diff options
| author | Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp> | 2011-09-10 02:22:48 -0400 |
|---|---|---|
| committer | James Morris <jmorris@namei.org> | 2011-09-13 18:27:05 -0400 |
| commit | d58e0da854376841ac99defeb117a83f086715c6 (patch) | |
| tree | b6e37d1030180680a7801ecb295d8d3990930375 /security/tomoyo/gc.c | |
| parent | 5dbe3040c74eef18e66951347eda05b153e69328 (diff) | |
TOMOYO: Add environment variable name restriction support.
This patch adds support for checking environment variable's names.
Although TOMOYO already provides ability to check argv[]/envp[] passed to
execve() requests,
file execute /bin/sh exec.envp["LD_LIBRARY_PATH"]="bar"
will reject execution of /bin/sh if environment variable LD_LIBRARY_PATH is not
defined. To grant execution of /bin/sh if LD_LIBRARY_PATH is not defined,
administrators have to specify like
file execute /bin/sh exec.envp["LD_LIBRARY_PATH"]="/system/lib"
file execute /bin/sh exec.envp["LD_LIBRARY_PATH"]=NULL
. Since there are many environment variables whereas conditional checks are
applied as "&&", it is difficult to cover all combinations. Therefore, this
patch supports conditional checks that are applied as "||", by specifying like
file execute /bin/sh
misc env LD_LIBRARY_PATH exec.envp["LD_LIBRARY_PATH"]="/system/lib"
which means "grant execution of /bin/sh if environment variable is not defined
or is defined and its value is /system/lib".
Signed-off-by: Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp>
Signed-off-by: James Morris <jmorris@namei.org>
Diffstat (limited to 'security/tomoyo/gc.c')
| -rw-r--r-- | security/tomoyo/gc.c | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/security/tomoyo/gc.c b/security/tomoyo/gc.c index 5295b5caaa21..818b07998111 100644 --- a/security/tomoyo/gc.c +++ b/security/tomoyo/gc.c | |||
| @@ -36,6 +36,7 @@ static const u8 tomoyo_acl_size[] = { | |||
| 36 | [TOMOYO_TYPE_PATH_NUMBER_ACL] = sizeof(struct tomoyo_path_number_acl), | 36 | [TOMOYO_TYPE_PATH_NUMBER_ACL] = sizeof(struct tomoyo_path_number_acl), |
| 37 | [TOMOYO_TYPE_MKDEV_ACL] = sizeof(struct tomoyo_mkdev_acl), | 37 | [TOMOYO_TYPE_MKDEV_ACL] = sizeof(struct tomoyo_mkdev_acl), |
| 38 | [TOMOYO_TYPE_MOUNT_ACL] = sizeof(struct tomoyo_mount_acl), | 38 | [TOMOYO_TYPE_MOUNT_ACL] = sizeof(struct tomoyo_mount_acl), |
| 39 | [TOMOYO_TYPE_ENV_ACL] = sizeof(struct tomoyo_env_acl), | ||
| 39 | }; | 40 | }; |
| 40 | 41 | ||
| 41 | /** | 42 | /** |
| @@ -293,6 +294,14 @@ static void tomoyo_del_acl(struct list_head *element) | |||
| 293 | tomoyo_put_number_union(&entry->flags); | 294 | tomoyo_put_number_union(&entry->flags); |
| 294 | } | 295 | } |
| 295 | break; | 296 | break; |
| 297 | case TOMOYO_TYPE_ENV_ACL: | ||
| 298 | { | ||
| 299 | struct tomoyo_env_acl *entry = | ||
| 300 | container_of(acl, typeof(*entry), head); | ||
| 301 | |||
| 302 | tomoyo_put_name(entry->env); | ||
| 303 | } | ||
| 304 | break; | ||
| 296 | } | 305 | } |
| 297 | } | 306 | } |
| 298 | 307 | ||