Re: [PATCH v20 1/6] exec: Add a new AT_CHECK flag to execveat(2)

[PATCH v20 0/6] Script execution control (was O_MAYEXEC) · Mickaël Salaün <mic@digikod.net> · 2024-10-11
[PATCH v20 1/6] exec: Add a new AT_CHECK flag to execveat(2) · Mickaël Salaün <mic@digikod.net> · 2024-10-11
Re: [PATCH v20 1/6] exec: Add a new AT_CHECK flag to execveat(2) · "Serge E. Hallyn" <serge@hallyn.com> · 2024-10-13
Re: [PATCH v20 1/6] exec: Add a new AT_CHECK flag to execveat(2) · Mickaël Salaün <mic@digikod.net> · 2024-10-14
Re: [PATCH v20 1/6] exec: Add a new AT_CHECK flag to execveat(2) · sergeh@kernel.org · 2024-10-15
Re: [PATCH v20 1/6] exec: Add a new AT_CHECK flag to execveat(2) · Amir Goldstein <amir73il@gmail.com> · 2024-10-13
Re: [PATCH v20 1/6] exec: Add a new AT_CHECK flag to execveat(2) · Mickaël Salaün <mic@digikod.net> · 2024-10-14
Re: [PATCH v20 1/6] exec: Add a new AT_CHECK flag to execveat(2) · Amir Goldstein <amir73il@gmail.com> · 2024-10-14
[PATCH v20 4/6] selftests/landlock: Add tests for execveat + AT_CHECK · Mickaël Salaün <mic@digikod.net> · 2024-10-11
[PATCH v20 2/6] security: Add EXEC_RESTRICT_FILE and EXEC_DENY_INTERACTIVE securebits · Mickaël Salaün <mic@digikod.net> · 2024-10-11
Re: [PATCH v20 2/6] security: Add EXEC_RESTRICT_FILE and EXEC_DENY_INTERACTIVE securebits · "Serge E. Hallyn" <serge@hallyn.com> · 2024-10-13
Re: [PATCH v20 2/6] security: Add EXEC_RESTRICT_FILE and EXEC_DENY_INTERACTIVE securebits · Mickaël Salaün <mic@digikod.net> · 2024-10-14
Re: [PATCH v20 2/6] security: Add EXEC_RESTRICT_FILE and EXEC_DENY_INTERACTIVE securebits · sergeh@kernel.org · 2024-10-15
Re: [PATCH v20 2/6] security: Add EXEC_RESTRICT_FILE and EXEC_DENY_INTERACTIVE securebits · sergeh@kernel.org · 2024-10-15
[PATCH v20 5/6] samples/check-exec: Add set-exec · Mickaël Salaün <mic@digikod.net> · 2024-10-11
[PATCH v20 3/6] selftests/exec: Add 32 tests for AT_CHECK and exec securebits · Mickaël Salaün <mic@digikod.net> · 2024-10-11
[PATCH v20 6/6] samples/check-exec: Add an enlighten "inc" interpreter and 28 tests · Mickaël Salaün <mic@digikod.net> · 2024-10-11

From: sergeh@kernel.org
Date: 2024-10-15 03:21:08
Also in: linux-fsdevel, linux-integrity, linux-security-module, lkml

On Mon, Oct 14, 2024 at 09:39:52AM +0200, Mickaël Salaün wrote:

On Sat, Oct 12, 2024 at 10:04:16PM -0500, Serge E. Hallyn wrote:

quoted

On Fri, Oct 11, 2024 at 08:44:17PM +0200, Mickaël Salaün wrote:

quoted

Add a new AT_CHECK flag to execveat(2) to check if a file would be

Apologies for both bikeshedding and missing earlier discussions.

But AT_CHECK sounds quite generic.  How about AT_EXEC_CHECK, or
AT_CHECK_EXEC_CREDS?  (I would suggest just AT_CHECK_CREDS since
it's for use in execveat(2), but as it's an AT_ flag, it's
probably worth being more precise).

As Amir pointed out, we need at least to use the AT_EXECVE_CHECK_
prefix, and I agree with the AT_EXECVE_CHECK name because it's about
checking the whole execve request, not sepcifically a "creds" part.

Well, not the whole.  You are explicitly not checking the validity of the
files.

But ok.  With that,

Reviewed-by: Serge Hallyn <sergeh@kernel.org>

thanks,
-serge

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help