From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <linux-fsdevel-owner@vger.kernel.org>
Received: from thejh.net ([37.221.195.125]:54297 "EHLO thejh.net"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1751378AbcJ3Vqs (ORCPT <rfc822;linux-fsdevel@vger.kernel.org>);
        Sun, 30 Oct 2016 17:46:48 -0400
From: Jann Horn <jann@thejh.net>
To: Alexander Viro <viro@zeniv.linux.org.uk>,
        Roland McGrath <roland@hack.frob.com>,
        Oleg Nesterov <oleg@redhat.com>,
        John Johansen <john.johansen@canonical.com>,
        James Morris <james.l.morris@oracle.com>,
        "Serge E. Hallyn" <serge@hallyn.com>,
        Paul Moore <aul@paul-moore.com>,
        Stephen Smalley <sds@tycho.nsa.gov>,
        Eric Paris <eparis@parisplace.org>,
        Casey Schaufler <casey@schaufler-ca.com>,
        Kees Cook <keescook@chromium.org>,
        Andrew Morton <akpm@linux-foundation.org>,
        Janis Danisevskis <jdanis@google.com>,
        Seth Forshee <seth.forshee@canonical.com>,
        "Eric W. Biederman" <ebiederm@xmission.com>,
        Thomas Gleixner <tglx@linutronix.de>,
        Benjamin LaHaise <bcrl@kvack.org>,
        Ben Hutchings <ben@decadent.org.uk>,
        Andy Lutomirski <luto@amacapital.net>,
        Linus Torvalds <torvalds@linux-foundation.org>,
        Krister Johansen <kjlx@templeofstupid.com>
Cc: linux-fsdevel@vger.kernel.org,
        linux-security-module@vger.kernel.org, security@kernel.org
Subject: [PATCH v3 0/8] Various fixes related to ptrace_may_access()
Date: Sun, 30 Oct 2016 22:46:30 +0100
Message-Id: <1477863998-3298-1-git-send-email-jann@thejh.net>
Sender: linux-fsdevel-owner@vger.kernel.org
List-ID: <linux-fsdevel.vger.kernel.org>

Next try.

Changes to the individual patches are mostly documented in their
commit messages.

Added/removed patches:
 - Added "proc: fix timerslack_ns handling"
 - Removed "ptrace: warn on ptrace_may_access without proper locking"
   (because of some reverted changes in the "proc: lock properly [...]"
   patch)


Jann Horn (8):
  exec: introduce cred_guard_light
  exec: add privunit to task_struct
  proc: use open()-time creds for ptrace checks
  futex: don't leak robust_list pointer
  proc: lock properly in ptrace_may_access callers
  fs/proc: fix attr access check
  proc: fix timerslack_ns handling
  Documentation: add security/ptrace_checks.txt

 Documentation/security/ptrace_checks.txt | 243 +++++++++++++++++++++++++++++++
 arch/mips/kernel/mips-mt-fpaff.c         |   4 +-
 fs/exec.c                                |  33 ++++-
 fs/proc/array.c                          |  10 +-
 fs/proc/base.c                           | 220 +++++++++++++++++++++-------
 fs/proc/internal.h                       |  14 ++
 fs/proc/namespaces.c                     |  21 ++-
 include/linux/init_task.h                |   1 +
 include/linux/lsm_hooks.h                |  17 ++-
 include/linux/ptrace.h                   |   5 +
 include/linux/sched.h                    |  28 +++-
 include/linux/security.h                 |  23 +--
 kernel/cpuset.c                          |   2 +-
 kernel/fork.c                            |   2 +
 kernel/futex.c                           |  30 ++--
 kernel/futex_compat.c                    |  30 ++--
 kernel/ptrace.c                          |  51 +++++--
 kernel/sched/core.c                      |  14 +-
 security/apparmor/include/ipc.h          |   2 +-
 security/apparmor/ipc.c                  |   4 +-
 security/apparmor/lsm.c                  |  14 +-
 security/commoncap.c                     |  24 +--
 security/security.c                      |  13 +-
 security/selinux/hooks.c                 |  35 +++--
 security/smack/smack_lsm.c               |  27 +++-
 security/yama/yama_lsm.c                 |   9 +-
 26 files changed, 718 insertions(+), 158 deletions(-)
 create mode 100644 Documentation/security/ptrace_checks.txt

-- 
2.1.4