Re: [PATCH v3 2/6] userfaultfd: add /dev/userfaultfd for fine grained access control

From: Jonathan Corbet
Date: Mon Jun 13 2022 - 19:23:33 EST

Next message: Al Viro: "Re: [RFC][PATCH] fix short copy handling in copy_mc_pipe_to_iter()"
Previous message: Fabio M. De Francesco: "Re: [PATCH] btrfs: Replace kmap() with kmap_local_page() in zstd.c"
In reply to: Axel Rasmussen: "Re: [PATCH v3 2/6] userfaultfd: add /dev/userfaultfd for fine grained access control"
Next in thread: Axel Rasmussen: "Re: [PATCH v3 2/6] userfaultfd: add /dev/userfaultfd for fine grained access control"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Axel Rasmussen <axelrasmussen@xxxxxxxxxx> writes:

> I think for any approach involving syscalls, we need to be able to
> control access to who can call a syscall. Maybe there's another way
> I'm not aware of, but I think today the only mechanism to do this is
> capabilities. I proposed adding a CAP_USERFAULTFD for this purpose,
> but that approach was rejected [1]. So, I'm not sure of another way
> besides using a device node.

I take it there's a reason why this can't be done with a security module
- either a custom module or a policy in one of the existing modules?
That sort of access control is just what security modules are supposed
to be for, after all.

Thanks,

jon

Next message: Al Viro: "Re: [RFC][PATCH] fix short copy handling in copy_mc_pipe_to_iter()"
Previous message: Fabio M. De Francesco: "Re: [PATCH] btrfs: Replace kmap() with kmap_local_page() in zstd.c"
In reply to: Axel Rasmussen: "Re: [PATCH v3 2/6] userfaultfd: add /dev/userfaultfd for fine grained access control"
Next in thread: Axel Rasmussen: "Re: [PATCH v3 2/6] userfaultfd: add /dev/userfaultfd for fine grained access control"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]