Bug#676515: linux-2.6: AppArmor totally broken

To: intrigeri@debian.org, john.johansen@canonical.com
Cc: 676515@bugs.debian.org
Subject: Bug#676515: linux-2.6: AppArmor totally broken
From: Ben Hutchings <ben@decadent.org.uk>
Date: Thu, 07 Jun 2012 15:36:43 +0100
Message-id: <[🔎] 1339079803.21665.93.camel@deadeye.wl.decadent.org.uk>
Reply-to: Ben Hutchings <ben@decadent.org.uk>, 676515@bugs.debian.org
In-reply-to: <[🔎] 1339079681.21665.91.camel@deadeye.wl.decadent.org.uk>
References: <[🔎] 85fwa7z1lt.fsf@boum.org> <[🔎] 1339079681.21665.91.camel@deadeye.wl.decadent.org.uk>

On Thu, 2012-06-07 at 15:34 +0100, Ben Hutchings wrote:
> On Thu, 2012-06-07 at 15:35 +0200, intrigeri@debian.org wrote:
[...]
> Looking at the network controller patch:
> 
> > --- a/security/apparmor/lsm.c
> > +++ b/security/apparmor/lsm.c
> [...]
> > @@ -621,6 +622,104 @@ static int apparmor_task_setrlimit(struct task_struct *task,
> >  	return error;
> >  }
> >  
> > +static int apparmor_socket_create(int family, int type, int protocol, int kern)
> > +{
> > +	struct aa_profile *profile;
> > +	int error = 0;
> > +
> > +	if (kern)
> > +		return 0;
> 
> If we don't want to restrict sockets used by the kernel, don't we need
> to store the kern flag for later use by aa_revalidate_sk()?
[...]

Certainly that's what SELinux does (in the socket_post_create hook).

Ben.

-- 
Ben Hutchings
I haven't lost my mind; it's backed up on tape somewhere.

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

References:
- Bug#676515: linux-2.6: AppArmor totally broken
  - From: intrigeri@debian.org
- Bug#676515: linux-2.6: AppArmor totally broken
  - From: Ben Hutchings <ben@decadent.org.uk>

Prev by Date: Bug#676515: linux-2.6: AppArmor totally broken
Next by Date: Bug#676360: [Xen-devel] xen: oops at atomic64_read_cx8+0x4
Previous by thread: Bug#676515: linux-2.6: AppArmor totally broken
Next by thread: Bug#676515: linux-2.6: AppArmor totally broken
Index(es):
- Date
- Thread