From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1751108AbdEaCtU (ORCPT ); Tue, 30 May 2017 22:49:20 -0400 Received: from namei.org ([65.99.196.166]:53075 "EHLO namei.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751050AbdEaCtT (ORCPT ); Tue, 30 May 2017 22:49:19 -0400 Date: Wed, 31 May 2017 12:48:50 +1000 (AEST) From: James Morris To: Boris Lukashev cc: Alan Cox , Matt Brown , Greg KH , "Serge E. Hallyn" , Kees Cook , kernel-hardening@lists.openwall.com, linux-security-module , linux-kernel Subject: Re: [kernel-hardening] Re: [PATCH v7 2/2] security: tty: make TIOCSTI ioctl require CAP_SYS_ADMIN In-Reply-To: Message-ID: References: <20170529213800.29438-1-matt@nmatt.com> <20170529213800.29438-3-matt@nmatt.com> <20170529232640.16211960@alans-desktop> User-Agent: Alpine 2.20 (LRH 67 2015-01-07) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Mon, 29 May 2017, Boris Lukashev wrote: > With all due respect sir, i believe your review falls short of the > purpose of this effort - to harden the kernel against flaws in > userspace. Which effort? Kernel self protection is about protecting against flaws in the kernel. See: https://kernsec.org/wiki/index.php/Kernel_Self_Protection_Project "This project starts with the premise that kernel bugs have a very long lifetime, and that the kernel must be designed in ways to protect against these flaws." We need to avoid conflating: - hardening the kernel against attack; and - modifying the kernel to try and harden userspace. These patches are the latter, and the case for them is not as straightforward. - James -- James Morris From mboxrd@z Thu Jan 1 00:00:00 1970 From: jmorris@namei.org (James Morris) Date: Wed, 31 May 2017 12:48:50 +1000 (AEST) Subject: [kernel-hardening] Re: [PATCH v7 2/2] security: tty: make TIOCSTI ioctl require CAP_SYS_ADMIN In-Reply-To: References: <20170529213800.29438-1-matt@nmatt.com> <20170529213800.29438-3-matt@nmatt.com> <20170529232640.16211960@alans-desktop> Message-ID: To: linux-security-module@vger.kernel.org List-Id: linux-security-module.vger.kernel.org On Mon, 29 May 2017, Boris Lukashev wrote: > With all due respect sir, i believe your review falls short of the > purpose of this effort - to harden the kernel against flaws in > userspace. Which effort? Kernel self protection is about protecting against flaws in the kernel. See: https://kernsec.org/wiki/index.php/Kernel_Self_Protection_Project "This project starts with the premise that kernel bugs have a very long lifetime, and that the kernel must be designed in ways to protect against these flaws." We need to avoid conflating: - hardening the kernel against attack; and - modifying the kernel to try and harden userspace. These patches are the latter, and the case for them is not as straightforward. - James -- James Morris -- To unsubscribe from this list: send the line "unsubscribe linux-security-module" in the body of a message to majordomo at vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html