Received: by 2002:ac0:e350:0:0:0:0:0 with SMTP id g16csp147313imn; Tue, 2 Aug 2022 21:38:58 -0700 (PDT) X-Google-Smtp-Source: AA6agR76L5xNnwTppPc1/oOWgoYcRJC9ouv3h+WKXoUu+sp3/sAh9eCIoGTbOy9RW+43HSCvoKZB X-Received: by 2002:a05:6402:358a:b0:43d:aa71:3033 with SMTP id y10-20020a056402358a00b0043daa713033mr12256396edc.248.1659501538360; Tue, 02 Aug 2022 21:38:58 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1659501538; cv=none; d=google.com; s=arc-20160816; b=MRtNOraDG7cEFMdLl4PuUQVQiODWwlUogGy6rUabukcOJg17og7piB/A4cpiSAWPy/ JLLwmRQdrEiKt4jweagMmO+sjymY2jcXY2tM95imWPUirJiTf4UHY50aE/+yXUPugD6g YCqb5uUYhVpKdFSBvz+6qmZPG7Ic9LQc7H0c429PvxpDsHsxLphCoFv2x7sAQZgCOTVq yY/0O/e6p+35lFJaQqR7c9A4lATMiyxd72Bj4GMD2fTfzBryk2D7RcB7VnFp33ObOnG5 qnhA/f5TPAtXRk/+t7zRYdAGbty3QfV0tbm50PuKn4WoIkOEDduNsEhjToPf1geuF0bl QDZg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to :references:mime-version:dkim-signature; bh=NbtXNCpzIHOXao+YSnQZdhcH786as3lUPJ/TZmv8CNw=; b=jav1gYsWAwlAUitb6DZ+pOoP/Dw+JFZrydLVP/IqGta0HhxVdNMlVvrIuuL7o2+VsG lHdIXTmDAuW4e99OPKzagAvlq1mPMLakzONqpOO5P3GmtNX6Vs1bG3OPk4hyC0ygW5Pm 0/5oO3KnQJoi1wjJecj5CxNVTslhAwI8AzZYV/mmI3lXjV4+mjf5NvF9yLZb2H0j9iCd Z9G78Sy6nVXPySKsGB/Y7soIkN1h/E6EnUUD8kMR/Z0afU/JRcemh8kE2g69r78Eqk4O XvJ0spJg6F8IMU+Eb3wVezc/9ROnn1mMeEkEvJ2mA7H2Y2EFkhxJpNxjUI7vYq8aBniO R6kA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@chromium.org header.s=google header.b=Hgz4TqIW; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id e16-20020a17090658d000b0073075197e3bsi3551175ejs.755.2022.08.02.21.38.32; Tue, 02 Aug 2022 21:38:58 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@chromium.org header.s=google header.b=Hgz4TqIW; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S234288AbiHCE35 (ORCPT + 99 others); Wed, 3 Aug 2022 00:29:57 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:55052 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S235650AbiHCE3z (ORCPT ); Wed, 3 Aug 2022 00:29:55 -0400 Received: from mail-yw1-x1135.google.com (mail-yw1-x1135.google.com [IPv6:2607:f8b0:4864:20::1135]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 21A7D57201 for ; Tue, 2 Aug 2022 21:29:52 -0700 (PDT) Received: by mail-yw1-x1135.google.com with SMTP id 00721157ae682-2ef5380669cso159856027b3.9 for ; Tue, 02 Aug 2022 21:29:52 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=NbtXNCpzIHOXao+YSnQZdhcH786as3lUPJ/TZmv8CNw=; b=Hgz4TqIWl4pJo49RQXXWoNPSdOSqCLbXTwSkc5BG1Ic5qEa+SMfmG/QhBSjdPZ3KNG YhCBVCj1nZvne/4SQtLLhSIw7Vafg0bbVoqYdCBYeyYJXHkCXolxDZo/3EdPaB3cD6Ko 70Pq7cwbqCQeHKiQ0d+VxTSJ5b9vrJzqfFFWs= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=NbtXNCpzIHOXao+YSnQZdhcH786as3lUPJ/TZmv8CNw=; b=tmwV7b6uY6wBm5INN05tgTqigmX7FHFO0A/LOxt3DVYykrGeMxkxvwbdqDGhs9K87u 9HC0i1IZkeGMcL4dj9H+4bkt/9RttJ6kjaKjcJO6mMrQebdRv4Rvl0JdFmj63uIulkaU baysh7VfuaCpD9o7RZOLwkfG681wcJt0C3Q7cgn6ZE5nBA4ldQ+I14s6xqqTPR5Ngb3g bw+7jqD2ATCGimtAhNk/fFNq5WejKDFagilwpHbSIzjjfF+NWRR5dZXG5Lz4LfOgPZko 0q2z7f+7c2tP/3bxeXN/GgtPfHqbEq+KG9zj2tTymXrTrIhomkVI8jI+cMy26tWVKN9J cBBg== X-Gm-Message-State: ACgBeo0KRIDwM6Xbn6k9qcQFP973Cp27ZRA4TmSnUetSRFQcBgqxwXgF +S7qMhFnH/AjIJZVo4nraouqO3/TDqpB8TywfnWo3g== X-Received: by 2002:a81:81c1:0:b0:31e:7378:960c with SMTP id r184-20020a8181c1000000b0031e7378960cmr21836822ywf.266.1659500991420; Tue, 02 Aug 2022 21:29:51 -0700 (PDT) MIME-Version: 1.0 References: <20220704000225.345536-1-dlunev@chromium.org> <20220704100221.1.I15b3f7a84ba5a97fde9276648e391b54957103ff@changeid> In-Reply-To: From: Daniil Lunev Date: Wed, 3 Aug 2022 14:29:40 +1000 Message-ID: Subject: Re: [dm-devel] [PATCH 1/1] dm: add message command to disallow device open To: Eric Biggers Cc: Zdenek Kabelac , Brian Geffon , Mike Snitzer , linux-kernel@vger.kernel.org, dm-devel@redhat.com, Mikulas Patocka , Alasdair Kergon Content-Type: text/plain; charset="UTF-8" X-Spam-Status: No, score=-2.7 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_NONE, SPF_HELO_NONE,SPF_PASS autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org > This seems like an access control policy, which the Linux kernel already has a > lot of mechanisms for. Chrome OS already uses SELinux. Couldn't this be solved > by giving the device node an SELinux label that no one has permission to open? That would be the ideal solution, but there is a number of challenges that prevent us enabling enforcement on all SELinux domains unfortunately. While in the long run that would be a preferred option, in the short run this doesn't seem feasible. I would assume the problem of enabling full SELInux enforcement would plague any big project that didn't have them enabled from the get going. --Daniil