[RFC PATCH 3/6] landlock: explicitly skip mediation of O_PATH file descriptors

[RFC PATCH 0/6] fs, lsm: mediate O_PATH fd creation in file_open hook · Ryan Lee <hidden> · 2025-03-12
[RFC PATCH 1/6] fs: invoke LSM file_open hook in do_dentry_open for O_PATH fds as well · Ryan Lee <hidden> · 2025-03-12
Re: [RFC PATCH 1/6] fs: invoke LSM file_open hook in do_dentry_open for O_PATH fds as well · Al Viro <viro@zeniv.linux.org.uk> · 2025-03-12
Re: [RFC PATCH 1/6] fs: invoke LSM file_open hook in do_dentry_open for O_PATH fds as well · Christian Brauner <brauner@kernel.org> · 2025-03-13
Re: [RFC PATCH 1/6] fs: invoke LSM file_open hook in do_dentry_open for O_PATH fds as well · Paul Moore <paul@paul-moore.com> · 2025-03-14
[RFC PATCH 2/6] apparmor: explicitly skip mediation of O_PATH file descriptors · Ryan Lee <hidden> · 2025-03-12
[RFC PATCH 6/6] tomoyo: explicitly skip mediation of O_PATH file descriptors · Ryan Lee <hidden> · 2025-03-12
[RFC PATCH 3/6] landlock: explicitly skip mediation of O_PATH file descriptors · Ryan Lee <hidden> · 2025-03-12
[RFC PATCH 4/6] selinux: explicitly skip mediation of O_PATH file descriptors · Ryan Lee <hidden> · 2025-03-12
[RFC PATCH 5/6] smack: explicitly skip mediation of O_PATH file descriptors · Ryan Lee <hidden> · 2025-03-12
Re: [RFC PATCH 5/6] smack: explicitly skip mediation of O_PATH file descriptors · Casey Schaufler <casey@schaufler-ca.com> · 2025-03-12

STALE446d

From: Ryan Lee <hidden>
Date: 2025-03-12 21:23:00
Also in: linux-fsdevel, lkml, selinux
Subsystem: landlock security module, security subsystem, the rest · Maintainers: Mickaël Salaün, Paul Moore, James Morris, "Serge E. Hallyn", Linus Torvalds

Landlock currently does not have handling of O_PATH fds. Now that they
are being passed to the file_open hook, explicitly skip mediation of
them until we can handle them.

Signed-off-by: Ryan Lee <redacted>
---
 security/landlock/fs.c | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/security/landlock/fs.c b/security/landlock/fs.c
index 0804f76a67be..37b2167bf4c6 100644
--- a/security/landlock/fs.c
+++ b/security/landlock/fs.c

@@ -1522,6 +1522,14 @@ static int hook_file_open(struct file *const file)
 	if (!dom)
 		return 0;
 
+	/*
+	 * Preserve the behavior of O_PATH fd creation not being mediated, for
+	 * now.  Remove this when the comment below about handling O_PATH fds
+	 * is resolved.
+	 */
+	if (file->f_flags & O_PATH)
+		return 0;
+
 	/*
 	 * Because a file may be opened with O_PATH, get_required_file_open_access()
 	 * may return 0.  This case will be handled with a future Landlock

-- 
2.43.0

base-kernel: v6.14-rc6

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help