LSM namespacing API
Paul Moore
paul at paul-moore.com
Tue Aug 19 18:40:52 UTC 2025
On Tue, Aug 19, 2025 at 1:11 PM Casey Schaufler <casey at schaufler-ca.com> wrote:
>
> The advantage of a clone flag is that the operation is atomic with
> the other namespace flag based behaviors. Having a two step process
>
> clone(); lsm_set_self_attr(); - or -
> lsm_set_self_attr(); clone();
>
> is going to lead to cases where neither order really works correctly.
I was envisioning something that works similarly to LSM_ATTR_EXEC
where the unshare isn't immediate, but rather happens at a future
event. With LSM_ATTR_EXEC it happens at the next exec*(), with
LSM_ATTR_UNSHARE I imagine it would happen at the next clone*().
--
paul-moore.com
More information about the Linux-security-module-archive
mailing list