RE: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec

[PATCH 0/2] fs/exec: Explicitly unshare fs_struct on exec · Kees Cook <hidden> · 2022-10-06
[PATCH 2/2] exec: Remove LSM_UNSAFE_SHARE · Kees Cook <hidden> · 2022-10-06
[PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec · Kees Cook <hidden> · 2022-10-06
Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec · Christian Brauner <brauner@kernel.org> · 2022-10-06
RE: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec · David Laight <hidden> · 2022-10-06
Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec · Jann Horn <jannh@google.com> · 2022-10-06
Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec · Kees Cook <hidden> · 2022-10-06
Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec · Jann Horn <jannh@google.com> · 2022-10-06
Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec · Mateusz Guzik <hidden> · 2025-05-13
Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec · Kees Cook <kees@kernel.org> · 2025-05-13
Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec · Jann Horn <jannh@google.com> · 2025-05-13
Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec · Kees Cook <kees@kernel.org> · 2025-05-13
Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec · "Andy Lutomirski" <luto@kernel.org> · 2022-10-14
Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec · Kees Cook <hidden> · 2022-10-14
Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec · Jann Horn <jannh@google.com> · 2022-10-14
Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec · Kees Cook <hidden> · 2022-10-18
Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec · Jann Horn <jannh@google.com> · 2022-10-18
RE: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec · David Laight <hidden> · 2022-10-14

From: David Laight <hidden>
Date: 2022-10-14 22:03:35
Also in: linux-fsdevel, linux-hardening, linux-mm, lkml, selinux

From: Andy Lutomirski

Sent: 14 October 2022 04:18

...

But seriously, this makes no sense at all.  It should not be possible to exec a program and then,
without ptrace, change its cwd out from under it.  Do we really need to preserve this behavior?

it maybe ok if the exec'ed program also 'bought-in' to the
fact that its cwd and open files might get changed.
But imagine someone doing it to a login shell!

	David

-
Registered Address Lakeside, Bramley Road, Mount Farm, Milton Keynes, MK1 1PT, UK
Registration No: 1397386 (Wales)

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help