Skip to main content
Unix & Linux

Return to Question

formatting
Source Link
lgeorget
lgeorget
  • 14.4k
  • 2
  • 44
  • 64

As I understand it, the Linux Security Module (LSM) framework has many hooks which are callbacks for security modules to register functions performing additional security checks before security-sensitive operations.

Most of the time, these hooks are placed before the access to an internal data structure like ``file''file.

One thing that I don't understand is why there are hooks in System V IPC APIs but not in the corresponding POSIX APIs. For example, there is security_ipc_permission'' which is a hook describe in security_ipc_permissioninclude/linux/lsm_hooks.h'' which is a hook describe in include/linux/lsm_hooks.h as "affecting all System V IPC operations" and several more hooks specialized for each APIs such as the message queues but no counterpart for the POSIX APIs. Manual investigation reveals that the System V hooks are not used in the POSIX functions (as expected, given the description). But in the case of POSIX message queues and System V message queues for example, while they don't have the same interface, they provide roughly the same functionality.

So my question is: what is the rationale for not putting LSM hooks in POSIX functions?

As I understand it, the Linux Security Module (LSM) framework has many hooks which are callbacks for security modules to register functions performing additional security checks before security-sensitive operations.

Most of the time, these hooks are placed before the access to an internal data structure like ``file''.

One thing that I don't understand is why there are hooks in System V IPC APIs but not in the corresponding POSIX APIs. For example, there is security_ipc_permission'' which is a hook describe in include/linux/lsm_hooks.h'' as "affecting all System V IPC operations" and several more hooks specialized for each APIs such as the message queues but no counterpart for the POSIX APIs. Manual investigation reveals that the System V hooks are not used in the POSIX functions (as expected, given the description). But in the case of POSIX message queues and System V message queues for example, while they don't have the same interface, they provide roughly the same functionality.

So my question is: what is the rationale for not putting LSM hooks in POSIX functions?

As I understand it, the Linux Security Module (LSM) framework has many hooks which are callbacks for security modules to register functions performing additional security checks before security-sensitive operations.

Most of the time, these hooks are placed before the access to an internal data structure like file.

One thing that I don't understand is why there are hooks in System V IPC APIs but not in the corresponding POSIX APIs. For example, there is security_ipc_permission which is a hook describe in include/linux/lsm_hooks.h as "affecting all System V IPC operations" and several more hooks specialized for each APIs such as the message queues but no counterpart for the POSIX APIs. Manual investigation reveals that the System V hooks are not used in the POSIX functions (as expected, given the description). But in the case of POSIX message queues and System V message queues for example, while they don't have the same interface, they provide roughly the same functionality.

So my question is: what is the rationale for not putting LSM hooks in POSIX functions?

expanded LSM acronym
Source Link
Jeff Schaller
Jeff Schaller
  • 68.8k
  • 35
  • 122
  • 266

As I understand it, the LSMLinux Security Module (LSM) framework has many hooks which are callbacks for security modules to register functions performing additional security checks before security-sensitive operations.

Most of the time, these hooks are placed before the access to an internal data structure like ``file''.

One thing that I don't understand is why there are hooks in System V IPC APIs but not in the corresponding POSIX APIs. For example, there is security_ipc_permission'' which is a hook describe in include/linux/lsm_hooks.h'' as "affecting all System V IPC operations" and several more hooks specialized for each APIs such as the message queues but no counterpart for the POSIX APIs. Manual investigation reveals that the System V hooks are not used in the POSIX functions (as expected, given the description). But in the case of POSIX message queues and System V message queues for example, while they don't have the same interface, they provide roughly the same functionality.

So my question is: what is the rationale for not putting LSM hooks in POSIX functions?

As I understand it, the LSM framework has many hooks which are callbacks for security modules to register functions performing additional security checks before security-sensitive operations.

Most of the time, these hooks are placed before the access to an internal data structure like ``file''.

One thing that I don't understand is why there are hooks in System V IPC APIs but not in the corresponding POSIX APIs. For example, there is security_ipc_permission'' which is a hook describe in include/linux/lsm_hooks.h'' as "affecting all System V IPC operations" and several more hooks specialized for each APIs such as the message queues but no counterpart for the POSIX APIs. Manual investigation reveals that the System V hooks are not used in the POSIX functions (as expected, given the description). But in the case of POSIX message queues and System V message queues for example, while they don't have the same interface, they provide roughly the same functionality.

So my question is: what is the rationale for not putting LSM hooks in POSIX functions?

As I understand it, the Linux Security Module (LSM) framework has many hooks which are callbacks for security modules to register functions performing additional security checks before security-sensitive operations.

Most of the time, these hooks are placed before the access to an internal data structure like ``file''.

One thing that I don't understand is why there are hooks in System V IPC APIs but not in the corresponding POSIX APIs. For example, there is security_ipc_permission'' which is a hook describe in include/linux/lsm_hooks.h'' as "affecting all System V IPC operations" and several more hooks specialized for each APIs such as the message queues but no counterpart for the POSIX APIs. Manual investigation reveals that the System V hooks are not used in the POSIX functions (as expected, given the description). But in the case of POSIX message queues and System V message queues for example, while they don't have the same interface, they provide roughly the same functionality.

So my question is: what is the rationale for not putting LSM hooks in POSIX functions?

Source Link
lgeorget
lgeorget
  • 14.4k
  • 2
  • 44
  • 64

Why are there no LSM hooks in the POSIX IPC APIs?

As I understand it, the LSM framework has many hooks which are callbacks for security modules to register functions performing additional security checks before security-sensitive operations.

Most of the time, these hooks are placed before the access to an internal data structure like ``file''.

One thing that I don't understand is why there are hooks in System V IPC APIs but not in the corresponding POSIX APIs. For example, there is security_ipc_permission'' which is a hook describe in include/linux/lsm_hooks.h'' as "affecting all System V IPC operations" and several more hooks specialized for each APIs such as the message queues but no counterpart for the POSIX APIs. Manual investigation reveals that the System V hooks are not used in the POSIX functions (as expected, given the description). But in the case of POSIX message queues and System V message queues for example, while they don't have the same interface, they provide roughly the same functionality.

So my question is: what is the rationale for not putting LSM hooks in POSIX functions?