Re: Walking a wait_queue_t list of tasks blocked on pipe

public inbox for linux-kernel@vger.kernel.org
 help / color / mirror / Atom feed

From: "W. Michael Petullo" <mike@flyn.org>
To: Christoph Hellwig <hch@infradead.org>
Cc: linux-kernel@vger.kernel.org
Subject: Re: Walking a wait_queue_t list of tasks blocked on pipe
Date: Thu, 14 Jan 2016 16:45:08 -0500	[thread overview]
Message-ID: <20160114214508.GA17098@imp.flyn.org> (raw)
In-Reply-To: <20160114083341.GA23562@infradead.org>

>> I am trying to write code to walk a wait_queue_t list as part of a LSM
>> file_permission function. The purpose is to act on each task which has
>> blocked while trying to read from a pipe.

> Just don't do that..

What we are trying to do is implement a research prototype for a simple
information-flow system using LSM. The idea is that processes become
tainted when they read objects marked as confidential and such processes
taint other processes based on further interaction.

The problem is that process A could open and block on reading
FIFO F before tainted process B writes to F (and causes F to become
confidential). Since A's LSM hooks fire off before it blocks, A could
end up reading confidential data without itself being tainted.

So it seems that I need to either walk the list of blocked processes,
possibly tainting them, or insert a new LSM hook into pipe.c to support
rechecking the confidentiality level of the pipe after waking up but
before reading.

If this all seems a little crazy it is because we are early in the
prototyping process.

Thank you,

-- 
Mike

:wq

     prev parent reply	other threads:[~2016-01-14 21:45 UTC|newest]

Thread overview: 3+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2016-01-14  3:30 Walking a wait_queue_t list of tasks blocked on pipe W. Michael Petullo
2016-01-14  8:33 ` Christoph Hellwig
2016-01-14 21:45   ` W. Michael Petullo [this message]

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20160114214508.GA17098@imp.flyn.org \
    --to=mike@flyn.org \
    --cc=hch@infradead.org \
    --cc=linux-kernel@vger.kernel.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox