From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from vger.kernel.org (vger.kernel.org [23.128.96.18]) by smtp.lore.kernel.org (Postfix) with ESMTP id 25E71C7EE2E for ; Wed, 24 May 2023 16:10:09 +0000 (UTC) Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S231148AbjEXQKI (ORCPT ); Wed, 24 May 2023 12:10:08 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:36160 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S233349AbjEXQJ5 (ORCPT ); Wed, 24 May 2023 12:09:57 -0400 Received: from smtp-bc0c.mail.infomaniak.ch (smtp-bc0c.mail.infomaniak.ch [45.157.188.12]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id A41C797 for ; Wed, 24 May 2023 09:09:55 -0700 (PDT) Received: from smtp-2-0001.mail.infomaniak.ch (unknown [10.5.36.108]) by smtp-3-3000.mail.infomaniak.ch (Postfix) with ESMTPS id 4QRGNf0gWnzMqlJy; Wed, 24 May 2023 18:09:54 +0200 (CEST) Received: from unknown by smtp-2-0001.mail.infomaniak.ch (Postfix) with ESMTPA id 4QRGNc5mTyzMq3kK; Wed, 24 May 2023 18:09:52 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=digikod.net; s=20191114; t=1684944593; bh=TLa2gsaL1kVkSutKGt+QaEc5djn5VpfoduhwQDTEOtE=; h=Date:Subject:To:Cc:References:From:In-Reply-To:From; b=yygapqd20M0DhyHBfl/CSUWJsJa//AqcIZkIvrn6W8SgC5uQat1O1VhgNI6n+/mtP NylpGI+EBRTilZEbQXgm2pOR+Mo0sgUpQA93QCveZPpLfmzla/+6ZrTnnkXIyTzgFy y1hj7KWrESsXWBUYgY2Z5qejZ+wb160afKXBtKRM= Message-ID: <30aef0b6-0d2c-a0de-0152-a358805f95af@digikod.net> Date: Wed, 24 May 2023 18:09:52 +0200 MIME-Version: 1.0 User-Agent: Subject: Re: [PATCH 0/1] process attribute support for Landlock Content-Language: en-US To: Shervin Oloumi , Casey Schaufler , Paul Moore Cc: linux-security-module@vger.kernel.org, jorgelo@chromium.org, keescook@chromium.org, groeck@chromium.org, jeffxu@chromium.org, allenwebb@chromium.org, =?UTF-8?Q?G=c3=bcnther_Noack?= , Adrian Reber , criu@openvz.org, Linux API , Jann Horn , Christian Brauner References: <20230302185257.850681-1-enlightened@chromium.org> <247f3194-2dd2-1414-0a4d-6e41addf5e64@digikod.net> From: =?UTF-8?Q?Micka=c3=abl_Sala=c3=bcn?= In-Reply-To: Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Infomaniak-Routing: alpha Precedence: bulk List-ID: On 18/05/2023 22:44, Shervin Oloumi wrote: > Sorry for the delay on this. I think there is a fundamental issue here > that needs to be resolved first, and that is the limitation of the > kernel that only one LSM's hook function can be called through the > procfs attribute interface. This is a blocker for us (and I imagine > for others), since implementing any LandLock attribute API would block > the existing SELinux hook function, which is used to surface domain > information. `ps` also uses it to display domain information when you > pass `-Z`. Please note, this is independent of which path and filename > we use for LandLock. Even when the "domain" file is placed under a > different directory, for example `/proc/[pid]/attr/landlock/domain` > the kernel only calls the Landlock hook function for any interaction > with any files under attr (the kernel always calls only the hook > function for the first loaded LSM in the kernel config). So if anyone > in this thread has any information on whether there is work on > progress for addressing this issue, that would be helpful. This seems to be an LSM stacking issue. Do the LSM syscalls also have this issue? This should be part of tests.