Re: [PATCH] new syscall: flink

Werner Almesberger (wa@almesberger.net)
Tue, 8 Apr 2003 02:06:00 -0300


I wrote:
> Example: I write some kind of RAID mounted at /world, that contains
> my disk under /world/disk, and some Flash storage under /world/flash.
> I protect /world/flash against writes by other people. If a
> read-only FD could be turned into something writeable, some malicious
> creature could "wear out" my Flash by writing to it a lot of times.

Just to clarify: the file in question would be inaccessible for the
abuser, and the read-only fd would have to be handed out by some
access mediator.

Obviously, if the abuser obtains a read-only fd directly by opening
a file, the hypothetical flink couldn't be used for privilege
escalation.

- Werner

-- 
  _________________________________________________________________________
 / Werner Almesberger, Buenos Aires, Argentina         wa@almesberger.net /
/_http://www.almesberger.net/____________________________________________/
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/