · 2020-04-28
[PATCH v3 1/5] fs: Add support for a RESOLVE_MAYEXEC flag on openat2(2) · Mickaël Salaün <mic@digikod.net> · 2020-04-28
Re: [PATCH v3 1/5] fs: Add support for a RESOLVE_MAYEXEC flag on openat2(2) · James Morris <jmorris@namei.org> · 2020-05-01
Re: [PATCH v3 1/5] fs: Add support for a RESOLVE_MAYEXEC flag on openat2(2) · Mickaël Salaün <mic@digikod.net> · 2020-05-01
[PATCH v3 4/5] selftest/openat2: Add tests for RESOLVE_MAYEXEC enforcing · Mickaël Salaün <mic@digikod.net> · 2020-04-28
Re: [PATCH v3 0/5] Add support for RESOLVE_MAYEXEC · Jann Horn <jannh@google.com> · 2020-04-28
Re: [PATCH v3 0/5] Add support for RESOLVE_MAYEXEC · Aleksa Sarai <hidden> · 2020-04-30
Re: [PATCH v3 0/5] Add support for RESOLVE_MAYEXEC · Christian Brauner <hidden> · 2020-04-30
Re: [PATCH v3 0/5] Add support for RESOLVE_MAYEXEC · Mickaël Salaün <mic@digikod.net> · 2020-04-30
Re: [PATCH v3 0/5] Add support for RESOLVE_MAYEXEC · James Morris <jmorris@namei.org> · 2020-05-01

From: Christian Brauner <hidden>
Date: 2020-04-30 08:08:00
Also in: linux-fsdevel, linux-security-module, lkml

On Thu, Apr 30, 2020 at 11:54:29AM +1000, Aleksa Sarai wrote:

On 2020-04-28, Mickaël Salaün [off-list ref] wrote:

quoted

The goal of this patch series is to enable to control script execution
with interpreters help.  A new RESOLVE_MAYEXEC flag, usable through
openat2(2), is added to enable userspace script interpreter to delegate
to the kernel (and thus the system security policy) the permission to
interpret/execute scripts or other files containing what can be seen as
commands.

This third patch series mainly differ from the previous one by relying
on the new openat2(2) system call to get rid of the undefined behavior
of the open(2) flags.  Thus, the previous O_MAYEXEC flag is now replaced
with the new RESOLVE_MAYEXEC flag and benefits from the openat2(2)
strict check of this kind of flags.

My only strong upfront objection is with this being a RESOLVE_ flag.

RESOLVE_ flags have a specific meaning (they generally apply to all
components, and affect the rules of path resolution). RESOLVE_MAYEXEC
does neither of these things and so seems out of place among the other
RESOLVE_ flags.

I would argue this should be an O_ flag, but not supported for the

I agree.

Christian

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help