Received: by 2002:ac0:950e:0:0:0:0:0 with SMTP id f14csp293970imc; Sat, 16 Mar 2019 01:09:44 -0700 (PDT) X-Google-Smtp-Source: APXvYqw/LB9bUO3YUlxcsXv4xgfSX9e3nx6v/D1i5DdMOJNypBQJMyhpjY/K+zHT8my0RA/P51Q+ X-Received: by 2002:a17:902:c03:: with SMTP id 3mr2043219pls.186.1552723784337; Sat, 16 Mar 2019 01:09:44 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1552723784; cv=none; d=google.com; s=arc-20160816; b=i0D7q2l9VQenzMSzMdihi2oc29oEWkHcAReTWADuIt7ZJsoNzxuJKdRsjEAoPeuiAz pE4kciF1HaDhQTLnf96rUOpXsMpIimevnNFUk02r1z/ZDrCrlpPohrxVSufkyY1Hy7/E vQ1L03pMSMl5+9PVify9YpBsAnrel2HV8WCy4g5bTNwqW9txFtCUpc4a5XnZ/3wfygur DLAnCeZCU3TZVeEY8GzyVMmNdcchmNZVoOrLAvQ1XeK8J/TiNqn3dbag9RS6KrFtBakn 1s8e8GeGwvbzOphbFIeLABQWLay4qIyvlJeTOKgbUFwL91QgzQnn1GgMnzWSqehgLu9C I51w== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding :content-language:in-reply-to:mime-version:user-agent:date :message-id:from:references:cc:to:subject; bh=xH2T/GNMsZkVei/PdQYhVsMbCf9upM33d3GpWwYA/Dw=; b=EDOmAt/Qla97gLBFNlE0qoWOhQbG64DdBtnClLz7HYJUMv7Q6AwvKI8VotpkFLvGJy ylKSGNgCB/bIYO7ZELiS7+fVrIfQr1P2RLSwPOQgfGjttVS/YFL71onq0hVbumE4XF+5 Q7q6dPygRIrd9XMBvws3ZX748ErEe+/T2E2HRgY6b4K9OPzeaZqk4w4dUnaSDdnIKT04 RIU5EkWo26CvfjEpdgOd1CGHKswAJWZhXkHlAOZjQa3SXJtYL7exhSqEQQb9yGAmiocK /32sGfCSKGxzUnpXUfmVdFeGjCWqABkMqJ1Z0RnCAwmV23OWPlhtH5831arwTO9OIT71 VFug== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id n16si4069625pfa.28.2019.03.16.01.09.29; Sat, 16 Mar 2019 01:09:44 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727276AbfCPIIR (ORCPT + 99 others); Sat, 16 Mar 2019 04:08:17 -0400 Received: from www262.sakura.ne.jp ([202.181.97.72]:13984 "EHLO www262.sakura.ne.jp" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726551AbfCPIIR (ORCPT ); Sat, 16 Mar 2019 04:08:17 -0400 Received: from fsav403.sakura.ne.jp (fsav403.sakura.ne.jp [133.242.250.102]) by www262.sakura.ne.jp (8.15.2/8.15.2) with ESMTP id x2G885FB073439; Sat, 16 Mar 2019 17:08:05 +0900 (JST) (envelope-from penguin-kernel@I-love.SAKURA.ne.jp) Received: from www262.sakura.ne.jp (202.181.97.72) by fsav403.sakura.ne.jp (F-Secure/fsigk_smtp/530/fsav403.sakura.ne.jp); Sat, 16 Mar 2019 17:08:05 +0900 (JST) X-Virus-Status: clean(F-Secure/fsigk_smtp/530/fsav403.sakura.ne.jp) Received: from [192.168.1.8] (softbank126126163036.bbtec.net [126.126.163.36]) (authenticated bits=0) by www262.sakura.ne.jp (8.15.2/8.15.2) with ESMTPSA id x2G87xdd073418 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=NO); Sat, 16 Mar 2019 17:08:05 +0900 (JST) (envelope-from penguin-kernel@I-love.SAKURA.ne.jp) Subject: Re: mount.nfs: Protocol error after upgrade to linux/master To: Kees Cook Cc: Jakub Kicinski , linux-security-module , Trond Myklebust , "open list:NFS, SUNRPC, AND..." , Anna Schumaker , LKML References: <20190315110555.0807d015@cakuba.netronome.com> <20190315120105.5541ad46@cakuba.netronome.com> <20190315165440.53b9db3c@cakuba.netronome.com> From: Tetsuo Handa Message-ID: Date: Sat, 16 Mar 2019 17:08:02 +0900 User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.5.3 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8 Content-Language: en-US Content-Transfer-Encoding: 7bit Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 2019/03/16 14:38, Kees Cook wrote: > config LSM > string "Ordered list of enabled LSMs" > + default "yama,loadpin,safesetid,integrity,smack,selinux,tomoyo,apparmor" if DEFAULT_SECURITY_SMACK > + default "yama,loadpin,safesetid,integrity,tomoyo,selinux,smack,apparmor" if DEFAULT_SECURITY_TOMOYO > + default "yama,loadpin,safesetid,integrity,apparmor,selinux,smack,tomoyo" if DEFAULT_SECURITY_APPARMOR > default "yama,loadpin,safesetid,integrity,selinux,smack,tomoyo,apparmor" > help > A comma-separated list of LSMs, in initialization order. > > (I don't see a way to include an earlier config string in a new > default.) Thoughts? > Hmm, DEFAULT_SECURITY_TOMOYO no longer works because TOMOYO will be always enabled as long as CONFIG_SECURITY_TOMOYO=y. Maybe config LSM string "Ordered list of enabled LSMs" - default "yama,loadpin,safesetid,integrity,selinux,smack,tomoyo,apparmor" + default "yama,loadpin,safesetid,integrity,selinux" if DEFAULT_SECURITY_SELINUX + default "yama,loadpin,safesetid,integrity,smack" if DEFAULT_SECURITY_SMACK + default "yama,loadpin,safesetid,integrity,tomoyo" if DEFAULT_SECURITY_TOMOYO + default "yama,loadpin,safesetid,integrity,apparmor" if DEFAULT_SECURITY_APPARMOR + default "yama,loadpin,safesetid,integrity" if DEFAULT_SECURITY_DAC help A comma-separated list of LSMs, in initialization order. (i.e. include only up to one major LSM as default choice, and allow manually including multiple major LSMs at both kernel build time and kernel boot time) is better?