[PATCH v4 00/15] exec: Use sane stack rlimit under secureexec

Kees Cook keescook at chromium.org
Tue Aug 1 15:04:54 UTC 2017


On Mon, Jul 31, 2017 at 10:11 PM, Linus Torvalds
<torvalds at linux-foundation.org> wrote:
> On Mon, Jul 31, 2017 at 8:03 PM, Kees Cook <keescook at chromium.org> wrote:
>>
>> Yeah, I'm open to whatever. It's not clear where it should go, but if
>> you want to take it and Linus doesn't want it "early", that works for
>> me. Linus, Andrew, thoughts?
>
> I'd actually like this to go in separately from all the other security stuff.
>
> And I just checked this on a separate branch, just because I wanted to
> see what the overall diff was. There's a conflict with apparmor
> already - the resolution looks fairly straightforward, but considering
> the area this touches, it would probably be good that Kees keeps this
> branch and verifies things like that.

Do you want me to carry this for -next and send it as a distinct pull
request for v4.14?

-Kees

-- 
Kees Cook
Pixel Security
--
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html



More information about the Linux-security-module-archive mailing list