Re: [PATCH v10 5/8] rust: security: add abstraction for secctx

[PATCH v10 0/8] File abstractions needed by Rust Binder · Alice Ryhl <aliceryhl@google.com> · 2024-09-15
[PATCH v10 1/8] rust: types: add `NotThreadSafe` · Alice Ryhl <aliceryhl@google.com> · 2024-09-15
Re: [PATCH v10 1/8] rust: types: add `NotThreadSafe` · Gary Guo <gary@garyguo.net> · 2024-09-15
Re: [PATCH v10 1/8] rust: types: add `NotThreadSafe` · Miguel Ojeda <hidden> · 2024-09-27
Re: [PATCH v10 1/8] rust: types: add `NotThreadSafe` · "Serge E. Hallyn" <serge@hallyn.com> · 2024-09-24
Re: [PATCH v10 1/8] rust: types: add `NotThreadSafe` · Alice Ryhl <aliceryhl@google.com> · 2024-09-25
Re: [PATCH v10 1/8] rust: types: add `NotThreadSafe` · "Serge E. Hallyn" <serge@hallyn.com> · 2024-09-25
Re: [PATCH v10 1/8] rust: types: add `NotThreadSafe` · Gary Guo <gary@garyguo.net> · 2024-09-27
[PATCH v10 2/8] rust: task: add `Task::current_raw` · Alice Ryhl <aliceryhl@google.com> · 2024-09-15
[PATCH v10 3/8] rust: file: add Rust abstraction for `struct file` · Alice Ryhl <aliceryhl@google.com> · 2024-09-15
Re: [PATCH v10 3/8] rust: file: add Rust abstraction for `struct file` · Gary Guo <gary@garyguo.net> · 2024-09-15
[PATCH v10 4/8] rust: cred: add Rust abstraction for `struct cred` · Alice Ryhl <aliceryhl@google.com> · 2024-09-15
Re: [PATCH v10 4/8] rust: cred: add Rust abstraction for `struct cred` · Kees Cook <kees@kernel.org> · 2024-09-15
Re: [PATCH v10 4/8] rust: cred: add Rust abstraction for `struct cred` · Alice Ryhl <aliceryhl@google.com> · 2024-09-15
Re: [PATCH v10 4/8] rust: cred: add Rust abstraction for `struct cred` · Paul Moore <paul@paul-moore.com> · 2024-09-19
[PATCH v10 5/8] rust: security: add abstraction for secctx · Alice Ryhl <aliceryhl@google.com> · 2024-09-15
Re: [PATCH v10 5/8] rust: security: add abstraction for secctx · Kees Cook <kees@kernel.org> · 2024-09-15
Re: [PATCH v10 5/8] rust: security: add abstraction for secctx · Alice Ryhl <aliceryhl@google.com> · 2024-09-15
Re: [PATCH v10 5/8] rust: security: add abstraction for secctx · Casey Schaufler <casey@schaufler-ca.com> · 2024-09-16
Re: [PATCH v10 5/8] rust: security: add abstraction for secctx · Paul Moore <paul@paul-moore.com> · 2024-09-17
Re: [PATCH v10 5/8] rust: security: add abstraction for secctx · Alice Ryhl <aliceryhl@google.com> · 2024-09-22
Re: [PATCH v10 5/8] rust: security: add abstraction for secctx · Alice Ryhl <aliceryhl@google.com> · 2024-09-22
Re: [PATCH v10 5/8] rust: security: add abstraction for secctx · Casey Schaufler <casey@schaufler-ca.com> · 2024-09-22
Re: [PATCH v10 5/8] rust: security: add abstraction for secctx · Alice Ryhl <aliceryhl@google.com> · 2024-09-22
Re: [PATCH v10 5/8] rust: security: add abstraction for secctx · Paul Moore <paul@paul-moore.com> · 2024-09-19
[PATCH v10 6/8] rust: file: add `FileDescriptorReservation` · Alice Ryhl <aliceryhl@google.com> · 2024-09-15
Re: [PATCH v10 6/8] rust: file: add `FileDescriptorReservation` · Al Viro <viro@zeniv.linux.org.uk> · 2024-09-15
Re: [PATCH v10 6/8] rust: file: add `FileDescriptorReservation` · Al Viro <viro@zeniv.linux.org.uk> · 2024-09-15
Re: [PATCH v10 6/8] rust: file: add `FileDescriptorReservation` · Al Viro <viro@zeniv.linux.org.uk> · 2024-09-16
Re: [PATCH v10 6/8] rust: file: add `FileDescriptorReservation` · Alice Ryhl <aliceryhl@google.com> · 2024-09-15
Re: [PATCH v10 6/8] rust: file: add `FileDescriptorReservation` · Al Viro <viro@zeniv.linux.org.uk> · 2024-09-15
Re: [PATCH v10 6/8] rust: file: add `FileDescriptorReservation` · Al Viro <viro@zeniv.linux.org.uk> · 2024-09-15
[PATCH v10 7/8] rust: file: add `Kuid` wrapper · Alice Ryhl <aliceryhl@google.com> · 2024-09-15
Re: [PATCH v10 7/8] rust: file: add `Kuid` wrapper · Gary Guo <gary@garyguo.net> · 2024-09-15
Re: [PATCH v10 7/8] rust: file: add `Kuid` wrapper · Alice Ryhl <aliceryhl@google.com> · 2024-09-23
Re: [PATCH v10 7/8] rust: file: add `Kuid` wrapper · Christian Brauner <brauner@kernel.org> · 2024-09-26
[PATCH] [RFC] rust: add PidNamespace wrapper · Christian Brauner <brauner@kernel.org> · 2024-09-26
Re: [PATCH] [RFC] rust: add PidNamespace wrapper · Alice Ryhl <aliceryhl@google.com> · 2024-09-27
Re: [PATCH] [RFC] rust: add PidNamespace wrapper · Christian Brauner <brauner@kernel.org> · 2024-09-27
Re: [PATCH] [RFC] rust: add PidNamespace wrapper · Alice Ryhl <aliceryhl@google.com> · 2024-09-27
[PATCH v2] rust: add PidNamespace · Christian Brauner <brauner@kernel.org> · 2024-10-01
Re: [PATCH v2] rust: add PidNamespace · Alice Ryhl <aliceryhl@google.com> · 2024-10-01
Re: [PATCH v2] rust: add PidNamespace · Christian Brauner <brauner@kernel.org> · 2024-10-01
Re: [PATCH v2] rust: add PidNamespace · Miguel Ojeda <hidden> · 2024-10-01
Re: [PATCH v2] rust: add PidNamespace · Christian Brauner <brauner@kernel.org> · 2024-10-02
Re: [PATCH v2] rust: add PidNamespace · Miguel Ojeda <hidden> · 2024-10-02
Re: [PATCH v2] rust: add PidNamespace · Gary Guo <gary@garyguo.net> · 2024-10-01
Re: [PATCH v2] rust: add PidNamespace · Christian Brauner <brauner@kernel.org> · 2024-10-02
[PATCH v10 8/8] rust: file: add abstraction for `poll_table` · Alice Ryhl <aliceryhl@google.com> · 2024-09-15
Re: [PATCH v10 8/8] rust: file: add abstraction for `poll_table` · Gary Guo <gary@garyguo.net> · 2024-09-15
Re: [PATCH v10 8/8] rust: file: add abstraction for `poll_table` · Alice Ryhl <aliceryhl@google.com> · 2024-09-23
Re: [PATCH v10 0/8] File abstractions needed by Rust Binder · Christian Brauner <brauner@kernel.org> · 2024-09-27

From: Alice Ryhl <aliceryhl@google.com>
Date: 2024-09-22 17:05:07
Also in: linux-fsdevel, lkml, rust-for-linux

On Sun, Sep 22, 2024 at 6:50 PM Casey Schaufler [off-list ref] wrote:

On 9/22/2024 8:08 AM, Alice Ryhl wrote:

quoted

On Mon, Sep 16, 2024 at 5:40 PM Casey Schaufler [off-list ref] wrote:

quoted

On 9/15/2024 2:07 PM, Alice Ryhl wrote:

quoted

On Sun, Sep 15, 2024 at 10:58 PM Kees Cook [off-list ref] wrote:

quoted

On Sun, Sep 15, 2024 at 02:31:31PM +0000, Alice Ryhl wrote:

quoted

Add an abstraction for viewing the string representation of a security
context.

Hm, this may collide with "LSM: Move away from secids" is going to happen.
https://lore.kernel.org/all/20240830003411.16818-1-casey@schaufler-ca.com/ (local)

This series is not yet landed, but in the future, the API changes should
be something like this, though the "lsmblob" name is likely to change to
"lsmprop"?
security_cred_getsecid()   -> security_cred_getlsmblob()
security_secid_to_secctx() -> security_lsmblob_to_secctx()

The referenced patch set does not change security_cred_getsecid()
nor remove security_secid_to_secctx(). There remain networking interfaces
that are unlikely to ever be allowed to move away from secids. It will
be necessary to either retain some of the secid interfaces or introduce
scaffolding around the lsm_prop structure.

Binder is currently only supported in SELinux, so this isn't a real issue
today. The BPF LSM could conceivably support binder, but only in cases where
SELinux isn't enabled. Should there be additional LSMs that support binder
the hooks would have to be changed to use lsm_prop interfaces, but I have
not included that *yet*.

quoted

Thanks for the heads up. I'll make sure to look into how this
interacts with those changes.

There will be a follow on patch set as well that replaces the LSMs use
of string/length pairs with a structure. This becomes necessary in cases
where more than one active LSM uses secids and security contexts. This
will affect binder.

When are these things expected to land?

I would like them to land in 6.14, but history would lead me to think
it will be later than that. A lot will depend on how well the large set
of LSM changes that went into 6.12 are received.

quoted

 If this patch series gets
merged in the same kernel cycle as those changes, it'll probably need
special handling.

Yes, this is the fundamental downside of the tree merge development model.

Okay. I'm hoping to land this series in 6.13 so hopefully we won't
need to do anything special.

Alice

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help