Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
	id S1757404AbbDVNrB (ORCPT <rfc822;w@1wt.eu>);
	Wed, 22 Apr 2015 09:47:01 -0400
Received: from mail-qk0-f171.google.com ([209.85.220.171]:36421 "EHLO
	mail-qk0-f171.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
	with ESMTP id S1756829AbbDVNq6 (ORCPT
	<rfc822;linux-kernel@vger.kernel.org>);
	Wed, 22 Apr 2015 09:46:58 -0400
MIME-Version: 1.0
In-Reply-To: <CALCETrVq6SzpWOR=RUOW8nqbVi3Q4bC1GW1Wr=QnFy3FJ4Gmfg@mail.gmail.com>
References: <20150413190350.GA9485@kroah.com>
	<8738434yjk.fsf@x220.int.ebiederm.org>
	<87lhhv36je.fsf@x220.int.ebiederm.org>
	<20150414175534.GB3974@kroah.com>
	<87oamhmbso.fsf_-_@x220.int.ebiederm.org>
	<CA+55aFwqhbN=1Tm71AFHtXeOUut5gcLpqRmH=6R1H92grDsVrw@mail.gmail.com>
	<CALCETrX+z2xqvpG=UHm5JoA_dSupug9fwphkKR3YYy8FdXivFA@mail.gmail.com>
	<CA+55aFzL22XjeyPuapc+mYe1fEco8ZY7doJzSF9vPLwGU9taXA@mail.gmail.com>
	<CALCETrVq6SzpWOR=RUOW8nqbVi3Q4bC1GW1Wr=QnFy3FJ4Gmfg@mail.gmail.com>
Date: Wed, 22 Apr 2015 15:46:57 +0200
Message-ID: <CANq1E4QafuvVU3i2GSah20Am1xvRTvuWRNo73ukwV-2MELj02g@mail.gmail.com>
Subject: Re: Issues with capability bits and meta-data in kdbus
From: David Herrmann <dh.herrmann@gmail.com>
To: Andy Lutomirski <luto@amacapital.net>
Cc: Linus Torvalds <torvalds@linux-foundation.org>,
        "Eric W. Biederman" <ebiederm@xmission.com>,
        Greg Kroah-Hartman <gregkh@linuxfoundation.org>,
        Andrew Morton <akpm@linux-foundation.org>,
        Arnd Bergmann <arnd@arndb.de>,
        One Thousand Gnomes <gnomes@lxorguk.ukuu.org.uk>,
        Tom Gundersen <teg@jklm.no>, Jiri Kosina <jkosina@suse.cz>,
        Linux Kernel Mailing List <linux-kernel@vger.kernel.org>,
        Daniel Mack <daniel@zonque.org>, Djalal Harouni <tixxdz@opendz.org>
Content-Type: text/plain; charset=UTF-8
Sender: linux-kernel-owner@vger.kernel.org
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
Content-Length: 899
Lines: 25

Hi

On Wed, Apr 22, 2015 at 5:19 AM, Andy Lutomirski <luto@amacapital.net> wrote:
> Where do you draw the line?

User-space draws _this_ line.

A bus creator can set the "mandatory metadata mask" of a bus. It
defines a mask all senders (!) have to use as base. The bus creator
can thus mandate a policy for its bus and force everyone who wants to
communicate via this bus to at least agree to transmit the requested
set of information. Using UIDs+GIDs+PIDs+seclabel+names as masks works
just fine.

To be clear, kdbus only transmits metadata that sender and receiver
both agreed on. Both peers have to opt-in for an item to be
transmitted.

Thanks
David
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/