[PATCH 01/10] security: Override creds in __fput() with last fputter's creds [ver #3]

Andy Lutomirski luto at amacapital.net
Thu Jun 6 14:57:27 UTC 2019



> On Jun 6, 2019, at 2:42 AM, David Howells <dhowells at redhat.com> wrote:
> 
> So that the LSM can see the credentials of the last process to do an fput()
> on a file object when the file object is being dismantled, do the following
> steps:
> 

I still maintain that this is a giant design error. Can someone at least come up with a single valid use case that isn’t entirely full of bugs?



More information about the Linux-security-module-archive mailing list