From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <linux-fsdevel-owner@vger.kernel.org>
Received: from thejh.net ([37.221.195.125]:55222 "EHLO thejh.net"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S933461AbcI3S7V (ORCPT <rfc822;linux-fsdevel@vger.kernel.org>);
        Fri, 30 Sep 2016 14:59:21 -0400
Date: Fri, 30 Sep 2016 20:59:17 +0200
From: Jann Horn <jann@thejh.net>
To: Kees Cook <keescook@chromium.org>
Cc: Oleg Nesterov <oleg@redhat.com>,
        Alexander Viro <viro@zeniv.linux.org.uk>,
        Roland McGrath <roland@hack.frob.com>,
        John Johansen <john.johansen@canonical.com>,
        James Morris <james.l.morris@oracle.com>,
        "Serge E. Hallyn" <serge@hallyn.com>,
        Paul Moore <aul@paul-moore.com>,
        Stephen Smalley <sds@tycho.nsa.gov>,
        Eric Paris <eparis@parisplace.org>,
        Casey Schaufler <casey@schaufler-ca.com>,
        Andrew Morton <akpm@linux-foundation.org>,
        Janis Danisevskis <jdanis@google.com>,
        Seth Forshee <seth.forshee@canonical.com>,
        "Eric . Biederman" <ebiederm@xmission.com>,
        Thomas Gleixner <tglx@linutronix.de>,
        Benjamin LaHaise <bcrl@kvack.org>,
        Ben Hutchings <ben@decadent.org.uk>,
        Andy Lutomirski <luto@amacapital.net>,
        Linus Torvalds <torvalds@linux-foundation.org>,
        "linux-fsdevel@vger.kernel.org" <linux-fsdevel@vger.kernel.org>,
        linux-security-module <linux-security-module@vger.kernel.org>,
        "security@kernel.org" <security@kernel.org>
Subject: Re: [PATCH v2 2/8] exec: turn self_exec_id into self_privunit
Message-ID: <20160930185917.GI14666@pc.thejh.net>
References: <1474663238-22134-1-git-send-email-jann@thejh.net>
 <1474663238-22134-3-git-send-email-jann@thejh.net>
 <20160930132046.GA12047@redhat.com>
 <20160930134404.GA12862@redhat.com>
 <CAGXu5j+Oe+Be+ca+V3OKZCUiFzqQtj6CoH=FeEWvY98YfcoJxQ@mail.gmail.com>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
        protocol="application/pgp-signature"; boundary="STPqjqpCrtky8aYs"
Content-Disposition: inline
In-Reply-To: <CAGXu5j+Oe+Be+ca+V3OKZCUiFzqQtj6CoH=FeEWvY98YfcoJxQ@mail.gmail.com>
Sender: linux-fsdevel-owner@vger.kernel.org
List-ID: <linux-fsdevel.vger.kernel.org>


--STPqjqpCrtky8aYs
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Fri, Sep 30, 2016 at 11:30:23AM -0700, Kees Cook wrote:
> On Fri, Sep 30, 2016 at 6:44 AM, Oleg Nesterov <oleg@redhat.com> wrote:
> > On 09/30, Oleg Nesterov wrote:
> >> I think we should simply kill self/parent_exec_id's. I am going to send
> >> the patch below after re-check/testing.
> >
> > Yes, I think this makes sense anyway.
>=20
> Hrm, I also thought this was used for more than just signal checking,
> but I don't see anything else right now. Maybe I was remembering
> earlier versions of Jann's patches...

Maybe you're thinking of grsecurity's exec_id (which I used as the basis
for my first implementation of the unique ID before Andy suggested the
LUID approach)?

--STPqjqpCrtky8aYs
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: Digital signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQIcBAEBAgAGBQJX7rYFAAoJED4KNFJOeCOoOTkQALFCAk+QCi4SX3L8TqPkv6Pc
YltxkG/OvVhDHU3sfTjeelUeVV2YH5f5/XQ+cIsgWSJxFvdGhIxWNCk/HDh+5Zsu
pIIBxD6xy4nVoJQe1PxTwUEBne1eKSjDjR1R5x+kO0qy/+99f3awPYuxHL7ieRG9
l/hzEheOXuPevjQyB8Ia+lppEJhd+mdS+Toi+E9llb0zvm9tVUGsjEPBQu2pB4Rx
uKah0Ye75FFBwIPNmSFJdSZXrXH1bvEiLKJKcobVGSBcgRMJQYxkn21Hcw5ZKn1a
11OtFwse4XhgwFsksP5Jrx8YAaovwJPA1NyB0rNCQQa9+NMIsTSyACMU8jFC3fsZ
9x8RV2Fb1Snq9kthqDU17h0d5rOkKs9xdHuys1zBb6QcbA6E+4Yt7QI7nD8P3Qvx
k0EHlOhi1MH5yqStzBCJqx1wpiiFxycl/Hq+sldXYoUkNR6TRlOXe/4NRr8aVSQO
OznLI63RQsxLwPM1ECJiJPtZK/LJaafcQrtY2pmohJKCkMDNgroRAqYcJnMQbmLz
pHmOB73RkNseLHqBAONh0JuEWaX3lmNodtnKD+UL3lRpu2BC3bj/8yOu2+bxIMmR
uVi92PlhWPQqA9/xsYNOHpdjC/F5AWjQwXiyljFSOBJLsIZ5I3nlXlwgyRphUKaK
3vVO4cnPRn2s9G0pV5rI
=n/Wm
-----END PGP SIGNATURE-----

--STPqjqpCrtky8aYs--