[Devel] Re: [PATCH 4/6] cr: checkpoint and restore task credentials
Serge E. Hallyn
serue at us.ibm.com
Tue May 19 07:46:46 PDT 2009
Quoting David Howells (dhowells at redhat.com):
> Serge E. Hallyn <serue at us.ibm.com> wrote:
>
> > Or did you mean something else by 'fix up' cred->security?
>
> cred->security is inherited from the current process by virtue of calling
> prepare_creds() - as such, it is almost certainly going to be wrong. Can you
> just ask the LSM for a set of textual security labels when saving, and then
> set those back when restoring?
That would be too easy a way for users (even privileged root users but
constrained by selinux) to bypass selinux restrictions. All they'd have
to do is checkpoint their shell, and rewrite the ->security field in the
checkpoint image with 'shadow_t', to get a shell that can write to the
shadow file, for instance.
-serge
_______________________________________________
Containers mailing list
Containers at lists.linux-foundation.org
https://lists.linux-foundation.org/mailman/listinfo/containers
More information about the Devel
mailing list